force: [yes,no] → force [true,false]
All checks were successful
Ansible Lint |Total|New|Outstanding|Fixed|Trend
|:-:|:-:|:-:|:-:|:-:
|2615|7|2608|177|:+1:
Reference build: <a href="https://jenkins.evolix.org/job/gitea/job/ansible-roles/job/unstable/278//ansiblelint">Evolix » ansible-roles » unstable #278</a>
gitea/ansible-roles/pipeline/head This commit looks good
All checks were successful
Ansible Lint |Total|New|Outstanding|Fixed|Trend
|:-:|:-:|:-:|:-:|:-:
|2615|7|2608|177|:+1:
Reference build: <a href="https://jenkins.evolix.org/job/gitea/job/ansible-roles/job/unstable/278//ansiblelint">Evolix » ansible-roles » unstable #278</a>
gitea/ansible-roles/pipeline/head This commit looks good
This commit is contained in:
parent
def4d54538
commit
00fe225a3c
|
@ -21,6 +21,7 @@ The **patch** part changes is incremented if multiple releases happen the same m
|
|||
|
||||
### Changed
|
||||
|
||||
* all: change syntax "force: [yes,no]" → "force [true,false]"
|
||||
* elasticsearch: improve networking configuration
|
||||
* evolinux-users: remove Stretch references in tasks that also apply to next Debian versions
|
||||
* mysql: improve shell syntax for mysql_skip script
|
||||
|
|
|
@ -7,7 +7,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- apache
|
||||
|
||||
|
@ -30,7 +30,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
notify: reload apache
|
||||
tags:
|
||||
- apache
|
||||
|
|
|
@ -14,6 +14,6 @@
|
|||
owner: log2mail
|
||||
group: adm
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- apache
|
||||
|
|
|
@ -73,7 +73,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0640"
|
||||
force: yes
|
||||
force: true
|
||||
notify: reload apache
|
||||
tags:
|
||||
- apache
|
||||
|
@ -85,7 +85,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
notify: reload apache
|
||||
tags:
|
||||
- apache
|
||||
|
@ -119,7 +119,7 @@
|
|||
src: evolinux-default.conf.j2
|
||||
dest: /etc/apache2/sites-available/000-evolinux-default.conf
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
notify: reload apache
|
||||
tags:
|
||||
- apache
|
||||
|
@ -129,7 +129,7 @@
|
|||
src: /etc/apache2/sites-available/000-evolinux-default.conf
|
||||
dest: /etc/apache2/sites-enabled/000-default.conf
|
||||
state: link
|
||||
force: yes
|
||||
force: true
|
||||
notify: reload apache
|
||||
when: apache_evolinux_default_enabled | bool
|
||||
tags:
|
||||
|
@ -181,7 +181,7 @@
|
|||
src: save_apache_status.sh
|
||||
dest: /usr/share/scripts/save_apache_status.sh
|
||||
mode: "0755"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- apache
|
||||
|
||||
|
|
|
@ -13,7 +13,7 @@
|
|||
dest: "{{ apache_serverstatus_suffix_file }}"
|
||||
# The last character "\u000A" is a line feed (LF), it's better to keep it
|
||||
content: "{{ apache_serverstatus_suffix }}\u000A"
|
||||
force: yes
|
||||
force: true
|
||||
when: apache_serverstatus_suffix | length > 0
|
||||
|
||||
- name: generate random string for server-status suffix
|
||||
|
|
|
@ -4,7 +4,7 @@
|
|||
ansible.builtin.template:
|
||||
src: '{{ ansible_distribution_release }}_backports.sources.j2'
|
||||
dest: /etc/apt/sources.list.d/backports.sources
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: apt_backports_sources
|
||||
tags:
|
||||
|
@ -14,7 +14,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: '{{ ansible_distribution_release }}_backports_preferences'
|
||||
dest: /etc/apt/preferences.d/0-backports-defaults
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: apt_backports_config
|
||||
tags:
|
||||
|
|
|
@ -11,7 +11,7 @@
|
|||
ansible.builtin.template:
|
||||
src: '{{ ansible_distribution_release }}_backports.list.j2'
|
||||
dest: /etc/apt/sources.list.d/backports.list
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: apt_backports_list
|
||||
tags:
|
||||
|
@ -21,7 +21,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: '{{ ansible_distribution_release }}_backports_preferences'
|
||||
dest: /etc/apt/preferences.d/0-backports-defaults
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: apt_backports_config
|
||||
tags:
|
||||
|
|
|
@ -5,7 +5,7 @@
|
|||
src: "{{ ansible_distribution_release }}_basics.sources.j2"
|
||||
dest: /etc/apt/sources.list.d/system.sources
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
register: apt_basic_sources
|
||||
tags:
|
||||
- apt
|
||||
|
@ -15,7 +15,7 @@
|
|||
src: "{{ ansible_distribution_release }}_security.sources.j2"
|
||||
dest: /etc/apt/sources.list.d/security.sources
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
register: apt_security_sources
|
||||
tags:
|
||||
- apt
|
||||
|
|
|
@ -5,7 +5,7 @@
|
|||
src: "{{ ansible_distribution_release }}_basics.list.j2"
|
||||
dest: /etc/apt/sources.list
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
register: apt_basic_list
|
||||
tags:
|
||||
- apt
|
||||
|
|
|
@ -20,7 +20,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: pub_evolix.asc
