ansible-style-guide.md

Ansible style guide (playbooks)

This document defines the style for writing Ansible playbooks, addressing the lack of a consistent and comprehensive code style and usage in both Red Hat's guidelines and the Ansible documentation.

The terms MUST, SHOULD, and other key words are used as defined in RFC 2119 and RFC 8174.

Table of contents

• YAML files
• Indentation
• Spacing
• Quoting
• Naming
• Booleans
• Maps (key: value)
  • Value retrieval: bracket notation
• Tasks and play declaration
• Comments
• Linting
• Miscellaneous
• Linguistic guidelines
• Author information

YAML files

⇑ Back to TOC ⇑

You MUST:

• Follow the YAML 1.2.2 specification.
• Use spaces for indentation.
• Use Unix line feed (LF, \n) for new lines.
• Use UTF-8 encoding.
• Trim trailing whitespace whenever possible, but ensure files end with a new line.
• Keep line lengths below 160 characters whenever technically possible.
• Use JSON syntax only when it makes sense (e.g., for an automatically generated file) or when it improves readability.

You SHOULD:

• Use .yml as the extension for new playbooks (or tasks files in roles, and collections).
  • Stay consistent with existing extensions if .yaml is already used in a role or collection.
• Start files with comments explaining their purpose, including example usage if reasonable.
• Include blank lines before and after the --- separator, followed by the rest of the file.
• Check all YAML_FILENAME_EXTENSIONS when searching for files (e.g., vars_files, include_vars, plugins, or similar functions).
• If a when: condition contains only and expressions, break it into a list of conditions for better readability.
• Keep content around 80 characters in length, and ensure the overall line length, including indentation, stays below 120 characters.
  • Use block scalars (> and |) as needed to manage long strings.
  • Include a chomping indicator (-) behind block scalars (> and |) when it is important to exclude the trailing newline from the string (e.g., when defining a string variable).
• Use parentheses and new lines to group conditions when it helps to clarify the logic. When in doubt, use parentheses if there are multiple and or or operators.

Good examples:

# Connect to the host and checks for an Python installation. Show demo tasks.
#
# Example usage:
#   ansible-playbook -e ping_data_return="pong" playbook.yml
#   ansible-playbook -e ping_data_return="crash" playbook.yml

---

- name: "Example playbook"
  hosts: "localhost"
  tasks:

    - name: "Connect to host, verify a Python installation."
      ansible.builtin.ping:
        data: "{{ ping_data_return }}"


    - name: "Print a very long line"
      ansible.builtin.debug:
        msg: >
          Lorem ipsum dolor sit amet, consetetur sadipscing elitr, sed diam nonumy eirmod
          tempor invidunt ut labore et dolore magna aliquyam erat, sed diam voluptua. At
          vero eos et accusam et justo duo dolores et ea rebum. Stet clita kasd gubergren,
          no sea takimata sanctus est Lorem ipsum dolor sit amet. Lorem ipsum dolor sit
          amet, consetetur sadipscing elitr, sed diam nonumy eirmod tempor invidunt ut
          labore et dolore magna aliquyam erat, sed diam voluptua. At vero eos et accusam
          et justo duo dolores et ea rebum. Stet clita kasd gubergren, no sea takimata
          sanctus est Lorem ipsum dolor sit amet.
      when:
        # when clause is a raw Jinja2 expression without double curly braces or quoting
        - foo is not defined
        - bar is not defined


    # Use parentheses and new lines to group conditions when it helps to understand the
    # logic. In doubt, use parentheses if there are multiple and/or.
    - name: "Shut down CentOS 8 (or newer) and Debian 10 systems"
      ansible.builtin.command:
        cmd: "/sbin/shutdown -t now"
      when:
        - ansible_distribution is defined
        - ansible_distribution_major_version is defined
        - (ansible_distribution == 'CentOS' and ansible_distribution_version is version('8.0.0', '>=')) or
          (ansible_distribution == 'Debian' and ansible_distribution_major_version == '10')
      changed_when:
        - __shutdown_result.rc is defined
        - __shutdown_result.rc == 0
      register: __shutdown_result


