---
# Client: Sanrufo Homes (SRH-001)
# Onboarded: 2026-03-12
# Hypervisor: xcpng
# Billing: hybrid
#
# ansible_user: ansible-msp-agent (deployed by scripts/deploy_agent.sh)
# Do NOT use root as ansible_user for day-to-day operations.
#
# XO tag convention for unmanaged VMs: msp:ignore
#   VMs tagged msp:ignore are excluded from all automation — no snapshot, no patch.
#   Examples: decommissioned VMs, appliances, third-party managed systems.
#   Currently tagged msp:ignore in XO: mail.sanrufohomes.com (decommissioned)

all:
  vars:
    client_id: "SRH-001"
    client_name: "Sanrufo Homes"
    billing_model: "hybrid"
    maintenance_window_start: "02:00"
    maintenance_window_end: "05:00"
    maintenance_window_tz: "UTC"
    change_freeze: false
    hypervisor_type: "xcpng"
    auto_reboot: false
    human_estimate_seconds: 2700

  children:
    linux_hosts:
      hosts:
        docker-vm:
          ansible_host: 192.168.32.14
          xcpng_vm_uuid: "412dcc69-859f-5260-bbd3-9273e23daab5"

        vpn.sanrufohomes.com:
          ansible_host: 192.168.32.22
          xcpng_vm_uuid: "aa0595b0-34b1-8e88-8567-97d0c5699c13"

        mssql:
          ansible_host: 192.168.32.8
          xcpng_vm_uuid: "58a75662-914d-6d3b-ab77-2eefc32ff1d5"

      vars:
        ansible_user: ansible-msp-agent
        ansible_become: true
        ansible_become_method: sudo

    windows_hosts:
      hosts:
        SRH-DoorSystem:
          ansible_host: 192.168.32.39
          xcpng_vm_uuid: "1e927e7a-bd44-5bad-7a50-13d05812c69b"

        WinSVR-2025-3:
          ansible_host: 192.168.32.16
          xcpng_vm_uuid: "a359ce10-38ee-f5c7-f8a9-ac8a9b554944"

        DataConnector:
          ansible_host: 192.168.32.56
          xcpng_vm_uuid: "6ae577d4-601b-e807-9e08-c0f923951475"

        WinSVR-2022-Sage:
          ansible_host: 192.168.32.18
          xcpng_vm_uuid: "e47c7806-1047-4cbb-dcb5-9baf62085bf3"

        MatVM:
          ansible_host: 192.168.32.35
          xcpng_vm_uuid: "b836f4fd-bc98-8fad-9a5c-534c60d69d44"

        NicoleSageVM:
          ansible_host: 192.168.32.30
          xcpng_vm_uuid: "a8ca3c0e-58dc-470e-a25c-a3a13765ab80"

        SanRufoSVR22:
          ansible_host: 192.168.32.15
          xcpng_vm_uuid: "0fd09bcf-7cf4-43e8-4315-f4fa7fff6de0"

      vars:
        ansible_user: Administrator
        ansible_connection: winrm
        ansible_winrm_transport: ntlm
        ansible_winrm_server_cert_validation: validate
        ansible_port: 5986
        # Windows patching not yet implemented — hosts listed for inventory completeness

    # XCP-NG pool entries — one entry per pool (not per hypervisor host)
    # Each entry triggers xcpng_pool_update.yml against that pool via XO REST API
    # XO_URL and XO_TOKEN come from Semaphore variable group
    xcpng_hosts:
      hosts:
        SRH-VM2:
          xo_pool_uuid: "74264da3-bb88-3192-b0f0-046385608c3c"

        SRH-VM:
          xo_pool_uuid: "469a7b5b-de02-c313-f8cc-f3063628e68f"

      vars:
        ansible_connection: local