|
||||
dest: "{{ apt_keyring_dir }}/pub_evolix.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
@ -31,7 +31,7 @@
|
|||
ansible.builtin.template:
|
||||
src: evolix_public.sources.j2
|
||||
dest: /etc/apt/sources.list.d/evolix_public.sources
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: apt_evolix_public
|
||||
tags:
|
||||
|
|
|
@ -20,7 +20,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: pub_evolix.asc
|
||||
dest: "{{ apt_keyring_dir }}/pub_evolix.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
@ -31,7 +31,7 @@
|
|||
ansible.builtin.template:
|
||||
src: evolix_public.list.j2
|
||||
dest: /etc/apt/sources.list.d/evolix_public.list
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: apt_evolix_public
|
||||
tags:
|
||||
|
|
|
@ -71,7 +71,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: check_held_packages.sh
|
||||
dest: /usr/share/scripts/check_held_packages.sh
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0755"
|
||||
tags:
|
||||
- apt
|
||||
|
|
|
@ -16,7 +16,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: "{{ item }}"
|
||||
dest: "/usr/share/scripts/{{ item }}"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0755"
|
||||
loop:
|
||||
- deb822-migration.py
|
||||
|
|
|
@ -7,5 +7,5 @@
|
|||
owner: bind
|
||||
group: bind
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart bind
|
|
@ -23,7 +23,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart apparmor
|
||||
when: check_apparmor.rc == 0
|
||||
|
||||
|
@ -47,7 +47,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify:
|
||||
- reload systemd
|
||||
- restart bind
|
||||
|
@ -77,7 +77,7 @@
|
|||
dest: /root/chroot-bind.sh
|
||||
mode: "0700"
|
||||
owner: root
|
||||
force: yes
|
||||
force: true
|
||||
backup: yes
|
||||
when: bind_chroot_set | bool
|
||||
|
||||
|
@ -109,7 +109,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart bind
|
||||
|
||||
- ansible.builtin.include: munin.yml
|
||||
|
|
|
@ -48,7 +48,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart munin-node
|
||||
tags:
|
||||
- bind
|
||||
|
|
|
@ -8,7 +8,7 @@
|
|||
owner: bind
|
||||
group: bind
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart bind
|
||||
|
||||
- name: enable zones.rfc1918 for recursive server
|
||||
|
|
|
@ -15,7 +15,7 @@
|
|||
ansible.builtin.template:
|
||||
src: acme-challenge/nginx.conf.j2
|
||||
dest: /etc/nginx/snippets/letsencrypt.conf
|
||||
force: yes
|
||||
force: true
|
||||
notify: reload nginx
|
||||
when: is_nginx.stat.exists
|
||||
|
||||
|
@ -30,7 +30,7 @@
|
|||
ansible.builtin.template:
|
||||
src: acme-challenge/apache.conf.j2
|
||||
dest: /etc/apache2/conf-available/letsencrypt.conf
|
||||
force: yes
|
||||
force: true
|
||||
notify: reload apache
|
||||
|
||||
- name: ACME challenge for Apache is enabled
|
||||
|
|
|
@ -16,7 +16,7 @@
|
|||
mode: '0755'
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
notify: install letsencrypt-auto
|
||||
|
||||
- name: Check certbot script
|
||||
|
@ -49,7 +49,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: cron_jessie
|
||||
dest: /etc/cron.d/certbot
|
||||
force: yes
|
||||
force: true
|
||||
when: certbot_custom_crontab | bool
|
||||
|
||||
- name: disable self-upgrade
|
||||
|
|
|
@ -26,7 +26,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: docker-debian.asc
|
||||
dest: "{{ apt_keyring_dir }}/docker-debian.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -19,4 +19,4 @@
|
|||
mode: "0755"
|
||||
owner: "root"
|
||||
group: "root"
|
||||
force: yes
|
||||
force: true
|
||||
|
|
|
@ -9,7 +9,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: elastic.asc
|
||||
dest: "{{ apt_keyring_dir }}/elastic.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -38,7 +38,7 @@
|
|||
dest: "{{ repository_path }}/.gitignore"
|
||||
owner: root
|
||||
mode: "0600"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- etc-git
|
||||
|
||||
|
|
|
@ -10,7 +10,7 @@
|
|||
src: evocommit
|
||||
dest: /usr/local/bin/evocommit
|
||||
mode: "0755"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- etc-git
|
||||
|
||||
|
@ -19,7 +19,7 @@
|
|||
src: ansible-commit
|
||||
dest: /usr/local/bin/ansible-commit
|
||||
mode: "0755"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- etc-git
|
||||
|
||||
|
@ -28,7 +28,7 @@
|
|||
src: etc-git-optimize
|
||||
dest: /usr/share/scripts/etc-git-optimize
|
||||
mode: "0755"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- etc-git
|
||||
|
||||
|
@ -37,7 +37,7 @@
|
|||
src: etc-git-status
|
||||
dest: /usr/share/scripts/etc-git-status
|
||||
mode: "0755"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- etc-git
|
||||
|
||||
|
|
|
@ -16,5 +16,5 @@
|
|||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
when: is_cron_installed.rc == 0
|
||||
|
|
|
@ -36,7 +36,7 @@
|
|||
dest: "{{ evocheck_bin_dir }}/evocheck.sh"