    - name: "Include OS vars (with default fallback)"
      ansible.builtin.include_vars:
        dir: "vars"
        files_matching: "^({{ ansible_distribution }}|default)(\\{{ lookup('ansible.builtin.config', 'YAML_FILENAME_EXTENSIONS') | join('|\\\\') }})$"

# newline (Unix line feed, \n) at end of file

Bad examples:

---
- hosts: "localhost"
  tasks:
    - name: "Connect to host, verify a Python installation."
      ansible.builtin.ping:
        data: "{{ ping_data_return }}"


    - name: "Print a very long line"
      ansible.builtin.debug:
        msg: "Lorem ipsum dolor sit amet, consetetur sadipscing elitr, sed diam nonumy eirmod tempor invidunt ut labore et dolore magna aliquyam erat, sed diam voluptua. At vero eos et accusam et justo duo dolores et ea rebum. Stet clita kasd gubergren, no sea takimata sanctus est Lorem ipsum dolor sit amet. Lorem ipsum dolor sit amet, consetetur sadipscing elitr, sed diam nonumy eirmod tempor invidunt ut labore et dolore magna aliquyam erat, sed diam voluptua. At vero eos et accusam et justo duo dolores et ea rebum. Stet clita kasd gubergren, no sea takimata sanctus est Lorem ipsum dolor sit amet."
      when: foo is not defined and bar is not defined


    - name: "Include OS vars"
      ansible.builtin.include_vars:
        dir: "vars"
        files_matching: "^mswindows.yml$" # unexpected filename, no fallback, only .yml

Reasoning:

• YAML 1.2 has been the standard since 2009 and uses only true and false for booleans, avoiding many potential edge-case issues. Allowing YAML 1.1 is no longer practical.
• The .yml extension must be used for consistency. It is predominant in the Ansible ecosystem, even though yaml.org recommends .yaml.
• Adding comments at the very beginning of a file allows for quickly identifying the purpose or usage of it, either by opening the file or using the head command.
• Ending files with a new line is a common Unix best practice. It prevents terminal prompt misalignment when printing files to STDOUT.
• Long lines are difficult to read. Many projects ask for a line length limit around 120-150 character and ansible-lint checks for 160 characters by default (yaml rule).
• Even though JSON is syntactically valid YAML and understood by Ansible, nobody expects it in playbooks.

Indentation

⇑ Back to TOC ⇑

You MUST:

• Use two spaces to represent sub-maps when indenting.
• Especially indent list contents beyond the list definition.
• Start multi-line maps with a dash (-).

Reasoning:

Following the indentation rules produces consistent code that is easy to read.

Good examples:

---
- name: "Print some dummy messages."
  ansible.builtin.debug:
    msg:
      - "Dummy 1"
      - "Dummy 2"
      - "Dummy 3"

Bad examples:

- name: "Print some dummy messages."
  ansible.builtin.debug:
    msg:
    - "Dummy 1"
    - "Dummy 2"
    - "Dummy 3"

Spacing

⇑ Back to TOC ⇑

You SHOULD:

• Add at least one blank line between:
  • Two host blocks.
  • Host and include blocks.
• Add at least two blank line between:
  • Two task blocks.
• Use a single space to separate Jinja2 template markers from variable names or expressions.
• Break up lengthy Jinja templates into multiple templates when they contain distinct logical sections.
• Avoid Jinja templates for generating text and semi-structured data, not for creating structured data.

Reasoning:

Following the spacing rules produces consistent code that is easy to read.

