fix repo

.gitignore

@@ -1,9 +1,16 @@
 # Ignore Vagrant working directory
 .vagrant/
 
+# Ignore large Vagrant box files and images
+*.box
+*.img
+noble-server-cloudimg-arm64.img
+ubuntu-*.box
+
 # Optional: Ignore other common system files
 *.log
 *.swp
 *.swo
 .DS_Store
 Thumbs.db
+

Vagrantfile

@@ -1,20 +0,0 @@
-Vagrant.configure("2") do |config|
-  config.vm.define "kube01" do |kube01|
-    kube01.vm.box = "bento/ubuntu-22.04"
-    kube01.vm.hostname = "kube01"
-
-    # Forward host port 2030 to guest port 22 for SSH access
-    kube01.vm.network "forwarded_port", guest: 22, host: 2030, id: "ssh"
-
-    kube01.vm.provider "vmware_fusion" do |v|
-      v.gui = false
-      v.memory = 2048
-      v.cpus = 2
-    end
-
-    kube01.vm.provision "ansible" do |ansible|
-      ansible.playbook = "ansible/vytvor_uzivatele.yml"
-      ansible.verbose = true
-    end
-  end
-end

ansible/ansible.cfg

@@ -1,3 +0,0 @@
-[defaults]
-inventory = hosts
-remote_user = vagrant

ansible/hosts

@@ -1,2 +0,0 @@
-[kube]
-kube01 ansible_host=127.0.0.1 ansible_port=2030 ansible_user=vagrant ansible_ssh_private_key_file=/Users/xchose/chosesoft/Vagrant/.vagrant/machines/kube01/vmware_fusion/private_key

ansible/install_tools.yml

@@ -1,18 +0,0 @@
----
-- name: Install favorite tools (vim, telnet, curl)
-  hosts: all
-  become: yes
-  tasks:
-    - name: Ensure vim, telnet, and curl are installed
-      ansible.builtin.apt:
-        name:
-          - vim
-          - telnet
-          - curl
-        state: present
-        update_cache: yes
-      register: install_tools_result
-
-    - name: Show install result (full)
-      ansible.builtin.debug:
-        var: install_tools_result

ansible/update_os.yml

@@ -1,22 +0,0 @@
----
-- name: Update all packages on Ubuntu (interactive)
-  hosts: all
-  become: yes
-  tasks:
-    - name: Update apt cache
-      ansible.builtin.apt:
-        update_cache: yes
-      register: apt_update_result
-
-    - name: Show apt update output
-      ansible.builtin.debug:
-        var: apt_update_result.stdout_lines
-
-    - name: Upgrade all packages to the latest version
-      ansible.builtin.apt:
-        upgrade: dist
-      register: apt_upgrade_result
-
-    - name: Show apt upgrade output
-      ansible.builtin.debug:
-        var: apt_upgrade_result.stdout_lines

ansible/vytvor_uzivatele.yml

@@ -1,3 +0,0 @@
----
-- import_playbook: update_os.yml
-- import_playbook: install_tools.yml

