Replace the include
module with include_tasks
or import_tasks
The behaviour of the `include` module is badly defined (it try to choose between statically importing the tasks and dynamically including them) and can cause problems depending on any number of constraints (mostly if it choose the wrong behaviour). Replace it with the `import_tasks` (always statically import tasks) unless the `include` is in a loop in which case we replace it with `include_tasks` (always dynamically include tasks).
This commit is contained in:
parent
6c4243f3e1
commit
7c632352a0
|
@ -24,6 +24,7 @@ The **patch** part changes is incremented if multiple releases happen the same m
|
||||||
* Proper jinja spacing
|
* Proper jinja spacing
|
||||||
* evolinux-base: ensure dbus is started and enabled (not by default in the case of an offline netinst)
|
* evolinux-base: ensure dbus is started and enabled (not by default in the case of an offline netinst)
|
||||||
* elasticsearch : use logrotate for garbage collector logs instead of breaking compression cron
|
* elasticsearch : use logrotate for garbage collector logs instead of breaking compression cron
|
||||||
|
* Replace use of the `include` module with the `import_tasks` or `include_tasks` module to prevent bug due to faulty behaviour choice on the part of ansible
|
||||||
|
|
||||||
### Removed
|
### Removed
|
||||||
|
|
||||||
|
|
|
@ -12,7 +12,7 @@
|
||||||
- apache
|
- apache
|
||||||
|
|
||||||
- name: Load IP whitelist task
|
- name: Load IP whitelist task
|
||||||
include: ip_whitelist.yml
|
import_tasks: ip_whitelist.yml
|
||||||
|
|
||||||
- name: include private IP whitelist for server-status
|
- name: include private IP whitelist for server-status
|
||||||
lineinfile:
|
lineinfile:
|
||||||
|
|
|
@ -109,7 +109,7 @@
|
||||||
tags:
|
tags:
|
||||||
- apache
|
- apache
|
||||||
|
|
||||||
- include: auth.yml
|
- import_tasks: auth.yml
|
||||||
tags:
|
tags:
|
||||||
- apache
|
- apache
|
||||||
|
|
||||||
|
@ -134,7 +134,7 @@
|
||||||
tags:
|
tags:
|
||||||
- apache
|
- apache
|
||||||
|
|
||||||
- include: server_status.yml
|
- import_tasks: server_status.yml
|
||||||
tags:
|
tags:
|
||||||
- apache
|
- apache
|
||||||
|
|
||||||
|
@ -199,12 +199,12 @@
|
||||||
tags:
|
tags:
|
||||||
- apache
|
- apache
|
||||||
|
|
||||||
- include: log2mail.yml
|
- import_tasks: log2mail.yml
|
||||||
when: apache_log2mail_include
|
when: apache_log2mail_include
|
||||||
tags:
|
tags:
|
||||||
- apache
|
- apache
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
when: apache_munin_include | bool
|
when: apache_munin_include | bool
|
||||||
tags:
|
tags:
|
||||||
- apache
|
- apache
|
||||||
|
|
|
@ -9,31 +9,31 @@
|
||||||
- apt
|
- apt
|
||||||
|
|
||||||
- name: Custom configuration
|
- name: Custom configuration
|
||||||
include: config.yml
|
import_tasks: config.yml
|
||||||
when: apt_config | bool
|
when: apt_config | bool
|
||||||
tags:
|
tags:
|
||||||
- apt
|
- apt
|
||||||
|
|
||||||
- name: Install basics repositories
|
- name: Install basics repositories
|
||||||
include: basics.yml
|
import_tasks: basics.yml
|
||||||
when: apt_install_basics | bool
|
when: apt_install_basics | bool
|
||||||
tags:
|
tags:
|
||||||
- apt
|
- apt
|
||||||
|
|
||||||
- name: Install APT Backports repository
|
- name: Install APT Backports repository
|
||||||
include: backports.yml
|
import_tasks: backports.yml
|
||||||
when: apt_install_backports | bool
|
when: apt_install_backports | bool
|
||||||
tags:
|
tags:
|
||||||
- apt
|
- apt
|
||||||
|
|
||||||
- name: Install Evolix Public APT repository
|
- name: Install Evolix Public APT repository
|
||||||
include: evolix_public.yml
|
import_tasks: evolix_public.yml
|
||||||
when: apt_install_evolix_public | bool
|
when: apt_install_evolix_public | bool
|
||||||
tags:
|
tags:
|
||||||
- apt
|
- apt
|
||||||
|
|
||||||
- name: Install check for packages marked hold
|
- name: Install check for packages marked hold
|
||||||
include: hold_packages.yml
|
import_tasks: hold_packages.yml
|
||||||
when: apt_install_hold_packages | bool
|
when: apt_install_hold_packages | bool
|
||||||
tags:
|
tags:
|
||||||
- apt
|
- apt
|
||||||
|
@ -50,4 +50,4 @@
|
||||||
upgrade: dist
|
upgrade: dist
|
||||||
when: apt_upgrade | bool
|
when: apt_upgrade | bool
|
||||||
tags:
|
tags:
|
||||||
- apt
|
- apt
|
||||||
|
|
|
@ -126,4 +126,4 @@
|
||||||
force: yes
|
force: yes
|
||||||
notify: restart bind
|
notify: restart bind
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
|
@ -8,18 +8,18 @@
|
||||||
msg: only compatible with Debian 9+
|
msg: only compatible with Debian 9+
|
||||||
|
|
||||||
- name: Install legacy script on Debian 8
|
- name: Install legacy script on Debian 8
|
||||||
include: install-legacy.yml
|
import_tasks: install-legacy.yml
|
||||||
when:
|
when:
|
||||||
- ansible_distribution == "Debian"
|
- ansible_distribution == "Debian"
|
||||||
- ansible_distribution_major_version is version('9', '<')
|
- ansible_distribution_major_version is version('9', '<')
|
||||||
|
|
||||||
- name: Install package on Debian 9+
|
- name: Install package on Debian 9+
|
||||||
include: install-package.yml
|
import_tasks: install-package.yml
|
||||||
when:
|
when:
|
||||||
- ansible_distribution == "Debian"
|
- ansible_distribution == "Debian"
|
||||||
- ansible_distribution_major_version is version('9', '>=')
|
- ansible_distribution_major_version is version('9', '>=')
|
||||||
|
|
||||||
- include: acme-challenge.yml
|
- import_tasks: acme-challenge.yml
|
||||||
|
|
||||||
- name: Deploy hooks are present
|
- name: Deploy hooks are present
|
||||||
copy:
|
copy:
|
||||||
|
|
|
@ -78,7 +78,7 @@
|
||||||
tags:
|
tags:
|
||||||
- dovecot
|
- dovecot
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
tags:
|
tags:
|
||||||
- dovecot
|
- dovecot
|
||||||
|
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
||||||
- include: nagios.yml
|
- import_tasks: nagios.yml
|
||||||
|
|
|
@ -1,21 +1,21 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
|
|
||||||
- include: configuration.yml
|
- import_tasks: configuration.yml
|
||||||
|
|
||||||
- include: bootstrap_checks.yml
|
- import_tasks: bootstrap_checks.yml
|
||||||
|
|
||||||
- include: tmpdir.yml
|
- import_tasks: tmpdir.yml