|
||||
mode: "0700"
|
||||
owner: root
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- evocheck
|
||||
|
||||
|
@ -44,6 +44,6 @@
|
|||
ansible.builtin.copy:
|
||||
src: evocheck.cf
|
||||
dest: /etc/evocheck.cf
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- evocheck
|
||||
|
|
|
@ -20,7 +20,7 @@
|
|||
src: default_www/index.html.j2
|
||||
dest: /var/www/index.html
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
when: evolinux_default_www_files | bool
|
||||
|
||||
# SSL cert
|
||||
|
|
|
@ -12,4 +12,4 @@
|
|||
src: /usr/local/sbin/dump-server-state
|
||||
dest: /usr/local/sbin/backup-server-state
|
||||
state: link
|
||||
force: yes
|
||||
force: true
|
||||
|
|
|
@ -47,7 +47,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: hwraid.le-vert.net.asc
|
||||
dest: "{{ apt_keyring_dir }}/hwraid.le-vert.net.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -4,7 +4,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: hpePublicKey2048_key1.asc
|
||||
dest: "{{ apt_keyring_dir }}/hpePublicKey2048_key1.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -41,7 +41,7 @@
|
|||
ansible.builtin.copy:
|
||||
dest: /etc/mailname
|
||||
content: "{{ evolinux_fqdn }}\n"
|
||||
force: yes
|
||||
force: true
|
||||
when: evolinux_hostname_mailname | bool
|
||||
|
||||
# Override facts
|
||||
|
|
|
@ -27,7 +27,7 @@
|
|||
ansible.builtin.copy:
|
||||
content: ""
|
||||
dest: "/root/.bash_history"
|
||||
force: no
|
||||
force: false
|
||||
when: evolinux_root_bash_history | bool
|
||||
|
||||
- name: Set umask in /root/.profile
|
||||
|
@ -47,7 +47,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: root/gitconfig
|
||||
dest: "/root/.gitconfig"
|
||||
force: no
|
||||
force: false
|
||||
when: evolinux_root_gitconfig | bool
|
||||
|
||||
- name: Is .bash_history append-only
|
||||
|
|
|
@ -138,7 +138,7 @@
|
|||
ansible.builtin.template:
|
||||
src: system/alert5.sysvinit.j2
|
||||
dest: /etc/init.d/alert5
|
||||
force: no
|
||||
force: false
|
||||
mode: "0755"
|
||||
when:
|
||||
- evolinux_system_alert5_init | bool
|
||||
|
@ -159,7 +159,7 @@
|
|||
ansible.builtin.template:
|
||||
src: system/alert5.sh.j2
|
||||
dest: /usr/share/scripts/alert5.sh
|
||||
force: no
|
||||
force: false
|
||||
mode: "0755"
|
||||
when:
|
||||
- evolinux_system_alert5_init | bool
|
||||
|
@ -169,7 +169,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: alert5.service
|
||||
dest: /etc/systemd/system/alert5.service
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
when:
|
||||
- evolinux_system_alert5_init | bool
|
||||
|
|
|
@ -13,7 +13,7 @@
|
|||
mode: "0700"
|
||||
owner: root
|
||||
group: root
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: update-evobackup-canary script is present
|
||||
ansible.builtin.copy:
|
||||
|
|
|
@ -12,5 +12,5 @@
|
|||
src: todo.defaults.txt
|
||||
dest: /etc/evolinux/todo.txt
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
when: ansible_distribution == "Debian"
|
||||
|
|
|
@ -12,7 +12,7 @@
|
|||
ansible.builtin.template:
|
||||
src: sudoers.j2
|
||||
dest: /etc/sudoers.d/evolinux
|
||||
force: no
|
||||
force: false
|
||||
mode: "0440"
|
||||
validate: '/usr/sbin/visudo -cf %s'
|
||||
register: copy_sudoers_evolinux
|
||||
|
|
|
@ -4,7 +4,7 @@
|
|||
ansible.builtin.template:
|
||||
src: sudoers_jessie.j2
|
||||
dest: /etc/sudoers.d/evolinux
|
||||
force: no
|
||||
force: false
|
||||
mode: "0440"
|
||||
validate: '/usr/sbin/visudo -cf %s'
|
||||
register: copy_sudoers_evolinux
|
||||
|
|
|
@ -40,7 +40,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "{{ item.mode }}"
|
||||
force: yes
|
||||
force: true
|
||||
backup: yes
|
||||
loop:
|
||||
- { src: 'evomaintenance.sh', dest: '/usr/share/scripts/', mode: '0700' }
|
||||
|
|
|
@ -22,7 +22,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "{{ item.mode }}"
|
||||
force: yes
|
||||
force: true
|
||||
backup: yes
|
||||
loop:
|
||||
- { src: 'evomaintenance.sh', dest: '/usr/share/scripts/', mode: '0700' }
|
||||
|
|
|
@ -9,7 +9,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: elastic.asc
|
||||
dest: "{{ apt_keyring_dir }}/elastic.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -4,7 +4,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: treasuredata.asc
|
||||
dest: "{{ apt_keyring_dir }}/treasuredata.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -12,7 +12,7 @@
|
|||
ansible.builtin.file:
|
||||
src: /usr/share/munin/plugins/haproxy_ng
|
||||
dest: /etc/munin/plugins/haproxy_ng
|
||||
force: yes
|
||||
force: true
|
||||
state: link
|
||||
notify: restart munin-node
|
||||
tags:
|
||||
|
|
|
@ -23,7 +23,7 @@
|
|||
ansible.builtin.template:
|
||||
src: haproxy_apt_preferences.j2
|
||||
dest: /etc/apt/preferences.d/999-haproxy
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: haproxy_apt_preferences
|
||||
tags:
|
||||
|
|
|