Good examples:

- name: "Set a variable"
  ansible.builtin.set_fact:
    foo: "{{ bar | default('baz') }}"


- name: "Set another variable"
  ansible.builtin.set_fact:
    bar: "{{ baz | default('foo, barbaz') }}"

Bad examples:

- name: "Set a variable"
    ansible.builtin.set_fact:
        foo: "{{bar|default('baz')}}"
- name: "Set another variable"
    ansible.builtin.set_fact:
        bar: "{{baz|default('foo,barbaz')}}"

Quoting

⇑ Back to TOC ⇑

You MUST:

• Use block scalars (> and |) for writing long strings or to simplify complicated quoting.

You SHOULD:

• Quote all strings.
• Use double quotes (") for YAML strings.
  • Use single quotes only when they simplify nested expressions, such as Jinja map references with mixed quoting styles.
• Use single quotes (') for Jinja2 strings.

You MUST NOT:

• Quote non-string types, such as booleans (true, false) or numbers (e.g., 1337).
• Quote references to the local Ansible environment, such as the names of variables being assigned values.

Good Examples:

- name: "Connect to host, verify a usable python"
  ansible.builtin.ping:
    data: "{{ ping_return }}"


# double quotes with nested single quotes for Jinja2
- name: "Start all nodes"
  become: true
  ansible.builtin.service:
    name: "{{ item['node_name'] }}"
    state: "started"
    enabled: true
  with_items: "{{ nodes }}"


# folded scalar style (useful to prevent complicated quoting or lines longer than 160 chars)
- name: "Node infos"
  ansible.builtin.debug:
    msg: >
      Node {{ item['node_name'] }} is {{ item['status'] }} and in {{ item['az'] }}
      availability zone and belongs to "{{ item['customer'] }}" customer.
  with_items: "{{ nodes }}"


# don't quote booleans and numbers
- name: "Download example homepage"
  ansible.builtin.get_url:
    dest: "/tmp"
    timeout: 60
    url: 'https://example.com'
    validate_certs: true


# variables example 1
- name: "set a variable"
  ansible.builtin.set_fact:
    foo: "bar" # explicitly references the string "bar"


# variables example 2
- name: "Print a variable"
  ansible.builtin.debug:
    # be aware that this option already runs in Jinja2 context and has an implicit
    # {{ }} wrapping, so you should not be using Jinja2 delimiters unless you are
    # looking for double interpolation.
    var: foo
  when:
    - ansible_os_family == 'RedHat'


# variables example 3
- name: "Set another variable"
  ansible.builtin.set_fact:
    baz: "{{ foo }}" # explicitly references the variable foo

Bad examples:

- name: Start node named Horton
  become: true
  ansible.builtin.service:
    name: horton
    state: 'started'
    enabled: true



- name: "Assign a value without quoting"
  ansible.builtin.set_fact:
    baz: another_var  # can cause ambiguity if `another_var` (string or existing variable?)

Reasoning:

• We have stricter rules than much of the community (cf. 8.2. YAML and Jinja2 Syntax):
  • We believe all strings should be quoted.
  • The number of rules to remember, if you want to use the quotes only when they are really needed, is somewhat excessive for such a simple thing as specifying one of the most common datatypes.
  • However, since laxer rules are so common, we have categorized this as SHOULD instead of MUST.
• Single quotes in YAML behave differently than most programmers expect:
  • Escaping with \ is not possible; instead, '' (two single quotes) is used.
  • They do not prevent variable interpolation.
• Properly escaped strings makes it easier to troubleshoot malformed strings and ensures the desired effect.
• YAML requires you to quote the entire line if it starts with {{ foo }} to distinguish between a value and a YAML dictionary.
• Syntax highlighting generally works better when strings are explicitly quoted.
• Refer to the following for more information about edge cases:
  • Ansible FAQ: "When should I use {{ }}? Also, how to interpolate variables or dynamic variable names"
  • Ansible Lint rule: risky-octal
• Further discussion:
  • Ansible Lint: add rule to prefer double quotes intead of single (like black) #584
  • YAML: Do I need quotes for strings in YAML?

