205 lines
4.7 KiB
YAML
205 lines
4.7 KiB
YAML
# When running a typical evolinux playbook
|
|
# you can customize those variables :
|
|
|
|
# evolinux-base/email
|
|
|
|
general_alert_email: "root@localhost"
|
|
reboot_alert_email: Null
|
|
apt_alert_email: Null
|
|
log2mail_alert_email: Null
|
|
raid_alert_email: Null
|
|
postfix_alias_email: Null
|
|
|
|
# evolinux-base/hostname
|
|
|
|
evolinux_hostname_include: True
|
|
|
|
evolinux_hostname_hosts: True
|
|
evolinux_hostname_mailname: True
|
|
|
|
evolinux_hostname: "{{ ansible_hostname }}"
|
|
evolinux_domain: "{{ ansible_domain }}"
|
|
evolinux_fqdn: "{{ ansible_fqdn }}"
|
|
evolinux_internal_hostname: "{{ evolinux_hostname }}"
|
|
|
|
# evolinux-base/kernel
|
|
|
|
evolinux_kernel_include: True
|
|
|
|
evolinux_kernel_reboot_after_panic: True
|
|
evolinux_kernel_disable_tcp_timestamps: True
|
|
evolinux_kernel_reduce_swapiness: True
|
|
evolinux_kernel_cve20165696: True
|
|
|
|
# evolinux-base/apt
|
|
|
|
evolinux_apt_include: True
|
|
|
|
evolinux_apt_conf: True
|
|
evolinux_apt_hooks: True
|
|
evolinux_apt_disable_originals: True
|
|
evolinux_apt_disable_debsrc: True
|
|
evolinux_apt_basic_sources: True
|
|
evolinux_apt_public_sources: True
|
|
evolinux_apt_upgrade: True
|
|
evolinux_apt_remove_aptitude: True
|
|
|
|
evolinux_apt_repositories_components: "main"
|
|
|
|
# evolinux-base/fstab
|
|
|
|
evolinux_fstab_include: True
|
|
|
|
evolinux_fstab_var_tmp: True
|
|
|
|
# evolinux-base/packages
|
|
|
|
evolinux_packages_include: True
|
|
|
|
evolinux_packages_system: True
|
|
evolinux_packages_diagnostic: True
|
|
evolinux_packages_hardware: True
|
|
evolinux_packages_common: True
|
|
evolinux_packages_serveur_base: True
|
|
evolinux_packages_invalid_mta: True
|
|
evolinux_packages_delete_nfs: True
|
|
evolinux_packages_listchanges: True
|
|
|
|
# evolinux-base/system
|
|
|
|
evolinux_system_include: True
|
|
|
|
evolinux_system_chmod_tmp: True
|
|
evolinux_system_locales: True
|
|
evolinux_system_timezone: "Europe/Paris"
|
|
evolinux_system_vim_default: True
|
|
evolinux_system_profile: True
|
|
evolinux_system_dirmode_adduser: True
|
|
evolinux_system_alert5_init: True
|
|
evolinux_system_alert5_enable: True
|
|
evolinux_system_eni_auto: True
|
|
evolinux_system_ntp_server: False
|
|
|
|
# evolinux-base/root
|
|
|
|
evolinux_root_include: True
|
|
|
|
evolinux_root_chmod: True
|
|
evolinux_root_bashrc: True
|
|
evolinux_root_bash_history: True
|
|
evolinux_root_umask: True
|
|
evolinux_root_gitconfig: True
|
|
evolinux_root_bash_history_appendonly: True
|
|
evolinux_root_vim_default: True
|
|
evolinux_root_vim_conf: True
|
|
|
|
# evolinux-base/ssh
|
|
|
|
evolinux_ssh_include: True
|
|
|
|
evolinux_ssh_password_auth_addresses: []
|
|