|
||||||
|
|
||||||
- include: datadir.yml
|
- import_tasks: datadir.yml
|
||||||
|
|
||||||
- include: logs.yml
|
- import_tasks: logs.yml
|
||||||
|
|
||||||
- include: additional_scripts.yml
|
- import_tasks: additional_scripts.yml
|
||||||
|
|
||||||
- include: plugin_head.yml
|
- import_tasks: plugin_head.yml
|
||||||
when: elasticsearch_plugin_head | bool
|
when: elasticsearch_plugin_head | bool
|
||||||
|
|
||||||
- include: curator.yml
|
- import_tasks: curator.yml
|
||||||
when: elasticsearch_curator | bool
|
when: elasticsearch_curator | bool
|
||||||
|
|
|
@ -10,12 +10,12 @@
|
||||||
- ansible_distribution == "Debian"
|
- ansible_distribution == "Debian"
|
||||||
|
|
||||||
- name: Install and configure utilities
|
- name: Install and configure utilities
|
||||||
include: utils.yml
|
import_tasks: utils.yml
|
||||||
tags:
|
tags:
|
||||||
- etc-git
|
- etc-git
|
||||||
|
|
||||||
- name: Configure repositories
|
- name: Configure repositories
|
||||||
include: repositories.yml
|
import_tasks: repositories.yml
|
||||||
tags:
|
tags:
|
||||||
- etc-git
|
- etc-git
|
||||||
when: etc_git_config_repositories | bool
|
when: etc_git_config_repositories | bool
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: repository.yml
|
- import_tasks: repository.yml
|
||||||
vars:
|
vars:
|
||||||
repository_path: "/etc"
|
repository_path: "/etc"
|
||||||
gitignore_items:
|
gitignore_items:
|
||||||
|
@ -21,12 +21,12 @@
|
||||||
tags:
|
tags:
|
||||||
- etc-git
|
- etc-git
|
||||||
|
|
||||||
- include_role:
|
- import_role:
|
||||||
name: evolix/remount-usr
|
name: evolix/remount-usr
|
||||||
when:
|
when:
|
||||||
- _usr_share_scripts.stat.isdir
|
- _usr_share_scripts.stat.isdir
|
||||||
|
|
||||||
- include: repository.yml
|
- import_tasks: repository.yml
|
||||||
vars:
|
vars:
|
||||||
repository_path: "/usr/share/scripts"
|
repository_path: "/usr/share/scripts"
|
||||||
gitignore_items: []
|
gitignore_items: []
|
||||||
|
@ -34,4 +34,4 @@
|
||||||
- _usr_share_scripts.stat.isdir
|
- _usr_share_scripts.stat.isdir
|
||||||
- ansible_distribution_major_version is version('10', '>=')
|
- ansible_distribution_major_version is version('10', '>=')
|
||||||
tags:
|
tags:
|
||||||
- etc-git
|
- etc-git
|
||||||
|
|
|
@ -67,4 +67,4 @@
|
||||||
register: git_commit
|
register: git_commit
|
||||||
when: git_log.rc != 0 or (git_init is defined and git_init is changed)
|
when: git_log.rc != 0 or (git_init is defined and git_init is changed)
|
||||||
tags:
|
tags:
|
||||||
- etc-git
|
- etc-git
|
||||||
|
|
|
@ -8,16 +8,16 @@
|
||||||
msg: only compatible with Debian >= 9
|
msg: only compatible with Debian >= 9
|
||||||
when: not (evoacme_disable_debian_check | bool)
|
when: not (evoacme_disable_debian_check | bool)
|
||||||
|
|
||||||
- include: certbot.yml
|
- import_tasks: certbot.yml
|
||||||
|
|
||||||
- include: permissions.yml
|
- import_tasks: permissions.yml
|
||||||
|
|
||||||
# Enable this task if you want to deploy hooks
|
# Enable this task if you want to deploy hooks
|
||||||
# - include: evoacme_hook.yml
|
# - include_tasks: evoacme_hook.yml
|
||||||
# vars:
|
# vars:
|
||||||
# hook_name: "{{ item }}"
|
# hook_name: "{{ item }}"
|
||||||
# loop: []
|
# loop: []
|
||||||
|
|
||||||
- include: conf.yml
|
- import_tasks: conf.yml
|
||||||
|
|
||||||
- include: scripts.yml
|
- import_tasks: scripts.yml
|
||||||
|
|
|
@ -1,26 +1,26 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: "ssh_key.yml"
|
- import_tasks: "ssh_key.yml"
|
||||||
tags:
|
tags:
|
||||||
- evobackup_client
|
- evobackup_client
|
||||||
- evobackup_client_backup_ssh_key
|
- evobackup_client_backup_ssh_key
|
||||||
|
|
||||||
- include: "jail.yml"
|
- import_tasks: "jail.yml"
|
||||||
tags:
|
tags:
|
||||||
- evobackup_client
|
- evobackup_client
|
||||||
- evobackup_client_jail
|
- evobackup_client_jail
|
||||||
|
|
||||||
- include: "upload_scripts.yml"
|
- import_tasks: "upload_scripts.yml"
|
||||||
tags:
|
tags:
|
||||||
- evobackup_client
|
- evobackup_client
|
||||||
- evobackup_client_backup_scripts
|
- evobackup_client_backup_scripts
|
||||||
|
|
||||||
- include: "open_ssh_ports.yml"
|
- import_tasks: "open_ssh_ports.yml"
|
||||||
tags:
|
tags:
|
||||||
- evobackup_client
|
- evobackup_client
|
||||||
- evobackup_client_backup_firewall
|
- evobackup_client_backup_firewall
|
||||||
|
|
||||||
- include: "verify_ssh.yml"
|
- import_tasks: "verify_ssh.yml"
|
||||||
tags:
|
tags:
|
||||||
- evobackup_client
|
- evobackup_client
|
||||||
- evobackup_client_backup_hosts
|
- evobackup_client_backup_hosts
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: install.yml
|
- import_tasks: install.yml
|
||||||
|
|
||||||
- include: cron.yml
|
- import_tasks: cron.yml
|
||||||
when: evocheck_update_crontab | bool
|
when: evocheck_update_crontab | bool
|
||||||
|
|
|
@ -23,27 +23,27 @@
|
||||||
when: evolinux_etcgit_include | bool
|
when: evolinux_etcgit_include | bool
|
||||||
|
|
||||||
- name: /etc/evolinux base
|
- name: /etc/evolinux base
|
||||||
include: etc-evolinux.yml
|
import_tasks: etc-evolinux.yml
|
||||||
when: evolinux_etcevolinux_include | bool
|
when: evolinux_etcevolinux_include | bool
|
||||||
|
|
||||||
- name: Hostname
|
- name: Hostname
|
||||||
include: hostname.yml
|
import_tasks: hostname.yml
|
||||||
when: evolinux_hostname_include | bool
|
when: evolinux_hostname_include | bool
|
||||||
|
|
||||||
- name: Kernel tuning
|
- name: Kernel tuning
|
||||||
include: kernel.yml
|
import_tasks: kernel.yml
|
||||||
when: evolinux_kernel_include | bool
|
when: evolinux_kernel_include | bool
|
||||||
|
|
||||||
- name: Fstab configuration
|
- name: Fstab configuration
|
||||||
include: fstab.yml
|
import_tasks: fstab.yml
|
||||||
when: evolinux_fstab_include | bool
|
when: evolinux_fstab_include | bool
|
||||||
|
|
||||||
- name: Packages
|
- name: Packages
|
||||||
include: packages.yml
|
import_tasks: packages.yml
|
||||||
when: evolinux_packages_include | bool
|
when: evolinux_packages_include | bool
|
||||||
|
|
||||||
- name: System settings
|
- name: System settings
|
||||||
include: system.yml
|
import_tasks: system.yml
|
||||||
when: evolinux_system_include | bool
|
when: evolinux_system_include | bool
|