Naming

⇑ Back to TOC ⇑

You MUST:

• Use snake_case for variables, roles, collections and modules.
• Only use characters from the set [a-z0-9_].
• Start variable names with a letter or underscore.
• Prefix role variables with the collection and/or role name.
• Prefix internal variables (those that are not expected to be set by users) by two underscores.

Good examples:

- name: "Set some facts"
  ansible.builtin.set_fact:
    node_is_online: true
    node_age: 20
    node_name: "test"
    one_and_only: false

- name: "Determine version of foo"
  ansible.builtin.shell:
    cmd: |
      __foo_installed=""
      if command -v 'foo' > /dev/null 2>&1
      then
        __foo_installed="$(foo --version | tail -1 | sed -e 's/^v//g')"
        if ! printf '%s' "${__foo_installed}" | grep -E -q -e '^[[:digit:]\.]*$'
        then
          __foo_installed=''
        fi
      fi
      printf '%s' "${__foo_installed}"
  register: __foo_installed_result

Bad examples:

- name: "Set some facts"
  ansible.builtin.set_fact:
    nodeIsOnline: true
    nodeage: 20
    NODE_NAME: "test"
    1andOnly: False

- name: "determine version of foo"
  ansible.builtin.shell:
    cmd: |
      installed=""
      if command -v 'foo' > /dev/null 2>&1
      then
        installed="$(foo --version | tail -1 | sed -e 's/^v//g')"
        if ! printf '%s' "${installed}" | grep -E -q -e '^[[:digit:]\.]*$'
        then
          installed=''
        fi
      fi
      printf '%s' "${installed}"
  register: installed_result

Reasoning:

• Ansible uses snake_case for module names and parameters. As this convention influences a wide range of playbooks, it is logical to extend it to variable names, even though they are not technically restricted to this format.
• Names of plugins, roles, and most parts of Ansible must follow Python namespace rules, which disallow certain characters, such as hyphens (-) or dots (.). See StackOverflow, Galaxy Issue 775, and a comment from Issue 779 for more information:

  For that to work, namespaces need to be Python compatible, which means they can’t contain ‘-’.

• Refer to the Ansible Galaxy documentation on role names for additional guidance.
• Role variables, registered variables, and custom facts are not truly local—they persist globally and can pollute the namespace. Prefixing them with the role name reduces conflicts, while two underscores indicate they are internal. This applies to variables set by set_fact and register, as they remain after the role completes. The two underscores for internal variables is a community convention.

Booleans

⇑ Back to TOC ⇑

You MUST: use true and false only (all lowercase without quotes).

Good examples:

- name: "Start fail2ban"
  become: true
  ansible.builtin.service:
    name: "fail2ban"
    state: "restarted"
    enabled: true

Bad examples:

- name: "Start fail2ban"
  become: 'yes'
  ansible.builtin.service:
    name: "fail2ban"
    state: "restarted"
    enabled: 1

Reasoning:

• Using true / false prevents the Norway problem.
• YAML 1.2 only allows true / false as boolean literals. YAML 1.1 (which is less strict on this) is old and deprecated.

Maps (key: value)

⇑ Back to TOC ⇑

You MUST:

• Use only one space after the colon when specifying a key-value pair.
• Always use the map syntax, regardless of the number of pairs in the map.

Good examples:

- name: "Start fail2ban"
  ansible.builtin.service:
    name: "fail2ban"
    state: "restarted"
    enabled: true


- name: "Create filter.d directory for easier fail2ban extension"
  ansible.builtin.file:
    group: "fail2ban"
    mode: "0755"
    owner: "fail2ban"
    path: "/etc/fail2ban/filter.d"
    state: "directory"


- name: "Copy sshd.conf to /etc/fail2ban/filter.d/"
  ansible.builtin.copy:
    dest: "/etc/fail2ban/filter.d/"
    src: "files/filters/sshd.conf"