evolinux_ssh_match_address: True
|
|
evolinux_ssh_disable_root: True
|
|
evolinux_ssh_disable_acceptenv: True
|
|
|
|
# evolinux-base/postfix
|
|
|
|
evolinux_postfix_include: True
|
|
|
|
evolinux_postfix_packages: True
|
|
evolinux_postfix_users_alias_root: True
|
|
evolinux_postfix_mailer_alias_root: True
|
|
evolinux_postfix_root_alias: True
|
|
evolinux_postfix_purge_exim: True
|
|
|
|
# evolinux-base/logs
|
|
|
|
evolinux_logs_include: True
|
|
|
|
evolinux_logs_logrotate_confs: True
|
|
evolinux_logs_default_rotate: True
|
|
evolinux_logs_disable_logrotate_rsyslog: True
|
|
evolinux_logs_rsyslog_conf: True
|
|
|
|
# evolinux-base/default www
|
|
|
|
evolinux_default_www_include: True
|
|
|
|
evolinux_default_www_files: True
|
|
evolinux_default_www_ssl_cert: True
|
|
evolinux_default_www_ssl_subject: "/CN={{ ansible_fqdn }}"
|
|
|
|
evolinux_default_www_nginx_vhost: True
|
|
evolinux_default_www_nginx_enabled: False
|
|
|
|
evolinux_default_www_apache_vhost: True
|
|
evolinux_default_www_apache_enabled: False
|
|
|
|
evolinux_default_www_redirect_url: "http://evolix.fr"
|
|
|
|
# evolinux-base/hardware
|
|
|
|
evolinux_hardware_include: True
|
|
|
|
# evolinux-base/providers
|
|
|
|
evolinux_provider_online_include: False
|
|
evolinux_provider_orange_fce_include: False
|
|
|
|
|
|
# evolinux-admin-users
|
|
|
|
admin_users:
|
|
foo:
|
|
name: foo
|
|
uid: 1001
|
|
fullname: 'Mr Foo'
|
|
password_hash: 'sdfgsdfgsdfgsdfg'
|
|
ssh_key: 'ssh-rsa AZERTYXYZ'
|
|
bar:
|
|
name: bar
|
|
uid: 1002
|
|
fullname: 'Mr Bar'
|
|
password_hash: 'gsdfgsdfgsdfgsdf'
|
|
ssh_key: 'ssh-rsa QWERTYUIOP'
|
|
|
|
# minifirewall
|
|
|
|
minifirewall_git_url: "https://forge.evolix.org/minifirewall.git"
|
|
minifirewall_checkout_path: "/usr/local/src/minifirewall"
|
|
minifirewall_int: "{{ ansible_default_ipv4.interface }}"
|
|
minifirewall_ipv6: "on"
|
|
minifirewall_intlan: "{{ ansible_default_ipv4.address }}/32"
|
|
minifirewall_trusted_ips: []
|
|
minifirewall_privilegied_ips: []
|
|
|
|
# squid
|
|
|
|
squid_address: "{{ ansible_default_ipv4.address }}"
|
|
|
|
# proftpd
|
|
|
|
proftpd_hostname: "{{ ansible_hostname }}"
|
|
proftpd_fqdn: "{{ ansible_fqdn }}"
|
|
|
|
# evomaintenance
|
|
|
|
evomaintenance_alert_email: Null
|
|
|
|
evomaintenance_hostname: "{{ ansible_fqdn }}"
|
|
|
|
evomaintenance_pg_host: Null
|
|
evomaintenance_pg_passwd: Null
|
|
evomaintenance_pg_db: Null
|
|
evomaintenance_pg_table: Null
|
|
|
|
evomaintenance_from: "evomaintenance@{{ ansible_fqdn }}"
|
|
evomaintenance_full_from: "Evomaintenance <{{ evomaintenance_from }}>"
|
|
|
|
evomaintenance_urgency_from: mama.doe@example.com
|
|
evomaintenance_urgency_tel: "06.00.00.00.00"
|
|
|
|
evomaintenance_realm: "{{ ansible_domain }}"
|
|
|
|
evomaintenance_hosts: []
|