commit c1268e8b956e556c5fca93c3888e0706d3e4a7c3
Author: mw <mw@1wilson.org>
Date:   Fri Dec 23 12:18:21 2022 +0100

    ansible-deployment: Shadow repository activated.

diff --git a/.LOCKED b/.LOCKED
new file mode 100644
index 0000000..e69de29
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..d117887
--- /dev/null
+++ b/README.md
@@ -0,0 +1,44 @@
+# hcloud encrypted debian
+
+## Description
+This repository contains ansible roles and a packer definition to build
+fully encrypted debian snapshots in hetzner cloud which can then be used
+as base images for terraform deployments.
+
+## Usage
+Install `ansible-deployment`
+```sh
+pip install ansible-deployment
+```
+
+Further documentation for `ansible-deployment`: https://torarg.github.io/ansible-deployment/
+
+Clone deployment:
+```sh
+git clone https://gitea.k3s.swla.eu/gitea-admin/hcloud-encrypted-debian-packer.git
+```
+
+Write deployment.key to deployment directory:
+```sh
+echo "SUPER_SECRET_KEY" > hcloud-encrypted-debian-packer/deployment.key
+```
+
+Change into deployment directory:
+```sh
+cd hcloud-encrypted-debian-packer
+```
+
+Pull encrypted deployment data blob:
+```sh
+ansible-deployment pull
+```
+
+Unlock deployment:
+```sh
+ansible-deployment unlock
+```
+
+Build snapshot with packer:
+```sh
+packer build hcloud-encrypted-debian.pkr.hcl
+```
diff --git a/deployment.json b/deployment.json
new file mode 100644
index 0000000..1e67049
--- /dev/null
+++ b/deployment.json
@@ -0,0 +1,21 @@
+{
+    "name": "debian-base-image",
+    "deployment_repo": {
+            "url": "https://gitea.k3s.swla.eu/gitea-admin/hcloud-encrypted-debian-packer.git",
+            "reference": "master"
+    },
+    "roles_repo": {
+        "url": "git@github.com:torarg/ansible-roles.git",
+        "reference": "master"
+    },
+    "roles": [
+        "hetzner/autoinstall",
+        "linux/unlock_initramfs",
+        "common/bootstrap",
+        "linux/k3s/ansible_setup"
+    ],
+    "inventory_sources": [
+    ],
+    "inventory_writers": [
+    ]
+}
diff --git a/deployment.tar.gz.enc.SHA256 b/deployment.tar.gz.enc.SHA256
new file mode 100644
index 0000000..67d4865
--- /dev/null
+++ b/deployment.tar.gz.enc.SHA256
@@ -0,0 +1 @@
+243e7ffe6f8b950f7f489b429c4c35864c01c4e82113dc9544b985359d59fc03
\ No newline at end of file