||||||
|
|
||||||
- name: Minifirewall
|
- name: Minifirewall
|
||||||
|
@ -57,7 +57,7 @@
|
||||||
when: evolinux_evomaintenance_include | bool
|
when: evolinux_evomaintenance_include | bool
|
||||||
|
|
||||||
- name: SSH configuration
|
- name: SSH configuration
|
||||||
include: ssh.yml
|
import_tasks: ssh.yml
|
||||||
when: evolinux_ssh_include | bool
|
when: evolinux_ssh_include | bool
|
||||||
|
|
||||||
### disabled because of a memory leak
|
### disabled because of a memory leak
|
||||||
|
@ -67,41 +67,41 @@
|
||||||
# when: evolinux_users_include
|
# when: evolinux_users_include
|
||||||
|
|
||||||
- name: Root user configuration
|
- name: Root user configuration
|
||||||
include: root.yml
|
import_tasks: root.yml
|
||||||
when: evolinux_root_include | bool
|
when: evolinux_root_include | bool
|
||||||
|
|
||||||
- name: Postfix
|
- name: Postfix
|
||||||
include: postfix.yml
|
import_tasks: postfix.yml
|
||||||
when: evolinux_postfix_include | bool
|
when: evolinux_postfix_include | bool
|
||||||
|
|
||||||
- name: Logs management
|
- name: Logs management
|
||||||
include: logs.yml
|
import_tasks: logs.yml
|
||||||
when: evolinux_logs_include | bool
|
when: evolinux_logs_include | bool
|
||||||
|
|
||||||
- name: Default index page
|
- name: Default index page
|
||||||
include: default_www.yml
|
import_tasks: default_www.yml
|
||||||
when: evolinux_default_www_include | bool
|
when: evolinux_default_www_include | bool
|
||||||
|
|
||||||
- name: Hardware drivers and tools
|
- name: Hardware drivers and tools
|
||||||
include: hardware.yml
|
import_tasks: hardware.yml
|
||||||
when: evolinux_hardware_include | bool
|
when: evolinux_hardware_include | bool
|
||||||
|
|
||||||
- name: Customize for Online.net
|
- name: Customize for Online.net
|
||||||
include: provider_online.yml
|
import_tasks: provider_online.yml
|
||||||
when: evolinux_provider_online_include | bool
|
when: evolinux_provider_online_include | bool
|
||||||
|
|
||||||
- name: Customize for Orange FCE
|
- name: Customize for Orange FCE
|
||||||
include: provider_orange_fce.yml
|
import_tasks: provider_orange_fce.yml
|
||||||
when: evolinux_provider_orange_fce_include | bool
|
when: evolinux_provider_orange_fce_include | bool
|
||||||
|
|
||||||
- name: Override Log2mail service
|
- name: Override Log2mail service
|
||||||
include: log2mail.yml
|
import_tasks: log2mail.yml
|
||||||
when: evolinux_log2mail_include | bool
|
when: evolinux_log2mail_include | bool
|
||||||
|
|
||||||
- include: motd.yml
|
- import_tasks: motd.yml
|
||||||
when: evolinux_motd_include | bool
|
when: evolinux_motd_include | bool
|
||||||
|
|
||||||
- include: utils.yml
|
- import_tasks: utils.yml
|
||||||
when: evolinux_utils_include | bool
|
when: evolinux_utils_include | bool
|
||||||
|
|
||||||
- name: Munin
|
- name: Munin
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include_role:
|
- import_role:
|
||||||
name: evolix/remount-usr
|
name: evolix/remount-usr
|
||||||
|
|
||||||
- include_tasks:
|
- import_tasks:
|
||||||
file: dump-server-state.yml
|
file: dump-server-state.yml
|
||||||
|
|
||||||
- name: "/sbin/deny script is present"
|
- name: "/sbin/deny script is present"
|
||||||
|
|
|
@ -12,7 +12,7 @@
|
||||||
when: evolinux_users | length == 0
|
when: evolinux_users | length == 0
|
||||||
|
|
||||||
- name: Create user accounts
|
- name: Create user accounts
|
||||||
include: user.yml
|
include_tasks: user.yml
|
||||||
vars:
|
vars:
|
||||||
user: "{{ item.value }}"
|
user: "{{ item.value }}"
|
||||||
loop: "{{ evolinux_users | dict2items }}"
|
loop: "{{ evolinux_users | dict2items }}"
|
||||||
|
@ -21,8 +21,8 @@
|
||||||
- evolinux_users | length > 0
|
- evolinux_users | length > 0
|
||||||
|
|
||||||
- name: Configure sudo
|
- name: Configure sudo
|
||||||
include: sudo.yml
|
import_tasks: sudo.yml
|
||||||
|
|
||||||
- name: Configure SSH
|
- name: Configure SSH
|
||||||
include: ssh.yml
|
import_tasks: ssh.yml
|
||||||
when: evolinux_users | length > 0
|
when: evolinux_users | length > 0
|
||||||
|
|
|
@ -40,12 +40,12 @@
|
||||||
var: ssh_allowusers
|
var: ssh_allowusers
|
||||||
verbosity: 1
|
verbosity: 1
|
||||||
|
|
||||||
- include: ssh_allowgroups.yml
|
- import_tasks: ssh_allowgroups.yml
|
||||||
when:
|
when:
|
||||||
- ssh_allowgroups
|
- ssh_allowgroups
|
||||||
- not ssh_allowusers
|
- not ssh_allowusers
|
||||||
|
|
||||||
- include: ssh_allowusers.yml
|
- include_tasks: ssh_allowusers.yml
|
||||||
vars:
|
vars:
|
||||||
user: "{{ item.value }}"
|
user: "{{ item.value }}"
|
||||||
loop: "{{ evolinux_users | dict2items }}"
|
loop: "{{ evolinux_users | dict2items }}"
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: sudo_jessie.yml
|
- include_tasks: sudo_jessie.yml
|
||||||
vars:
|
vars:
|
||||||
user: "{{ item.value }}"
|
user: "{{ item.value }}"
|
||||||
loop: "{{ evolinux_users | dict2items }}"
|
loop: "{{ evolinux_users | dict2items }}"
|
||||||
|
@ -11,9 +11,9 @@
|
||||||
|
|
||||||
|
|
||||||
- block:
|
- block:
|
||||||
- include: sudo_stretch_common.yml
|
- import_tasks: sudo_stretch_common.yml
|
||||||
|
|
||||||
- include: sudo_stretch_user.yml
|
- include_tasks: sudo_stretch_user.yml
|
||||||
vars:
|
vars:
|
||||||
user: "{{ item.value }}"
|
user: "{{ item.value }}"
|
||||||
loop: "{{ evolinux_users | dict2items }}"
|
loop: "{{ evolinux_users | dict2items }}"
|
||||||
|
|
|
@ -12,4 +12,4 @@
|
||||||
name: evomaintenance
|
name: evomaintenance
|
||||||
allow_unauthenticated: yes
|
allow_unauthenticated: yes
|
||||||
tags:
|
tags:
|
||||||
- evomaintenance
|
- evomaintenance
|
||||||
|
|
|
@ -46,4 +46,4 @@
|
||||||
- { src: 'evomaintenance.sh', dest: '/usr/share/scripts/', mode: '0700' }
|
- { src: 'evomaintenance.sh', dest: '/usr/share/scripts/', mode: '0700' }
|
||||||
- { src: 'evomaintenance.tpl', dest: '/usr/share/scripts/', mode: '0600' }
|
- { src: 'evomaintenance.tpl', dest: '/usr/share/scripts/', mode: '0600' }
|
||||||
tags:
|
tags:
|
||||||
- evomaintenance
|
- evomaintenance
|
||||||
|
|
|
@ -1,24 +1,24 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: install_package_debian.yml
|
- import_tasks: install_package_debian.yml
|
||||||
when:
|
when:
|
||||||
- not (evomaintenance_install_vendor | bool)