@ -9,7 +9,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: jenkins.asc
|
||||
dest: "{{ apt_keyring_dir }}/jenkins.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -14,7 +14,7 @@
|
|||
mode: "0755"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart keepalived
|
||||
tags:
|
||||
- keepalived
|
||||
|
@ -27,7 +27,7 @@
|
|||
mode: "0755"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- keepalived
|
||||
- nrpe
|
||||
|
|
|
@ -9,7 +9,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: elastic.asc
|
||||
dest: "{{ apt_keyring_dir }}/elastic.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -4,13 +4,13 @@
|
|||
ansible.builtin.template:
|
||||
src: nginx_proxy_kibana_ssl.j2
|
||||
dest: /etc/nginx/sites-available/kibana_ssl.conf
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Example proxy for Kibana with Nginx (without SSL)
|
||||
ansible.builtin.template:
|
||||
src: nginx_proxy_kibana_nossl.j2
|
||||
dest: /etc/nginx/sites-available/kibana_nossl.conf
|
||||
force: no
|
||||
force: false
|
||||
|
||||
# - name: Kibana host in Nginx is enabled
|
||||
# file:
|
||||
|
|
|
@ -20,7 +20,7 @@
|
|||
url: "https://raw.githubusercontent.com/munin-monitoring/contrib/master/plugins/libvirt/{{ item }}"
|
||||
dest: "/usr/local/share/munin/plugins/"
|
||||
mode: "0755"
|
||||
force: no
|
||||
force: false
|
||||
loop:
|
||||
- kvm_cpu
|
||||
- kvm_io
|
||||
|
@ -32,7 +32,7 @@
|
|||
src: "/usr/local/share/munin/plugins/{{ plugin_name }}"
|
||||
dest: "/etc/munin/plugins/{{ plugin_name }}"
|
||||
state: link
|
||||
force: yes
|
||||
force: true
|
||||
loop:
|
||||
- kvm_cpu
|
||||
- kvm_io
|
||||
|
|
|
@ -17,7 +17,7 @@
|
|||
mode: "0700"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
|
||||
- name: migrate-vm script is present
|
||||
ansible.builtin.copy:
|
||||
|
@ -26,7 +26,7 @@
|
|||
mode: "0700"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
|
||||
- name: kvmstats script is present
|
||||
ansible.builtin.copy:
|
||||
|
@ -35,7 +35,7 @@
|
|||
mode: "0700"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
|
||||
- name: kvmstats cron is present
|
||||
ansible.builtin.template:
|
||||
|
|
|
@ -18,7 +18,7 @@
|
|||
mode: "0700"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
|
||||
- name: Create /etc/evolinux
|
||||
ansible.builtin.file:
|
||||
|
@ -35,7 +35,7 @@
|
|||
mode: "0600"
|
||||
owner: root
|
||||
group: root
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Cron.d is present
|
||||
ansible.builtin.file:
|
||||
|
|
|
@ -9,7 +9,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: elastic.asc
|
||||
dest: "{{ apt_keyring_dir }}/elastic.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -25,7 +25,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: check_memcached_instances.sh
|
||||
dest: /usr/local/lib/nagios/plugins/check_memcached_instances
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0755"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -9,7 +9,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: elastic.asc
|
||||
dest: "{{ apt_keyring_dir }}/elastic.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -52,7 +52,7 @@
|
|||
ansible.builtin.template:
|
||||
src: logrotate_bullseye.j2
|
||||
dest: /etc/logrotate.d/mongodb
|
||||
force: yes
|
||||
force: true
|
||||
backup: no
|
||||
|
||||
- ansible.builtin.include_role:
|
||||
|
@ -74,7 +74,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: "munin/{{ item }}"
|
||||
dest: '/usr/local/share/munin/plugins/{{ item }}'
|
||||
force: yes
|
||||
force: true
|
||||
loop:
|
||||
- mongo_btree
|
||||
- mongo_collections
|
||||
|
|
|
@ -10,7 +10,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: "server-{{ mongodb_version }}.asc"
|
||||
dest: "{{ apt_keyring_dir }}/mongodb-server-{{ mongodb_version }}.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
@ -51,7 +51,7 @@
|
|||
ansible.builtin.template:
|
||||
src: logrotate_bullseye.j2
|
||||
dest: /etc/logrotate.d/mongodb
|
||||
force: yes
|
||||
force: true
|
||||
backup: no
|
||||
|
||||
- ansible.builtin.include_role:
|
||||
|
@ -73,7 +73,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: "munin/{{ item }}"
|
||||
dest: '/usr/local/share/munin/plugins/{{ item }}'
|
||||
force: yes
|
||||
force: true
|
||||
loop:
|
||||
- mongo_btree
|
||||
- mongo_collections
|
||||
|
|
|
@ -16,7 +16,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: "server-{{ mongodb_version }}.asc"
|
||||
dest: "{{ apt_keyring_dir }}/mongodb-server-{{ mongodb_version }}.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
@ -65,7 +65,7 @@
|
|||
ansible.builtin.template:
|
||||
src: logrotate_buster.j2
|
||||
dest: /etc/logrotate.d/mongodb
|
||||
force: yes
|
||||
force: true
|
||||
backup: no
|
||||
|
||||
- ansible.builtin.include_role:
|
||||
|
@ -87,7 +87,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: "munin/{{ item }}"
|
