- refactor playbooks to follow best practices
- implement Ansible Vault for secrets management
- replace direct service restarts with handlers
- add Molecule testing framework with Docker
lint compliance:
- fix all ansible-lint violations (FQCN, booleans, file modes)
- remove duplicate tasks and improve structure
- enforce consistent task ordering and formatting
- add noqa where necessary for edge cases
documentation:
- add REFACTORING.md and VAULT_GUIDE.md
- improve per-role documentation
all playbooks now pass ansible-lint production profile with 0 violations
Mateusz Suski