Bad examples:

- name: "Start fail2ban"
  ansible.builtin.service:
    name    : "fail2ban"
    state   : "restarted"
    enabled : true


- name: "Create filter.d directory for easier fail2ban extension"
  ansible.builtin.file: "path:=/etc/fail2ban/filter.d state=directory group=fail2ban mode=0755 owner=fail2ban"


- name: "Copy sshd.conf to /etc/fail2ban/filter.d/"
  ansible.builtin.copy: "dest=/etc/fail2ban/filter.d/ src=files/filters/sshd.conf"

Reasoning:

• The map syntax is easier to read and less error-prone.
• Version control diffs are cleaner and more meaningful, as only new or changed parameters are highlighted.

Value retrieval: bracket notation

⇑ Back to TOC ⇑

You MUST:

• Use bracket notation for value retrieval.

You SHOULD:

• Refactor projects to use bracket notation instead of dot notation, provided the project maintainers agree.

You MUST NOT:

• Mix dot and bracket notation within the same project.

Good examples:

- name: "Define some variables"
  ansible.builtin.set_fact:
    foo:
      field1: "one"
      field2: "two"
    platforms:
      - name: "Fedora"
        versions:
          - "all"
      - name: "Ubuntu"
        versions:
          - "16.04"
          - "16.10"


- name: "Show field1 (prints: one)"
  ansible.builtin.debug:
    msg: "{{ foo['field1'] }}"


- name: "Nice Linux distribution? (prints: Fedora)"
  ansible.builtin.debug:
    msg: "{{ platforms[0]['name'] }}"


- name: "Ubuntu version used? (prints: 16.10)"
  ansible.builtin.debug:
    msg: "{{ platforms[1]['versions'][1] }}"

Bad examples:

- name: "Define some variables"
  ansible.builtin.set_fact:
    foo:
      field1: "one"
      field2: "two"
    platforms:
      - name: "Fedora"
        versions:
          - "all"
      - name: "Ubuntu"
        versions:
          - "16.04"
          - "16.10"


- name: "Show field1 (prints: one)"
  ansible.builtin.debug:
    msg: "{{ foo.field1 }}"


- name: "Nice Linux distribution? (prints: Fedora)"
  ansible.builtin.debug:
    msg: "{{ platforms.0.name }}"


- name: "Ubuntu version used? (prints: 16.10)"
  ansible.builtin.debug:
    msg: "{{ platforms.1.versions[1] }}"

Reasoning:

• Bracket notation makes it easier to distinguish between keys and attributes or methods of Python dictionaries. It also usually results in better editor highlighting.
• Bracket notation allows for seamless use of variables as keys.
• Dot notation can lead to issues because keys may collide with attributes or methods of Python dictionaries (e.g., count, copy, title, and others). Consistency is crucial, so it’s better to stick with bracket notation rather than switching between the two options within a playbook.

Tasks and play declaration

⇑ Back to TOC ⇑

You MUST:

• Use name: as the first key for plays, tasks and handlers.
• Begin all names with an uppercase letter.
• Use the block, rescue and always as the last key on tasks.

You SHOULD:

• Arrange keys in tasks to follow this general order (omit any keys that are not needed):
  1. Attributes defining what the task is, where to run it and what its parameters are:
     • name: Always first, providing a clear description of what the task does.
     • delegate_to
     • become
     • module: The actual action.
       • Place primary, mandatory module parameters (e.g., name, state, path) directly under the module name for clarity.
       • Arrange all other, optional module parameters in alphabetical order, unless doing so negatively impacts readability or logic.
     • args: If using the args syntax for complex module parameters.
     • vars: If using additional or inline variables to the module.
     • environment: If settingenvironment variables for an action.
  2. Attributes defining when to run or fail, control attributes:
     • when
     • changed_when
     • failed_when
     • ignore_errors
     • run_once
  3. Loop controls:
     • loop
     • loop_control
     • with_*
  4. Attributes defining how to process results:
     • register
     • no_log
  5. Attributes defining what to do afterwards:
     • notify
  6. tags
• Always use a list format for when, changed_when, and failed_when, even if there is only one condition.
• If it is necessary to make task names dynamic, do so by appending {{ variables }} at the end of the string.
• The include_* and import_* statements are not treated differently from other tasks/plays. This clarification is included because many other style guides impose separate rules for these.