|
- not (evomaintenance_install_vendor | bool)
|
||||||
- ansible_distribution == "Debian"
|
- ansible_distribution == "Debian"
|
||||||
|
|
||||||
- include: install_vendor_debian.yml
|
- import_tasks: install_vendor_debian.yml
|
||||||
when:
|
when:
|
||||||
- evomaintenance_install_vendor | bool
|
- evomaintenance_install_vendor | bool
|
||||||
- ansible_distribution == "Debian"
|
- ansible_distribution == "Debian"
|
||||||
|
|
||||||
- include: install_vendor_other.yml
|
- import_tasks: install_vendor_other.yml
|
||||||
when:
|
when:
|
||||||
- evomaintenance_install_vendor | bool
|
- evomaintenance_install_vendor | bool
|
||||||
- ansible_distribution != "Debian"
|
- ansible_distribution != "Debian"
|
||||||
|
|
||||||
|
|
||||||
- include: config.yml
|
- import_tasks: config.yml
|
||||||
|
|
||||||
- include: minifirewall.yml
|
- import_tasks: minifirewall.yml
|
||||||
when:
|
when:
|
||||||
- evomaintenance_hook_db | bool
|
- evomaintenance_hook_db | bool
|
||||||
- ansible_distribution == "Debian"
|
- ansible_distribution == "Debian"
|
||||||
|
|
|
@ -3,8 +3,11 @@
|
||||||
service:
|
service:
|
||||||
name: fail2ban
|
name: fail2ban
|
||||||
state: restarted
|
state: restarted
|
||||||
|
tags:
|
||||||
|
- fail2ban
|
||||||
|
|
||||||
- name: restart munin-node
|
- name: restart munin-node
|
||||||
service:
|
service:
|
||||||
name: munin-node
|
name: munin-node
|
||||||
state: restarted
|
state: restarted
|
||||||
|
tags: fail2ban
|
||||||
|
|
|
@ -32,7 +32,7 @@
|
||||||
- fail2ban
|
- fail2ban
|
||||||
|
|
||||||
- name: Include ignoredips update task
|
- name: Include ignoredips update task
|
||||||
include: ip_whitelist.yml
|
import_tasks: ip_whitelist.yml
|
||||||
when: fail2ban_force_update_ignore_ips | bool
|
when: fail2ban_force_update_ignore_ips | bool
|
||||||
tags:
|
tags:
|
||||||
- fail2ban
|
- fail2ban
|
||||||
|
@ -106,7 +106,7 @@
|
||||||
- fail2ban_recidive
|
- fail2ban_recidive
|
||||||
|
|
||||||
- name: Fix dbpurgeage for stretch and buster
|
- name: Fix dbpurgeage for stretch and buster
|
||||||
include: fix-dbpurgeage.yml
|
import_tasks: fix-dbpurgeage.yml
|
||||||
when:
|
when:
|
||||||
- ansible_distribution_release == "stretch" or ansible_distribution_release == "buster"
|
- ansible_distribution_release == "stretch" or ansible_distribution_release == "buster"
|
||||||
tags:
|
tags:
|
||||||
|
|
|
@ -83,7 +83,7 @@
|
||||||
- config
|
- config
|
||||||
- update-config
|
- update-config
|
||||||
|
|
||||||
- include: packages_backports.yml
|
- import_tasks: packages_backports.yml
|
||||||
when: haproxy_backports | bool
|
when: haproxy_backports | bool
|
||||||
|
|
||||||
- name: Install HAProxy package
|
- name: Install HAProxy package
|
||||||
|
@ -147,4 +147,4 @@
|
||||||
- haproxy_allow_ip_nonlocal_bind is defined
|
- haproxy_allow_ip_nonlocal_bind is defined
|
||||||
- haproxy_allow_ip_nonlocal_bind is not none
|
- haproxy_allow_ip_nonlocal_bind is not none
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
|
@ -3,8 +3,8 @@
|
||||||
# msg: "This role support only java 8 for now !"
|
# msg: "This role support only java 8 for now !"
|
||||||
# when: java_version != 8
|
# when: java_version != 8
|
||||||
|
|
||||||
- include: openjdk.yml
|
- import_tasks: openjdk.yml
|
||||||
when: java_alternative == 'openjdk'
|
when: java_alternative == 'openjdk'
|
||||||
|
|
||||||
- include: oracle.yml
|
- import_tasks: oracle.yml
|
||||||
when: java_alternative == 'oracle'
|
when: java_alternative == 'oracle'
|
||||||
|
|
|
@ -144,7 +144,7 @@
|
||||||
# - optimize
|
# - optimize
|
||||||
# - data
|
# - data
|
||||||
|
|
||||||
- include: proxy_nginx.yml
|
- import_tasks: proxy_nginx.yml
|
||||||
when: kibana_proxy_nginx | bool
|
when: kibana_proxy_nginx | bool
|
||||||
tags:
|
tags:
|
||||||
- kibana
|
- kibana
|
||||||
|
|
|
@ -5,12 +5,12 @@
|
||||||
when: kvm_install_drbd
|
when: kvm_install_drbd
|
||||||
|
|
||||||
## TODO: check why it's disabled
|
## TODO: check why it's disabled
|
||||||
- include: ssh.yml
|
- import_tasks: ssh.yml
|
||||||
|
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
||||||
- include: images.yml
|
- import_tasks: images.yml
|
||||||
|
|
||||||
- include: tools.yml
|
- import_tasks: tools.yml
|
||||||
|
|
|
@ -64,4 +64,4 @@
|
||||||
file:
|
file:
|
||||||
path: /usr/share/scripts/kvmstats
|
path: /usr/share/scripts/kvmstats
|
||||||
state: absent
|
state: absent
|
||||||
when: "'/usr/share/scripts' not in kvm_scripts_dir"
|
when: "'/usr/share/scripts' not in kvm_scripts_dir"
|
||||||
|
|
|
@ -16,11 +16,11 @@
|
||||||
notify: restart slapd
|
notify: restart slapd
|
||||||
|
|
||||||
- name: ldapvirc file
|
- name: ldapvirc file
|
||||||
include: ldapvirc.yml
|
import_tasks: ldapvirc.yml
|
||||||
|
|
||||||
- name: nagios config file for LDAP
|
- name: nagios config file for LDAP
|
||||||
include: nagios.yml
|
import_tasks: nagios.yml
|
||||||
|
|
||||||
- name: initialize database
|
- name: initialize database
|
||||||
include: init.yml
|
import_tasks: init.yml
|
||||||
when: not root_ldapvirc_path.stat.exists
|
when: not root_ldapvirc_path.stat.exists
|
||||||
|
|
|
@ -115,6 +115,6 @@
|
||||||
var: logstash_template
|
var: logstash_template
|
||||||
verbosity: 1
|
verbosity: 1
|
||||||
|
|
||||||
- include: logs.yml
|
- import_tasks: logs.yml
|
||||||
|
|
||||||
- include: tmpdir.yml
|
- import_tasks: tmpdir.yml
|
||||||
|
|
|
@ -9,24 +9,24 @@
|
||||||
name: "{{ lxc_php_version }}"
|
name: "{{ lxc_php_version }}"
|
||||||
container_command: "apt-get update"
|
container_command: "apt-get update"
|
||||||
|
|
||||||
- include: "php56.yml"
|
- import_tasks: "php56.yml"
|
||||||
when: lxc_php_version == "php56"
|
when: lxc_php_version == "php56"
|
||||||
|
|
||||||
- include: "php70.yml"
|
- import_tasks: "php70.yml"
|
||||||
when: lxc_php_version == "php70"
|
when: lxc_php_version == "php70"
|
||||||
|
|
||||||
- include: "php73.yml"
|
- import_tasks: "php73.yml"
|
||||||
when: lxc_php_version == "php73"
|
when: lxc_php_version == "php73"
|
||||||
|
|
||||||
- include: "php74.yml"
|
- import_tasks: "php74.yml"
|
||||||
when: lxc_php_version == "php74"
|
when: lxc_php_version == "php74"
|
||||||
|
|
||||||
- include: "php80.yml"
|
- import_tasks: "php80.yml"