||||
dest: '/usr/local/share/munin/plugins/{{ item }}'
|
||||
force: yes
|
||||
force: true
|
||||
loop:
|
||||
- mongo_btree
|
||||
- mongo_collections
|
||||
|
|
|
@ -16,7 +16,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: "server-{{ mongodb_version }}.asc"
|
||||
dest: "/etc/apt/trusted.gpg.d/mongodb-server-{{ mongodb_version }}.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
@ -57,5 +57,5 @@
|
|||
ansible.builtin.template:
|
||||
src: logrotate_jessie.j2
|
||||
dest: /etc/logrotate.d/mongodb
|
||||
force: yes
|
||||
force: true
|
||||
backup: no
|
||||
|
|
|
@ -28,7 +28,7 @@
|
|||
ansible.builtin.template:
|
||||
src: logrotate_stretch.j2
|
||||
dest: /etc/logrotate.d/mongodb-server
|
||||
force: yes
|
||||
force: true
|
||||
backup: no
|
||||
|
||||
- name: disable previous logrotate
|
||||
|
|
|
@ -13,7 +13,7 @@
|
|||
src: evolinux-defaults.conf.j2
|
||||
dest: /etc/monit/conf.d/z-evolinux-defaults.conf
|
||||
mode: "0640"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart monit
|
||||
tags:
|
||||
- monit
|
||||
|
|
|
@ -10,7 +10,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- mysql
|
||||
|
||||
|
@ -21,6 +21,6 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- mysql
|
||||
|
|
|
@ -51,7 +51,7 @@
|
|||
mode: "0755"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
|
||||
- name: systemd unit is installed
|
||||
ansible.builtin.copy:
|
||||
|
@ -60,7 +60,7 @@
|
|||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
force: yes
|
||||
force: true
|
||||
register: mysql_systemd_unit
|
||||
|
||||
- name: APT cache is up-to-date
|
||||
|
|
|
@ -75,7 +75,7 @@
|
|||
mode: "0755"
|
||||
owner: root
|
||||
group: staff
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- mytop
|
||||
- mysql
|
||||
|
@ -96,7 +96,7 @@
|
|||
src: mytop-config.j2
|
||||
dest: /root/.mytop
|
||||
mode: "0600"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- mytop
|
||||
- mysql
|
||||
|
|
|
@ -10,7 +10,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- mysql
|
||||
|
||||
|
|
|
@ -10,7 +10,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: "{{ mysql_restart_handler_name }}"
|
||||
tags:
|
||||
- mysql
|
||||
|
@ -36,7 +36,7 @@
|
|||
ansible.builtin.template:
|
||||
src: mariadb.systemd.j2
|
||||
dest: /etc/systemd/system/mariadb.service.d/evolinux.conf
|
||||
force: yes
|
||||
force: true
|
||||
register: mariadb_systemd_override
|
||||
|
||||
- name: reload systemd and restart MariaDB
|
||||
|
|
|
@ -7,7 +7,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0700"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- mysql_skip
|
||||
|
||||
|
@ -45,7 +45,7 @@
|
|||
ansible.builtin.template:
|
||||
src: mysql_skip.systemd.j2
|
||||
dest: /etc/systemd/system/mysql_skip.service
|
||||
force: yes
|
||||
force: true
|
||||
|
||||
- name: "Start or stop systemd unit"
|
||||
ansible.builtin.systemd:
|
||||
|
|
|
@ -76,7 +76,7 @@
|
|||
src: mytop.j2
|
||||
dest: /root/.mytop
|
||||
mode: "0600"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- mytop
|
||||
- mysql
|
||||
|
@ -87,7 +87,7 @@
|
|||
src: mytop.bullseye.j2
|
||||
dest: /root/.mytop
|
||||
mode: "0600"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- mytop
|
||||
- mysql
|
||||
|
@ -220,7 +220,7 @@
|
|||
src: save_mysql_processlist.sh
|
||||
dest: "{{ _mysql_scripts_dir }}/save_mysql_processlist.sh"
|
||||
mode: "0755"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- mysql
|
||||
|
||||
|
@ -229,7 +229,7 @@
|
|||
src: mysql_connections.sh
|
||||
dest: "{{ _mysql_scripts_dir }}/mysql_connections"
|
||||
mode: "0755"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- mysql
|
||||
|
||||
|
@ -238,7 +238,7 @@
|
|||
src: mysql-queries-killer.sh
|
||||
dest: "{{ _mysql_scripts_dir }}/mysql-queries-killer.sh"
|
||||
mode: "0755"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- mysql
|
||||
|
||||
|
@ -247,6 +247,6 @@
|
|||
src: evomariabackup.sh
|
||||
dest: "{{ _mysql_scripts_dir }}/evomariabackup"
|
||||
mode: "0755"
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- mysql
|
|
@ -30,7 +30,7 @@
|
|||
dest: /etc/nagios/nrpe.d/evolix.cfg
|
||||
group: nagios
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
notify: restart nagios-nrpe-server
|
||||
tags:
|
||||
- nagios-nrpe
|
||||
|
|
|
@ -24,7 +24,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0750"
|
||||
force: yes
|
||||
force: true
|
||||
|
||||
- name: "symlink for backward compatibility"
|
||||
ansible.builtin.file:
|
||||
|
@ -40,4 +40,4 @@
|
|||
owner: root
|
||||
group: staff
|
||||
mode: "0755"
|
||||
force: yes
|
||||
force: true
|
|
@ -4,7 +4,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: newrelic.asc
|
||||
dest: "{{ apt_keyring_dir }}/newrelic.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -4,7 +4,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: logrotate_nginx
|
||||