utm/Vagrantfile

@@ -1,176 +0,0 @@
-# Vagrantfile pro 3-node Vault cluster s Integrated Raft Storage
-NUM_NODES = 3
-NODE_MEMORY = 2048
-NODE_CPUS = 2
-NETWORK = "192.168.56"
-IP_START = 10
-
-Vagrant.configure("2") do |config|
-  config.vm.box = "utm/ubuntu-24.04"
-  
-  # Globální konfig
-  config.vm.synced_folder ".", "/vagrant", create: true
-  config.ssh.username = "vagrant"
-  
-  # Shared provisioning pro všechny VMs
-  config.vm.provision "shell", inline: <<-SHELL
-    apt-get update
-    apt-get install -y curl wget unzip python3 python3-pip
-    
-    # Instalace Vault binary
-    VAULT_VERSION="1.16.1"
-    cd /tmp
-    wget -q https://releases.hashicorp.com/vault/${VAULT_VERSION}/vault_${VAULT_VERSION}_linux_arm64.zip
-    unzip -o vault_${VAULT_VERSION}_linux_arm64.zip
-    mv vault /usr/local/bin/
-    chmod +x /usr/local/bin/vault
-    useradd --system --home /etc/vault.d --shell /bin/false vault || true
-    
-    # Systemd service pro Vault
-    cat > /etc/systemd/system/vault.service << 'EOF'
-[Unit]
-Description=HashiCorp Vault
-Documentation=https://www.vaultproject.io/docs/
-Requires=network-online.target
-After=network-online.target
-ConditionFileNotEmpty=/etc/vault.d/vault.hcl
-
-[Service]
-Type=notify
-ProtectSystem=full
-ProtectHome=yes
-NoNewPrivileges=yes
-PrivateTmp=yes
-PrivateDevices=yes
-SecureBits=keep-caps
-AmbientCapabilities=CAP_IPC_LOCK
-ExecStart=/usr/local/bin/vault server -config=/etc/vault.d/vault.hcl
-ExecReload=/bin/kill -HUP $MAINPID
-Restart=on-failure
-RestartSec=5
-TimeoutStopSec=30
-LimitMEMLOCK=infinity
-StandardOutput=journal
-StandardError=journal
-SyslogIdentifier=vault
-SyslogFacility=AUTH
-
-[Install]
-WantedBy=multi-user.target
-EOF
-    
-    systemctl daemon-reload
-    systemctl enable vault
-  SHELL
-  
-  # Vytvoř 3 VM s Vaultem
-  (1..NUM_NODES).each do |i|
-    node_name = "vault#{i}"
-    node_ip = "#{NETWORK}.#{IP_START + i - 1}"
-    
-    config.vm.define node_name do |node|
-      node.vm.hostname = node_name
-      node.vm.network "private_network", ip: node_ip
-      
-      node.vm.provider "utm" do |utm|
-        utm.cpus = NODE_CPUS
-        utm.memory = NODE_MEMORY
-      end
-      
-      # Vault config per node
-      node.vm.provision "shell", inline: <<-SHELL
-        mkdir -p /etc/vault.d /opt/vault/data
-        chown -R vault:vault /etc/vault.d /opt/vault/data
-        chmod 700 /etc/vault.d /opt/vault/data
-        
-        cat > /etc/vault.d/vault.hcl << 'EOF'
-ui = true
-node_id = "#{node_name}"
-
-# Listener na 0.0.0.0:8200
-listener "tcp" {
-  address       = "0.0.0.0:8200"
-  tls_disable   = true
-  cluster_addr  = "#{node_ip}:8201"
-}
-
-# Integrated Raft Storage (bez Consulu)
-storage "raft" {
-  path = "/opt/vault/data"
-  node_id = "#{node_name}"
-}
-
-# API address (intra-cluster komunikace)
-api_addr = "http://#{node_ip}:8200"
-cluster_addr = "http://#{node_ip}:8201"
-
-# Telemetry
-telemetry {
-  prometheus_retention_time = "30s"
-  disable_hostname = false
-}
-EOF
-        
-        chown vault:vault /etc/vault.d/vault.hcl
-        chmod 640 /etc/vault.d/vault.hcl
-      SHELL
-      
-      # Spusti Vault service - jen na prvním nodu
-      if i == 1
-        node.vm.provision "shell", inline: <<-SHELL
-          systemctl start vault
-          sleep 2
-          vault status || true
-          
-          # Init cluster (jen poprvé)
-          export VAULT_ADDR="http://#{node_ip}:8200"
-          if ! vault operator raft list-peers 2>/dev/null | grep -q "vault1"; then
-            vault operator raft bootstrap-init-raft \
-              --leader-api-addr "http://#{node_ip}:8200" \
-              --recovery-shares 3 \
-              --recovery-threshold 2 || true
-          fi
-        SHELL
-      else
-        # Ostatní nody se připojí po inicializaci
-        node.vm.provision "shell", inline: <<-SHELL
-          sleep 5
-          systemctl start vault
-          sleep 2
-          
-          # Join raft cluster (po inicializaci)
-          export VAULT_ADDR="http://#{node_ip}:8200"
-          sleep 3
-          vault operator raft join "http://#{NETWORK}.#{IP_START}:8200" || true
-        SHELL
-      end
-    end
-  end
-  
-  # Post-up message
-  config.vm.post_up_message = <<-MSG
-    
-    ╔═══════════════════════════════════════════════════════════════╗
-    ║          3-Node Vault Cluster (Raft Storage)                 ║
-    ╚═══════════════════════════════════════════════════════════════╝
-    
-    Nodes:
-      • vault1: #{NETWORK}.#{IP_START}
-      • vault2: #{NETWORK}.#{IP_START + 1}
-      • vault3: #{NETWORK}.#{IP_START + 2}
-    
-    Příkazy:
-      vagrant ssh vault1           # Připoj se k prvnímu nodu
-      vault status                 # Check status (uvnitř VM)
-      vault operator raft list-peers  # Peer status
-      vault operator init              # Inicializuj (potřeba jen jednou!)
-    
-    Poznámky:
-      - Vault běží bez TLS (lab)
-      - Raft storage == keine Consul potřeba
-      - Port 8200 je dostupný na VM IP
-      - Data se ukládají do /opt/vault/data
-    
-    MSG
-end
-

utm/VagrantfileBCK

@@ -1,9 +0,0 @@
-Vagrant.configure("2") do |config|
-  config.vm.box = "utm/ubuntu-24.04"
-
-  config.vm.provider "utm" do |utm|
-    utm.cpus = 2
-    utm.memory = 2048
-  end
-end
-