|
||||||
when: lxc_php_version == "php80"
|
when: lxc_php_version == "php80"
|
||||||
|
|
||||||
- include: "php81.yml"
|
- import_tasks: "php81.yml"
|
||||||
when: lxc_php_version == "php81"
|
when: lxc_php_version == "php81"
|
||||||
|
|
||||||
- include: "umask.yml"
|
- import_tasks: "umask.yml"
|
||||||
|
|
||||||
- include: "misc.yml"
|
- import_tasks: "misc.yml"
|
||||||
|
|
|
@ -17,4 +17,4 @@
|
||||||
loop_control:
|
loop_control:
|
||||||
loop_var: line_item
|
loop_var: line_item
|
||||||
|
|
||||||
- include: "mail_ssmtp.yml"
|
- import_tasks: "mail_ssmtp.yml"
|
||||||
|
|
|
@ -17,4 +17,4 @@
|
||||||
loop_control:
|
loop_control:
|
||||||
loop_var: line_item
|
loop_var: line_item
|
||||||
|
|
||||||
- include: "mail_opensmtpd.yml"
|
- import_tasks: "mail_opensmtpd.yml"
|
||||||
|
|
|
@ -17,4 +17,4 @@
|
||||||
loop_control:
|
loop_control:
|
||||||
loop_var: line_item
|
loop_var: line_item
|
||||||
|
|
||||||
- include: "mail_opensmtpd.yml"
|
- import_tasks: "mail_opensmtpd.yml"
|
||||||
|
|
|
@ -23,4 +23,4 @@
|
||||||
loop_control:
|
loop_control:
|
||||||
loop_var: line_item
|
loop_var: line_item
|
||||||
|
|
||||||
- include: "mail_opensmtpd.yml"
|
- import_tasks: "mail_opensmtpd.yml"
|
||||||
|
|
|
@ -60,4 +60,4 @@
|
||||||
loop_control:
|
loop_control:
|
||||||
loop_var: line_item
|
loop_var: line_item
|
||||||
|
|
||||||
- include: "mail_opensmtpd.yml"
|
- import_tasks: "mail_opensmtpd.yml"
|
||||||
|
|
|
@ -60,4 +60,4 @@
|
||||||
loop_control:
|
loop_control:
|
||||||
loop_var: line_item
|
loop_var: line_item
|
||||||
|
|
||||||
- include: "mail_opensmtpd.yml"
|
- import_tasks: "mail_opensmtpd.yml"
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
- name: LXC configuration
|
- name: LXC configuration
|
||||||
include_role:
|
import_role:
|
||||||
name: evolix/lxc
|
name: evolix/lxc
|
||||||
|
|
||||||
- name: Ensure containers root directory is 755
|
- name: Ensure containers root directory is 755
|
||||||
|
@ -10,7 +10,7 @@
|
||||||
mode: '0755'
|
mode: '0755'
|
||||||
loop: "{{ lxc_containers }}"
|
loop: "{{ lxc_containers }}"
|
||||||
|
|
||||||
- include: solr.yml
|
- import_tasks: solr.yml
|
||||||
args:
|
args:
|
||||||
name: "{{ item.name }}"
|
name: "{{ item.name }}"
|
||||||
solr_version: "{{ item.solr_version }}"
|
solr_version: "{{ item.solr_version }}"
|
||||||
|
|
|
@ -58,7 +58,7 @@
|
||||||
msg: "LXC directory is in a filesystem with incompatible options"
|
msg: "LXC directory is in a filesystem with incompatible options"
|
||||||
|
|
||||||
- name: Create containers
|
- name: Create containers
|
||||||
include: create-container.yml
|
include_tasks: create-container.yml
|
||||||
vars:
|
vars:
|
||||||
name: "{{ item.name }}"
|
name: "{{ item.name }}"
|
||||||
release: "{{ item.release }}"
|
release: "{{ item.release }}"
|
||||||
|
|
|
@ -5,12 +5,12 @@
|
||||||
tags:
|
tags:
|
||||||
- memcached
|
- memcached
|
||||||
|
|
||||||
- include: instance-default.yml
|
- import_tasks: instance-default.yml
|
||||||
when: memcached_instance_name is undefined
|
when: memcached_instance_name is undefined
|
||||||
|
|
||||||
- include: instance-multi.yml
|
- import_tasks: instance-multi.yml
|
||||||
when: memcached_instance_name is defined
|
when: memcached_instance_name is defined
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
||||||
- include: nrpe.yml
|
- import_tasks: nrpe.yml
|
||||||
|
|
|
@ -64,11 +64,11 @@
|
||||||
- minifirewall_main_file is defined
|
- minifirewall_main_file is defined
|
||||||
|
|
||||||
- name: Install tasks (modern mode)
|
- name: Install tasks (modern mode)
|
||||||
include: install.yml
|
import_tasks: install.yml
|
||||||
when: minifirewall_install_mode != 'legacy'
|
when: minifirewall_install_mode != 'legacy'
|
||||||
|
|
||||||
- name: Install tasks (legacy mode)
|
- name: Install tasks (legacy mode)
|
||||||
include: install.legacy.yml
|
import_tasks: install.legacy.yml
|
||||||
when: minifirewall_install_mode == 'legacy'
|
when: minifirewall_install_mode == 'legacy'
|
||||||
|
|
||||||
- name: Debug minifirewall_update_config
|
- name: Debug minifirewall_update_config
|
||||||
|
@ -77,25 +77,25 @@
|
||||||
verbosity: 1
|
verbosity: 1
|
||||||
|
|
||||||
- name: Config tasks (modern mode)
|
- name: Config tasks (modern mode)
|
||||||
include: config.yml
|
import_tasks: config.yml
|
||||||
when:
|
when:
|
||||||
- minifirewall_install_mode != 'legacy'
|
- minifirewall_install_mode != 'legacy'
|
||||||
- minifirewall_update_config | bool
|
- minifirewall_update_config | bool
|
||||||
|
|
||||||
- name: Config tasks (legacy mode)
|
- name: Config tasks (legacy mode)
|
||||||
include: config.legacy.yml
|
import_tasks: config.legacy.yml
|
||||||
when:
|
when:
|
||||||
- minifirewall_install_mode == 'legacy'
|
- minifirewall_install_mode == 'legacy'
|
||||||
- minifirewall_update_config | bool
|
- minifirewall_update_config | bool
|
||||||
|
|
||||||
- name: Utils tasks
|
- name: Utils tasks
|
||||||
include: utils.yml
|
import_tasks: utils.yml
|
||||||
|
|
||||||
- name: NRPE tasks
|
- name: NRPE tasks
|
||||||
include: nrpe.yml
|
import_tasks: nrpe.yml
|
||||||
|
|
||||||
- name: Activation tasks
|
- name: Activation tasks
|
||||||
include: activate.yml
|
import_tasks: activate.yml
|
||||||
|
|
||||||
- name: Debug minifirewall_tail_included
|
- name: Debug minifirewall_tail_included
|
||||||
debug:
|
debug:
|
||||||
|
@ -103,13 +103,13 @@
|
||||||
verbosity: 1
|
verbosity: 1
|
||||||
|
|
||||||
- name: Tail tasks (modern mode)
|
- name: Tail tasks (modern mode)
|
||||||
include: tail.yml
|
import_tasks: tail.yml
|
||||||
when:
|
when:
|
||||||
- minifirewall_install_mode != 'legacy'
|
- minifirewall_install_mode != 'legacy'
|
||||||
- minifirewall_tail_included | bool
|
- minifirewall_tail_included | bool
|
||||||
|
|
||||||
- name: Tail tasks (legacy mode)
|
- name: Tail tasks (legacy mode)
|
||||||
include: tail.legacy.yml
|
import_tasks: tail.legacy.yml
|
||||||
when:
|
when:
|
||||||
- minifirewall_install_mode == 'legacy'
|
- minifirewall_install_mode == 'legacy'
|
||||||
- minifirewall_tail_included | bool
|
- minifirewall_tail_included | bool
|
||||||
|
@ -133,4 +133,4 @@
|
||||||
notify: "restart minifirewall (modern)"
|
notify: "restart minifirewall (modern)"