You MUST NOT:

• Use variables (wrapped in Jinja2 templates) in play names (the name attribute of a playbook), as they do not expand properly.
• Use loop variables (e.g., the default item) in task names within a loop, as they also do not expand properly.

Good examples:

---
- name: "A cool playbook"
  hosts: "localhost"
  tasks:
    - name: "A block"
      when:
        - false
      block: # last key, even after "when:" to prevent indentation errors
        - name: "Display a message"
          ansible.builtin.debug:
            msg: "Hello world!"


        - name: "Get basic information from 'linux_container' hosts"
          delegate_to: "{{ item }}"
          # ansible.builtin.raw instead of ansible.builtin.command as it works
          # without any existing python on the target
          ansible.builtin.raw: |
            /usr/bin/grep "PRETTY" /etc/os-release; /usr/bin/uname -r;
          args:
            executable: "/bin/bash"
          changed_when: false
          failed_when: false
          loop: "{{ groups['linux_container'] }}"
          loop_control:
            label: "{{ item }}"
          register: __basicinfo_result


        - name: "Show basic information from 'linux_container' hosts"
          ansible.builtin.debug:
            msg: "{{ processed_result.split('\n') }}"
          vars:
            processed_result: |-
              {% for result in __basicinfo_result.results %}
              Host: {{ result.item }} - {{ result.stdout_lines | default(['No output']) | join(', ') }}
              {% endfor %}
          when:
            - __basicinfo_result is defined
            - __basicinfo_result.results is defined
            - __basicinfo_result.results[0].stdout_lines is defined
          run_once: true


    - name: "Install nginx"
      ansible.builtin.apt:
        name: "nginx"
        state: "present"
      when:
        - ansible_os_family == 'RedHat'


    - name: "Create some EC2 Instances"
      amazon.aws.ec2_instance:
        image: "ami-c7d092f7"
        assign_public_ip: true
        key_name: "my_key"
        instance_tags:
          name: "{{ item }}"
      when:
        - ansible_os_family == 'RedHat'
      ignore_errors: true
      loop: "{{ instance_names }}"
      register: __ec2_output
      tags:
        - "ec2"


    - name: "Include tasks to cleanup"
      ansible.builtin.include_tasks:
        file: "cleanup.yml"
      tags:
        - "always"
        - "cleanup"


    - name: "Manage device {{ device_name }}"
      foo.module:
        device: "{{ device_name }}"
      when:
        - ansible_os_family == 'RedHat'
      changed_when: false
      failed_when: false

Bad examples:

---

- hosts: "localhost"
  name: "A cool playbook" # should be the first one
  tasks:
    - name: "A block"
      block:
        - name: "Display a message"
          ansible.builtin.debug:
            msg: "Hello world!"
      when: true # when key should be before block


  - name: "Create some EC2 Instances"
    when: ansible_os_family == 'RedHat'
    tags: "ec2"
    amazon.aws.ec2_instance: "image=ami-c7d092f7 assign_public_ip=true"
    register: __ec2_output
    with_items: "{{ instance_names }}"
    ignore_errors: true


  - ansible.builtin.include_tasks: "setup.yml"
    tags: "setup"
  - ansible.builtin.include_tasks: "config.yml"
  - ansible.builtin.include_tasks: "cleanup.yml" tags=always

  - name: "{{ device_name }} gets managed as device"
    changed_when: false
    failed_when: false
    foo.module:
      device: "{{ device_name }}"

Reasoning:

