feat: initial playbook

roles/system-update/defaults/main.yml

@@ -0,0 +1,12 @@
+---
+# Default variables for system-update role
+system_update_packages:
+  - apt-transport-https
+  - ca-certificates
+  - curl
+  - gnupg
+  - lsb-release
+  - software-properties-common
+
+system_update_reboot_if_needed: false
+system_update_autoremove: true

roles/system-update/meta/main.yml

@@ -0,0 +1,19 @@
+---
+galaxy_info:
+  author: NetBox Ansible Deployment
+  description: Updates Ubuntu system packages
+  company: Internal
+  license: MIT
+  min_ansible_version: 2.9
+  platforms:
+    - name: Ubuntu
+      versions:
+        - focal
+        - jammy
+        - noble
+  galaxy_tags:
+    - system
+    - ubuntu
+    - updates
+
+dependencies: []

roles/system-update/tasks/main.yml

@@ -0,0 +1,47 @@
+---
+- name: Update apt package cache
+  apt:
+    update_cache: yes
+    cache_valid_time: 3600
+  tags:
+    - system-update
+    - apt-update
+
+- name: Upgrade all packages
+  apt:
+    upgrade: dist
+    autoremove: "{{ system_update_autoremove }}"
+  register: apt_upgrade_result
+  tags:
+    - system-update
+    - apt-upgrade
+
+- name: Install required packages
+  apt:
+    name: "{{ system_update_packages }}"
+    state: present
+  tags:
+    - system-update
+    - packages
+
+- name: Check if reboot is required
+  stat:
+    path: /var/run/reboot-required
+  register: reboot_required
+  tags:
+    - system-update
+    - reboot-check
+
+- name: Reboot if required and enabled
+  reboot:
+    msg: "Reboot initiated by Ansible for system updates"
+    connect_timeout: 5
+    reboot_timeout: 600
+    pre_reboot_delay: 0
+    post_reboot_delay: 30
+  when: 
+    - reboot_required.stat.exists
+    - system_update_reboot_if_needed
+  tags:
+    - system-update
+    - reboot

roles/system-update/vars/main.yml

@@ -0,0 +1,9 @@
+---
+# Variables for system-update role
+system_update_packages:
+  - apt-transport-https
+  - ca-certificates
+  - curl
+  - gnupg
+  - lsb-release
+  - software-properties-common