|
||||||
when:
|
when:
|
||||||
- minifirewall_install_mode != 'legacy'
|
- minifirewall_install_mode != 'legacy'
|
||||||
- minifirewall_restart_force | bool
|
- minifirewall_restart_force | bool
|
||||||
|
|
|
@ -1,13 +1,13 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: main_jessie.yml
|
- import_tasks: main_jessie.yml
|
||||||
when: ansible_distribution_release == "jessie"
|
when: ansible_distribution_release == "jessie"
|
||||||
|
|
||||||
- include: main_stretch.yml
|
- import_tasks: main_stretch.yml
|
||||||
when: ansible_distribution_release == "stretch"
|
when: ansible_distribution_release == "stretch"
|
||||||
|
|
||||||
- include: main_buster.yml
|
- import_tasks: main_buster.yml
|
||||||
when: ansible_distribution_release == "buster"
|
when: ansible_distribution_release == "buster"
|
||||||
|
|
||||||
- include: main_bullseye.yml
|
- import_tasks: main_bullseye.yml
|
||||||
when: ansible_distribution_major_version is version('11', '>=')
|
when: ansible_distribution_major_version is version('11', '>=')
|
||||||
|
|
|
@ -3,20 +3,20 @@
|
||||||
- set_fact:
|
- set_fact:
|
||||||
mysql_restart_handler_name: "{{ mysql_restart_if_needed | bool | ternary('restart mysql', 'restart mysql (noop)') }}"
|
mysql_restart_handler_name: "{{ mysql_restart_if_needed | bool | ternary('restart mysql', 'restart mysql (noop)') }}"
|
||||||
|
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
|
|
||||||
- include: users.yml
|
- import_tasks: users.yml
|
||||||
|
|
||||||
- include: config.yml
|
- import_tasks: config.yml
|
||||||
|
|
||||||
- include: datadir.yml
|
- import_tasks: datadir.yml
|
||||||
|
|
||||||
- include: tmpdir.yml
|
- import_tasks: tmpdir.yml
|
||||||
|
|
||||||
- include: nrpe.yml
|
- import_tasks: nrpe.yml
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
||||||
- include: log2mail.yml
|
- import_tasks: log2mail.yml
|
||||||
|
|
||||||
- include: utils.yml
|
- import_tasks: utils.yml
|
||||||
|
|
|
@ -4,46 +4,46 @@
|
||||||
set_fact:
|
set_fact:
|
||||||
mysql_restart_handler_name: "{{ mysql_restart_if_needed | bool | ternary('restart mysql', 'restart mysql (noop)') }}"
|
mysql_restart_handler_name: "{{ mysql_restart_if_needed | bool | ternary('restart mysql', 'restart mysql (noop)') }}"
|
||||||
|
|
||||||
- include_tasks: packages_stretch.yml
|
- import_tasks: packages_stretch.yml
|
||||||
when: ansible_distribution_major_version is version('9', '>=')
|
when: ansible_distribution_major_version is version('9', '>=')
|
||||||
|
|
||||||
- include_tasks: packages_jessie.yml
|
- import_tasks: packages_jessie.yml
|
||||||
when: ansible_distribution_release == "jessie"
|
when: ansible_distribution_release == "jessie"
|
||||||
|
|
||||||
## There is nothing to do with users on Debian 11+ - yet we need a /root/.my.cnf for compatibility
|
## There is nothing to do with users on Debian 11+ - yet we need a /root/.my.cnf for compatibility
|
||||||
- include_tasks: users_bullseye.yml
|
- import_tasks: users_bullseye.yml
|
||||||
when: ansible_distribution_major_version is version('11', '>=')
|
when: ansible_distribution_major_version is version('11', '>=')
|
||||||
|
|
||||||
- include_tasks: users_buster.yml
|
- import_tasks: users_buster.yml
|
||||||
when: ansible_distribution_release == "buster"
|
when: ansible_distribution_release == "buster"
|
||||||
|
|
||||||
- include_tasks: users_stretch.yml
|
- import_tasks: users_stretch.yml
|
||||||
when: ansible_distribution_release == "stretch"
|
when: ansible_distribution_release == "stretch"
|
||||||
|
|
||||||
- include_tasks: users_jessie.yml
|
- import_tasks: users_jessie.yml
|
||||||
when: ansible_distribution_release == "jessie"
|
when: ansible_distribution_release == "jessie"
|
||||||
|
|
||||||
- include_tasks: config_stretch.yml
|
- import_tasks: config_stretch.yml
|
||||||
when: ansible_distribution_major_version is version('9', '>=')
|
when: ansible_distribution_major_version is version('9', '>=')
|
||||||
|
|
||||||
- include_tasks: config_jessie.yml
|
- import_tasks: config_jessie.yml
|
||||||
when: ansible_distribution_release == "jessie"
|
when: ansible_distribution_release == "jessie"
|
||||||
|
|
||||||
- include_tasks: replication.yml
|
- import_tasks: replication.yml
|
||||||
when: mysql_replication | bool
|
when: mysql_replication | bool
|
||||||
|
|
||||||
- include_tasks: datadir.yml
|
- import_tasks: datadir.yml
|
||||||
|
|
||||||
- include_tasks: logdir.yml
|
- import_tasks: logdir.yml
|
||||||
|
|
||||||
- include_tasks: tmpdir.yml
|
- import_tasks: tmpdir.yml
|
||||||
|
|
||||||
- include_tasks: nrpe.yml
|
- import_tasks: nrpe.yml
|
||||||
|
|
||||||
- include_tasks: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
||||||
- include_tasks: log2mail.yml
|
- import_tasks: log2mail.yml
|
||||||
|
|
||||||
- include_tasks: utils.yml
|
- import_tasks: utils.yml
|
||||||
|
|
||||||
- include_tasks: mysql_skip.yml
|
- import_tasks: mysql_skip.yml
|
||||||
|
|
|
@ -248,4 +248,4 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
force: no
|
force: no
|
||||||
tags:
|
tags:
|
||||||
- mysql
|
- mysql
|
||||||
|
|
|
@ -21,10 +21,10 @@
|
||||||
set_fact:
|
set_fact:
|
||||||
eni_interface_name: "{{ ansible_default_ipv4.interface }}"
|
eni_interface_name: "{{ ansible_default_ipv4.interface }}"
|
||||||
|
|
||||||
- include: set_facts_from_systemd.yml
|
- import_tasks: set_facts_from_systemd.yml
|
||||||
when: systemd_network_file.stat.exists
|
when: systemd_network_file.stat.exists
|
||||||
|
|
||||||
- include: set_facts_from_ansible.yml
|
- import_tasks: set_facts_from_ansible.yml
|
||||||
when: not systemd_network_file.stat.exists
|
when: not systemd_network_file.stat.exists
|
||||||
|
|
||||||
- name: Check config (IPv4)
|
- name: Check config (IPv4)
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: sources.yml
|
- import_tasks: sources.yml
|
||||||
|
|
||||||
- include: php.yml
|
- import_tasks: php.yml
|
||||||
when: newrelic_php | bool
|
when: newrelic_php | bool
|
||||||
|
|
||||||
- include: sysmond.yml
|
- import_tasks: sysmond.yml
|
||||||
when: newrelic_sysmond | bool
|
when: newrelic_sysmond | bool
|
||||||
|
|
|
@ -8,9 +8,9 @@
|
||||||
msg: "Nginx minimal mode has been set, using minimal mode."
