Is there a document describing the best practices to organise a complex Ansible project ?
Here is the project that I’m thinking about :
Project has been designed as a collection of reusable modules (= role) which are living under by example this folder “complexproject/roles” fo the modules part of the main project
Project could include roles created and managed by external teams and git cloned locally under “complexproject/imported/projectA/roles, complexproject/imported/projectB/roles”
Users access the main playbooks using this command "ansible-playbook -i inventory complexproject/playbooks/main.yml
On Youtube you has this amazing video about best practices: https://www.youtube.com/watch?v=5BhAJ4mEfZ8
I think you should standardize your roles and export to it's own
repository. After that you can use Ansible Galaxy to install that.
You should think "I don't want to publish my roles!" but Ansible
Galaxy you can download roles from a Git repo (even a private one) and
not just the website galaxy.ansible.com.
When developing a complex project you should keep everything modular (roles, inventory, group_vars, host_vars, and etc.). Pull the external dependencies into your project using Git sub-modules (inventory, group_vars, host_vars) and use a requirements.yml file to define the roles that you need as part of your project. Then use ansible-galaxy install -r requirements.yml -p ./roles to pull those roles into your project. Never make changes to those roles in your project but rather in the external repos of those roles and then pull them back into your project as needed. You can easily include an ansible.cfg as part of your project to define the roles_path and anything else that you may want to define specific to the project. All of your playbooks should just be minimal playbooks defining the roles as required. In regards to import_playbook, I would advise against this if you are doing a lot of dynamic inventory, group_vars, and host_vars manipulation and leverage either a CI/CD pipeline to drive the orchestration or simply create a shell script to drive the orchestration. The reason for this is that you can then pull new inventory, group_vars, and host_vars into subsequent playbooks. These are just some real-world examples that have worked for me on massive projects. Obviously as you progress throughout the project things will be adapted as necessary but just remember to make the project the skeleton of the project and pull in modularly from external sources the building blocks required.