• Well-defined parameter rules are helping to create consistent code. Version control diffs are cleaner and more meaningful, as only new or changed parameters are highlighted.
• The proposed ordering creates a logical flow: "what the task is and where to run it" → "when to run it" → "how to process results" → "what to do afterwards". register: is placed after loops since the registered variable structure depends on whether loops are used.
• Keep in mind that using variables in task names can make it harder for users to correlate logs with the corresponding code when searching for an actual variable value (e.g., /dev/foo gets managed as device instead of {{ device_name }} gets managed as device). Placing the variable part at the end of a task name improves log readability and makes it easier to search for the corresponding code.
• The reasoning of the Ansible Lint rule: key-order.
• Further discussion:
  • Ansible Lint: ansible lint should check order of tasks attributes for when and name #578. Many people at Red Hat place when: immediately after name:. This is a subjective choice and we think our approach of grouping it with other control attributes is logical and the name: as well as the module describe what is done together as a unit.

Comments

⇑ Back to TOC ⇑

You MUST:

• Provide explanations for role and collection variables using comments in /defaults or /vars where they are defined.
• Whenever ansible.builtin.command or ansible.builtin.shell modules are used, include a comment with a justification why they are needed to aid future maintenance.

You SHOULD:

• Use descriptive enough name values to tell what a task does instead of comments whenever possible.
• Keep multi-line comments below 80 characters per line (excluding indentation).

Reasoning:

• Good, descriptive name values also produce valuable output for the user, as comments are not displayed."
• Variables documented in the /defaults or /vars directories do not require explanation within the playbooks themselves.

Linting

You MUST:

• Check your playbooks, collections, roles, and other applicable files with ansible-lint --profile production --strict --skip-list use-loop.

Reasoning:

• Ansible Lint is an official project by the Ansible Core Team and is widely adopted. It can be run offline and provides a command-line tool for linting playbooks, helping to identify areas for potential improvement. Following its recommendations promotes consistent, high-quality code.
• Ansible Lint automatically runs ansible-playbook --syntax-check.
• with_* deprecation is still under discussion.

Miscellaneous

⇑ Back to TOC ⇑

• Ensure that all tasks are idempotent.
• Avoid overriding role defaults, variables, or input parameters using set_fact. Instead, use a distinct variable name.
• Do not use meta: end_play, as it terminates the entire play rather than just the tasks for a specific host (when working with multiple hosts in the inventory). If absolutely necessary, consider using meta: end_host instead.
• Limit the use of the ansible.builtin.copy module to scenarios such as copying remote files, static files, or uploading binary blobs. For most file operations, prefer using ansible.builtin.template. Even if the file currently does not require templating, this preemptively simplifies future updates, especially when templating functionality needs to be added later.
• When using the ansible.builtin.template module, append .j2 to the template file name for clarity and convention.
• Use tags with caution.
• Use the verbosity parameter with debug statements.

Linguistic guidelines

⇑ Back to TOC ⇑

You SHOULD:

• Follow the official Ansible Developers Style Guide.
• Follow Spelling - Word Usage - Common Words and Phrases to Use and Avoid recommendations.

Excerpt of the most important rules:

• Headers should be written in sentence case. For example, this section's title is Header case, not Header Case or HEADER CASE.

• Stylistic cheat-sheet:

  Rule	Good Exmaple	Bad Example
  Use active voice	You can run a task by	A task can be run by
  Use the present tense	This command creates a	This command will create a
  Use standard English	Return to this page	Hop back to this page
  Use American English	The color of the output	The colour of the output

Reasoning:

The official rules are based on experience of technical writers. As these are also rules for Ansible developers, they are influencing the whole community. It makes sense to apply them in-house to have a consistent user experience.

Author information

⇑ Back to TOC ⇑

This guide was written by foundata to produce robust, readable and consistent code. It was inspired by Whitecloud Analytics's Ansible styleguide.