|
msg: "Nginx minimal mode has been set, using minimal mode."
|
||||||
when: nginx_minimal | bool
|
when: nginx_minimal | bool
|
||||||
|
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
|
|
||||||
- include: server_status_read.yml
|
- import_tasks: server_status_read.yml
|
||||||
tags:
|
tags:
|
||||||
- nginx
|
- nginx
|
||||||
|
|
||||||
|
@ -64,7 +64,7 @@
|
||||||
- ips
|
- ips
|
||||||
|
|
||||||
- name: Include IP address whitelist task
|
- name: Include IP address whitelist task
|
||||||
include: ip_whitelist.yml
|
import_tasks: ip_whitelist.yml
|
||||||
|
|
||||||
- name: Copy evolinux_server_custom
|
- name: Copy evolinux_server_custom
|
||||||
copy:
|
copy:
|
||||||
|
@ -134,7 +134,7 @@
|
||||||
tags:
|
tags:
|
||||||
- nginx
|
- nginx
|
||||||
|
|
||||||
- include: server_status_write.yml
|
- import_tasks: server_status_write.yml
|
||||||
tags:
|
tags:
|
||||||
- nginx
|
- nginx
|
||||||
|
|
||||||
|
@ -155,16 +155,16 @@
|
||||||
- nginx
|
- nginx
|
||||||
- munin
|
- munin
|
||||||
|
|
||||||
- include: munin_vhost.yml
|
- import_tasks: munin_vhost.yml
|
||||||
when: stat_munin_node.stat.exists
|
when: stat_munin_node.stat.exists
|
||||||
tags:
|
tags:
|
||||||
- nginx
|
- nginx
|
||||||
- munin
|
- munin
|
||||||
|
|
||||||
- include: munin_graphs.yml
|
- import_tasks: munin_graphs.yml
|
||||||
when: stat_munin_node.stat.exists
|
when: stat_munin_node.stat.exists
|
||||||
tags:
|
tags:
|
||||||
- nginx
|
- nginx
|
||||||
- munin
|
- munin
|
||||||
|
|
||||||
- include: logrotate.yml
|
- import_tasks: logrotate.yml
|
||||||
|
|
|
@ -4,7 +4,7 @@
|
||||||
nginx_default_package_name: nginx-light
|
nginx_default_package_name: nginx-light
|
||||||
when: nginx_minimal | bool
|
when: nginx_minimal | bool
|
||||||
|
|
||||||
- include: packages_backports.yml
|
- import_tasks: packages_backports.yml
|
||||||
when: nginx_backports | bool
|
when: nginx_backports | bool
|
||||||
|
|
||||||
# TODO: install "nginx" + only necessary modules, instead of "nginx-full"
|
# TODO: install "nginx" + only necessary modules, instead of "nginx-full"
|
||||||
|
|
|
@ -72,5 +72,5 @@
|
||||||
- packages
|
- packages
|
||||||
- nodejs
|
- nodejs
|
||||||
|
|
||||||
- include: yarn.yml
|
- import_tasks: yarn.yml
|
||||||
when: nodejs_install_yarn | bool
|
when: nodejs_install_yarn | bool
|
||||||
|
|
|
@ -6,10 +6,10 @@
|
||||||
msg: "Only compatible with Debian and OpenBSD"
|
msg: "Only compatible with Debian and OpenBSD"
|
||||||
|
|
||||||
- name: Include Debian version
|
- name: Include Debian version
|
||||||
include: debian.yml
|
import_tasks: debian.yml
|
||||||
when: ansible_distribution == "Debian"
|
when: ansible_distribution == "Debian"
|
||||||
|
|
||||||
- name: Include OpenBSD version
|
- name: Include OpenBSD version
|
||||||
include: openbsd.yml
|
import_tasks: openbsd.yml
|
||||||
when: ansible_distribution == "OpenBSD"
|
when: ansible_distribution == "OpenBSD"
|
||||||
|
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- name: Dependencies are satisfied
|
- name: Dependencies are satisfied
|
||||||
include_tasks: dependencies.yml
|
import_tasks: dependencies.yml
|
||||||
|
|
||||||
- fail:
|
- fail:
|
||||||
msg: only compatible with Debian >= 8
|
msg: only compatible with Debian >= 8
|
||||||
|
@ -85,13 +85,13 @@
|
||||||
regexp: '^DIR_MODE='
|
regexp: '^DIR_MODE='
|
||||||
line: 'DIR_MODE=0750'
|
line: 'DIR_MODE=0750'
|
||||||
|
|
||||||
- include: apache.yml
|
- import_tasks: apache.yml
|
||||||
|
|
||||||
- include: phpmyadmin.yml
|
- import_tasks: phpmyadmin.yml
|
||||||
|
|
||||||
- include: awstats.yml
|
- import_tasks: awstats.yml
|
||||||
|
|
||||||
- include: fhs_retrictions.yml
|
- import_tasks: fhs_retrictions.yml
|
||||||
when: packweb_fhs_retrictions | bool
|
when: packweb_fhs_retrictions | bool
|
||||||
|
|
||||||
- name: Periodically cache ftp directory sizes for ftpadmin.sh
|
- name: Periodically cache ftp directory sizes for ftpadmin.sh
|
||||||
|
@ -100,5 +100,5 @@
|
||||||
special_time: daily
|
special_time: daily
|
||||||
job: "/usr/share/scripts/evoadmin/stats.sh"
|
job: "/usr/share/scripts/evoadmin/stats.sh"
|
||||||
|
|
||||||
- include: multiphp.yml
|
- import_tasks: multiphp.yml
|
||||||
when: packweb_multiphp_versions | length > 0
|
when: packweb_multiphp_versions | length > 0
|
||||||
|
|
|
@ -61,5 +61,5 @@
|
||||||
update_cache: yes
|
update_cache: yes
|
||||||
when: percona__apt_config_deb is changed
|
when: percona__apt_config_deb is changed
|
||||||
|
|
||||||
- include: xtrabackup.yml
|
- import_tasks: xtrabackup.yml
|
||||||
when: percona__install_xtrabackup | bool
|
when: percona__install_xtrabackup | bool
|
||||||
|
|
|
@ -7,17 +7,17 @@
|
||||||
- ansible_distribution_major_version is version('12', '<=')
|
- ansible_distribution_major_version is version('12', '<=')
|
||||||
msg: This is only compatible with Debian 8 → 12
|
msg: This is only compatible with Debian 8 → 12
|
||||||
|
|
||||||
- include_tasks: main_jessie.yml
|
- import_tasks: main_jessie.yml
|
||||||
when: ansible_distribution_release == "jessie"
|
when: ansible_distribution_release == "jessie"
|
||||||
|
|
||||||
- include_tasks: main_stretch.yml
|
- import_tasks: main_stretch.yml
|
||||||
when: ansible_distribution_release == "stretch"
|
when: ansible_distribution_release == "stretch"
|
||||||
|
|
||||||
- include_tasks: main_buster.yml
|