dest: /etc/logrotate.d/nginx
|
||||
force: no
|
||||
force: false
|
||||
tags:
|
||||
- nginx
|
||||
- logrotate
|
||||
|
|
|
@ -40,7 +40,7 @@
|
|||
src: nginx/evolinux-defaults.conf
|
||||
dest: /etc/nginx/conf.d/z-evolinux-defaults.conf
|
||||
mode: "0640"
|
||||
# force: yes
|
||||
# force: true
|
||||
notify: reload nginx
|
||||
tags:
|
||||
- nginx
|
||||
|
@ -57,7 +57,7 @@
|
|||
group: www-data
|
||||
directory_mode: "0640"
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
notify: reload nginx
|
||||
tags:
|
||||
- nginx
|
||||
|
@ -74,7 +74,7 @@
|
|||
group: www-data
|
||||
directory_mode: "0640"
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
notify: reload nginx
|
||||
tags:
|
||||
- nginx
|
||||
|
@ -88,7 +88,7 @@
|
|||
group: www-data
|
||||
directory_mode: "0640"
|
||||
mode: "0640"
|
||||
force: no
|
||||
force: false
|
||||
notify: reload nginx
|
||||
tags:
|
||||
- nginx
|
||||
|
@ -128,7 +128,7 @@
|
|||
src: /etc/nginx/sites-available/evolinux-default.conf
|
||||
dest: /etc/nginx/sites-enabled/default
|
||||
state: link
|
||||
force: yes
|
||||
force: true
|
||||
notify: reload nginx
|
||||
when: nginx_evolinux_default_enabled | bool
|
||||
tags:
|
||||
|
|
|
@ -12,7 +12,7 @@
|
|||
ansible.builtin.template:
|
||||
src: apt/nginx_preferences
|
||||
dest: /etc/apt/preferences.d/999-nginx
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0640"
|
||||
register: nginx_apt_preferences
|
||||
tags:
|
||||
|
|
|
@ -13,7 +13,7 @@
|
|||
dest: "{{ nginx_serverstatus_suffix_file }}"
|
||||
# The last character "\u000A" is a line feed (LF), it's better to keep it
|
||||
content: "{{ nginx_serverstatus_suffix }}\u000A"
|
||||
force: yes
|
||||
force: true
|
||||
when: nginx_serverstatus_suffix | length > 0
|
||||
|
||||
- name: generate random string for server-status suffix
|
||||
|
|
|
@ -60,7 +60,7 @@
|
|||
src: opendkim-evolix.conf
|
||||
dest: /etc/opendkim-evolix.conf
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart opendkim
|
||||
tags:
|
||||
- opendkim
|
||||
|
@ -72,7 +72,7 @@
|
|||
owner: opendkim
|
||||
group: opendkim
|
||||
mode: "0750"
|
||||
force: yes
|
||||
force: true
|
||||
tags:
|
||||
- opendkim
|
||||
|
||||
|
|
|
@ -154,7 +154,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: logrotate_openvpn
|
||||
dest: /etc/logrotate.d/openvpn
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Generate a password for the management interface
|
||||
ansible.builtin.set_fact:
|
||||
|
|
|
@ -43,7 +43,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Copy Apache settings for modules
|
||||
ansible.builtin.template:
|
||||
|
@ -52,7 +52,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Ensure Apache modules configs are enabled
|
||||
ansible.builtin.command:
|
||||
|
|
|
@ -31,7 +31,7 @@
|
|||
<Directory /usr/share/awstats/icon/>
|
||||
Require all granted
|
||||
</Directory>
|
||||
force: no
|
||||
force: false
|
||||
mode: "0644"
|
||||
|
||||
- name: Enable apache awstats-icon configuration
|
||||
|
|
|
@ -15,7 +15,7 @@
|
|||
ansible.builtin.template:
|
||||
src: phpmyadmin_apt_preferences.j2
|
||||
dest: /etc/apt/preferences.d/999-phpmyadmin
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
when: ansible_distribution_major_version is version('10', '=')
|
||||
|
||||
|
@ -53,7 +53,7 @@
|
|||
dest: "{{ packweb_phpmyadmin_suffix_file }}"
|
||||
# The last character "\u000A" is a line feed (LF), it's better to keep it
|
||||
content: "{{ packweb_phpmyadmin_suffix }}\u000A"
|
||||
force: yes
|
||||
force: true
|
||||
when: packweb_phpmyadmin_suffix | length > 0
|
||||
|
||||
- name: generate random string for phpmyadmin suffix
|
||||
|
|
|
@ -19,7 +19,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: percona.asc
|
||||
dest: "{{ apt_keyring_dir }}/percona.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -33,7 +33,7 @@
|
|||
; Put customized values here.
|
||||
; default_charset = "ISO-8859-1"
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: "Set custom values for PHP to enable Symfony"
|
||||
community.general.ini_file:
|
||||
|
|
|
@ -17,10 +17,10 @@
|
|||
dest: "{{ php_cli_custom_ini_file }}"
|
||||
content: |
|
||||
; Put customized values here.
|
||||
force: no
|
||||
force: false
|
||||
|
||||
# This task is not merged with the above copy
|
||||
# because "force: no" prevents any fix after the fact
|
||||
# because "force: false" prevents any fix after the fact
|
||||
- name: "Permissions for custom php.ini for CLI"
|
||||
ansible.builtin.file:
|
||||
dest: "{{ php_cli_custom_ini_file }}"
|
||||
|
|
|
@ -32,7 +32,7 @@
|
|||
dest: "{{ php_fpm_custom_ini_file }}"
|
||||
content: |
|
||||
; Put customized values here.
|
||||
force: no
|
||||
force: false
|
||||
notify: "restart {{ php_fpm_service_name }}"
|
||||
|
||||
- name: Set default PHP FPM values
|
||||
|
@ -66,7 +66,7 @@
|
|||
; Put customized values here.
|
||||
; default_charset = "ISO-8859-1"
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
notify: "restart {{ php_fpm_service_name }}"
|
||||
|
||||
- name: "Set custom values for PHP to enable Symfony"
|
||||
|
|
|
@ -4,7 +4,7 @@
|
|||
ansible.builtin.file:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
force: yes
|
||||
force: true
|
||||
state: link
|
||||
loop:
|
||||
- { src: "{{ php_cli_defaults_ini_file }}", dest: "/etc/php/7.4/cli/conf.d/z-evolinux-defaults.ini" }
|
||||
|
@ -19,7 +19,7 @@
|
|||
ansible.builtin.file:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
force: yes
|
||||
force: true
|
||||
state: link
|
||||
loop:
|
||||
- { src: "{{ php_apache_defaults_ini_file }}", dest: "/etc/php/7.4/apache2/conf.d/z-evolinux-defaults.ini" }
|
||||
|
@ -36,7 +36,7 @@
|
|||
ansible.builtin.file:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
force: yes
|
||||
force: true
|
||||
state: link
|
||||
loop:
|
||||
- { src: "{{ php_fpm_defaults_ini_file }}", dest: "/etc/php/7.4/fpm/conf.d/z-evolinux-defaults.ini" }
|
||||
|
|
|
@ -13,7 +13,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart postfix
|
||||
when: (postfix_force_main_cf | bool) or (postfix_maincf_md5_jessie in default_main_cf.stdout) or (postfix_maincf_md5_stretch in default_main_cf.stdout)
|
||||
tags:
|
||||
|
|
|
@ -31,7 +31,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
notify: restart postfix
|
||||
when: (postfix_force_main_cf | bool) or (postfix_maincf_md5_jessie in default_main_cf.stdout) or (postfix_maincf_md5_stretch in default_main_cf.stdout)
|
||||
tags:
|
||||
|
@ -50,7 +50,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: filter
|
||||
dest: "/etc/postfix/{{ item }}"
|
||||
force: no
|
||||
force: false
|
||||
loop:
|
||||
- virtual
|
||||
- client.access
|
||||
|
|
|
@ -9,7 +9,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: postgresql.service.override.conf
|
||||
dest: /etc/systemd/system/postgresql@.service.d/override.conf
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
notify:
|
||||
- reload systemd
|
||||
|
|
|
@ -3,4 +3,4 @@
|
|||
ansible.builtin.copy:
|
||||
src: logrotate_postgresql
|
||||
dest: /etc/logrotate.d/postgresql-common
|
||||
force: no
|
||||
force: false
|
||||
|
|
|
@ -12,7 +12,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: postgresql.asc
|
||||
dest: "{{ apt_keyring_dir }}/postgresql.asc"
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -76,7 +76,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: vpasswd
|
||||
dest: /etc/proftpd/vpasswd
|
||||
force: no
|
||||
force: false
|
||||
notify: restart proftpd
|
||||
tags:
|
||||
- proftpd
|
||||
|
|
|
@ -10,7 +10,7 @@
|
|||
owner: rabbitmq
|
||||
group: rabbitmq
|
||||
mode: "0600"
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Create rabbitmq.config
|
||||
ansible.builtin.copy:
|
||||
|
@ -19,7 +19,7 @@
|
|||
owner: rabbitmq
|
||||
group: rabbitmq
|
||||
mode: "0600"
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Adjust ulimit
|
||||
ansible.builtin.lineinfile:
|
||||
|
|
|
@ -23,7 +23,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0755"
|
||||
force: yes
|
||||
force: true
|
||||
when: ansible_distribution_major_version is version('11', '<=')
|
||||
|
||||
- name: check_rabbitmq (Python 3 version) is installed
|
||||
|
@ -33,7 +33,7 @@
|
|||
owner: root
|
||||
group: root
|
||||
mode: "0755"
|
||||
force: yes
|
||||
force: true
|
||||
when: ansible_distribution_major_version is version('11', '>=')
|
||||
|
||||
- name: check_rabbitmq is available for NRPE
|
||||
|
|
|
@ -33,7 +33,7 @@
|
|||
dest: '{{ rbenv_root }}'
|
||||
version: '{{ rbenv_version }}'
|
||||
accept_hostkey: yes
|
||||
force: yes
|
||||
force: true
|
||||
become_user: "{{ username }}"
|
||||
become: yes
|
||||
tags:
|
||||
|
@ -67,7 +67,7 @@
|
|||
dest: '{{ rbenv_root }}/plugins/{{ item.name }}'
|
||||
version: '{{ item.version }}'
|
||||
accept_hostkey: yes
|
||||
force: yes
|
||||
force: true
|
||||
loop: "{{ rbenv_plugins }}"
|
||||
become_user: "{{ username }}"
|
||||
become: yes
|
||||
|
|
|
@ -12,7 +12,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: check_redis.pl
|
||||
dest: /usr/local/lib/nagios/plugins/check_redis
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0755"
|
||||
owner: root
|
||||
group: root
|
||||
|
@ -87,7 +87,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: check_redis_instances.sh
|
||||
dest: /usr/local/lib/nagios/plugins/check_redis_instances
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0755"
|
||||
owner: root
|
||||
group: root
|
||||
|
|
|
@ -24,7 +24,7 @@
|
|||
ansible.builtin.template:
|
||||
src: logrotate_jessie.j2
|
||||
dest: /etc/logrotate.d/{{ squid_daemon_name }}
|
||||
force: yes
|
||||
force: true
|
||||
when: squid_logrotate_md5.rc == 0
|
||||
tags:
|
||||
- squid
|
||||
|
|
|
@ -24,7 +24,7 @@
|
|||
ansible.builtin.template:
|
||||
src: logrotate_stretch.j2
|
||||
dest: /etc/logrotate.d/{{ squid_daemon_name }}
|
||||
force: yes
|
||||
force: true
|
||||
when: squid_logrotate_md5.rc == 0
|
||||
tags:
|
||||
- squid
|
||||
|
|
|
@ -46,7 +46,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: whitelist-evolinux.conf
|
||||
dest: /etc/squid3/whitelist.conf
|
||||
force: no
|
||||
force: false
|
||||
notify: "reload squid3"
|
||||
when: ansible_distribution_release == "jessie"
|
||||
|
||||
|
@ -69,14 +69,14 @@
|
|||
dest: /etc/squid/evolinux-whitelist-custom.conf
|
||||
content: |
|
||||
# Put customized values here.
|
||||
force: no
|
||||
force: false
|
||||
when: ansible_distribution_major_version is version('9', '>=')
|
||||
|
||||
- name: "evolinux acl for local proxy (Debian 9 or later)"
|
||||
ansible.builtin.template:
|
||||
src: evolinux-acl.conf.j2
|
||||
dest: /etc/squid/evolinux-acl.conf
|
||||
force: no
|
||||
force: false
|
||||
notify: "reload squid"
|
||||
when:
|
||||
- squid_localproxy_enable | bool
|
||||
|
@ -87,7 +87,7 @@
|
|||
dest: /etc/squid/evolinux-acl.conf
|
||||
content: |
|
||||
# Put customized values here.
|
||||
force: no
|
||||
force: false
|
||||
when:
|
||||
- not (squid_localproxy_enable | bool)
|
||||
- ansible_distribution_major_version is version('9', '>=')
|
||||
|
@ -96,7 +96,7 @@
|
|||
ansible.builtin.copy:
|
||||
src: evolinux-httpaccess.conf
|
||||
dest: /etc/squid/evolinux-httpaccess.conf
|
||||
force: no
|
||||
force: false
|
||||
notify: "reload squid"
|
||||
when:
|
||||
- squid_localproxy_enable | bool
|
||||
|
@ -107,7 +107,7 @@
|
|||
dest: /etc/squid/evolinux-httpaccess.conf
|
||||
content: |
|
||||
# Put customized values here.
|
||||
force: no
|
||||
force: false
|
||||
when:
|
||||
- not (squid_localproxy_enable | bool)
|
||||
- ansible_distribution_major_version is version('9', '>=')
|
||||
|
@ -116,7 +116,7 @@
|
|||
ansible.builtin.template:
|
||||
src: evolinux-custom.conf.j2
|
||||
dest: /etc/squid/evolinux-custom.conf
|
||||
force: no
|
||||
force: false
|
||||
notify: "reload squid"
|
||||
when:
|
||||
- squid_localproxy_enable | bool
|
||||
|
@ -127,7 +127,7 @@
|
|||
dest: /etc/squid/evolinux-custom.conf
|
||||
content: |
|
||||
# Put customized values here.
|
||||
force: no
|
||||
force: false
|
||||
when:
|
||||
- not (squid_localproxy_enable | bool)
|
||||
- ansible_distribution_major_version is version('9', '>=')
|
||||
|
|
|
@ -21,7 +21,7 @@
|
|||
src: systemd-override.conf.j2
|
||||
dest: /etc/systemd/system/squid.service.d/override.conf
|
||||
mode: "0644"
|
||||
force: yes
|
||||
force: true
|
||||
register: _squid_systemd_override
|
||||
|
||||
- name: "Systemd daemon is reloaded and Squid restarted"
|
||||
|
|
|
@ -10,7 +10,7 @@
|
|||
src: http.conf
|
||||
dest: /etc/supervisor/conf.d/
|
||||
mode: "0644"
|
||||
force: no
|
||||
force: false
|
||||
notify: restart supervisor
|
||||
when: supervisord_enable_http | bool
|
||||
tags:
|
||||
|
|
|
@ -21,7 +21,7 @@
|
|||
mode: "0660"
|
||||
owner: "{{ tomcat_instance_name }}"
|
||||
group: "{{ tomcat_instance_name }}"
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Templating of server.xml file
|
||||
ansible.builtin.template:
|
||||
|
@ -30,7 +30,7 @@
|
|||
mode: "0660"
|
||||
owner: "{{ tomcat_instance_name }}"
|
||||
group: "{{ tomcat_instance_name }}"
|
||||
force: no
|
||||
force: false
|
||||
|
||||
- name: Copy config file
|
||||
ansible.builtin.copy:
|
||||
|
@ -39,6 +39,6 @@
|
|||
mode: "0660"
|
||||
owner: "{{ tomcat_instance_name }}"
|
||||
group: "{{ tomcat_instance_name }}"
|
||||
force: no
|
||||
force: false
|
||||
with_fileglob:
|
||||
- "tomcat{{ tomcat_version }}/*"
|
||||
|
|
|
@ -11,7 +11,7 @@
|
|||
ansible.builtin.get_url:
|
||||
url: https://www.internic.net/domain/named.cache
|
||||
dest: /etc/unbound/root.hints
|
||||
force: yes
|
||||
force: true
|
||||
mode: "0644"
|
||||
notify: reload unbound
|
||||
tags:
|
||||
|
|
Some files were not shown because too many files have changed in this diff Show more
Loading…
Reference in a new issue