- import_tasks: main_buster.yml
|
||||||
when: ansible_distribution_release == "buster"
|
when: ansible_distribution_release == "buster"
|
||||||
|
|
||||||
- include_tasks: main_bullseye.yml
|
- import_tasks: main_bullseye.yml
|
||||||
when: ansible_distribution_release == "bullseye"
|
when: ansible_distribution_release == "bullseye"
|
||||||
|
|
||||||
- include_tasks: main_bookworm.yml
|
- import_tasks: main_bookworm.yml
|
||||||
when: ansible_distribution_release == "bookworm"
|
when: ansible_distribution_release == "bookworm"
|
||||||
|
|
|
@ -46,7 +46,7 @@
|
||||||
- composer
|
- composer
|
||||||
- libphp-phpmailer
|
- libphp-phpmailer
|
||||||
|
|
||||||
- include: sury_pre.yml
|
- import_tasks: sury_pre.yml
|
||||||
when: php_sury_enable
|
when: php_sury_enable
|
||||||
|
|
||||||
- name: "Install PHP packages (Debian 12)"
|
- name: "Install PHP packages (Debian 12)"
|
||||||
|
@ -80,13 +80,13 @@
|
||||||
- /etc/php
|
- /etc/php
|
||||||
- /etc/php/{{ php_version }}
|
- /etc/php/{{ php_version }}
|
||||||
|
|
||||||
- include: config_cli.yml
|
- import_tasks: config_cli.yml
|
||||||
- name: "Enforce permissions on PHP cli directory (Debian 12)"
|
- name: "Enforce permissions on PHP cli directory (Debian 12)"
|
||||||
file:
|
file:
|
||||||
dest: /etc/php/{{ php_version }}/cli
|
dest: /etc/php/{{ php_version }}/cli
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
|
|
||||||
- include: config_fpm.yml
|
- import_tasks: config_fpm.yml
|
||||||
when: php_fpm_enable
|
when: php_fpm_enable
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP fpm directory (Debian 12)"
|
- name: "Enforce permissions on PHP fpm directory (Debian 12)"
|
||||||
|
@ -95,7 +95,7 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_fpm_enable
|
when: php_fpm_enable
|
||||||
|
|
||||||
- include: config_apache.yml
|
- import_tasks: config_apache.yml
|
||||||
when: php_apache_enable
|
when: php_apache_enable
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP apache2 directory (Debian 12)"
|
- name: "Enforce permissions on PHP apache2 directory (Debian 12)"
|
||||||
|
@ -104,5 +104,5 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_apache_enable
|
when: php_apache_enable
|
||||||
|
|
||||||
- include: sury_post.yml
|
- import_tasks: sury_post.yml
|
||||||
when: php_sury_enable
|
when: php_sury_enable
|
||||||
|
|
|
@ -35,7 +35,7 @@
|
||||||
- composer
|
- composer
|
||||||
- libphp-phpmailer
|
- libphp-phpmailer
|
||||||
|
|
||||||
- include: sury_pre.yml
|
- import_tasks: sury_pre.yml
|
||||||
when: php_sury_enable
|
when: php_sury_enable
|
||||||
|
|
||||||
- name: "Install PHP packages (Debian 11)"
|
- name: "Install PHP packages (Debian 11)"
|
||||||
|
@ -69,13 +69,13 @@
|
||||||
- /etc/php
|
- /etc/php
|
||||||
- /etc/php/7.4
|
- /etc/php/7.4
|
||||||
|
|
||||||
- include: config_cli.yml
|
- import_tasks: config_cli.yml
|
||||||
- name: "Enforce permissions on PHP cli directory (Debian 11)"
|
- name: "Enforce permissions on PHP cli directory (Debian 11)"
|
||||||
file:
|
file:
|
||||||
dest: /etc/php/7.4/cli
|
dest: /etc/php/7.4/cli
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
|
|
||||||
- include: config_fpm.yml
|
- import_tasks: config_fpm.yml
|
||||||
when: php_fpm_enable
|
when: php_fpm_enable
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP fpm directory (Debian 11)"
|
- name: "Enforce permissions on PHP fpm directory (Debian 11)"
|
||||||
|
@ -84,7 +84,7 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_fpm_enable
|
when: php_fpm_enable
|
||||||
|
|
||||||
- include: config_apache.yml
|
- import_tasks: config_apache.yml
|
||||||
when: php_apache_enable
|
when: php_apache_enable
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP apache2 directory (Debian 11)"
|
- name: "Enforce permissions on PHP apache2 directory (Debian 11)"
|
||||||
|
@ -93,5 +93,5 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_apache_enable
|
when: php_apache_enable
|
||||||
|
|
||||||
- include: sury_post.yml
|
- import_tasks: sury_post.yml
|
||||||
when: php_sury_enable
|
when: php_sury_enable
|
||||||
|
|
|
@ -35,7 +35,7 @@
|
||||||
- composer
|
- composer
|
||||||
- libphp-phpmailer
|
- libphp-phpmailer
|
||||||
|
|
||||||
- include: sury_pre.yml
|
- import_tasks: sury_pre.yml
|
||||||
when: php_sury_enable | bool
|
when: php_sury_enable | bool
|
||||||
|
|
||||||
- name: "Install PHP packages (Debian 10)"
|
- name: "Install PHP packages (Debian 10)"
|
||||||
|
@ -69,13 +69,13 @@
|
||||||
- /etc/php
|
- /etc/php
|
||||||
- /etc/php/7.3
|
- /etc/php/7.3
|
||||||
|
|
||||||
- include: config_cli.yml
|
- import_tasks: config_cli.yml
|
||||||
- name: "Enforce permissions on PHP cli directory (Debian 10)"
|
- name: "Enforce permissions on PHP cli directory (Debian 10)"
|
||||||
file:
|
file:
|
||||||
dest: /etc/php/7.3/cli
|
dest: /etc/php/7.3/cli
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
|
|
||||||
- include: config_fpm.yml
|
- import_tasks: config_fpm.yml
|
||||||
when: php_fpm_enable | bool
|
when: php_fpm_enable | bool
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP fpm directory (Debian 10)"
|
- name: "Enforce permissions on PHP fpm directory (Debian 10)"
|
||||||
|
@ -84,7 +84,7 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_fpm_enable | bool
|
when: php_fpm_enable | bool
|
||||||
|
|
||||||
- include: config_apache.yml
|
- import_tasks: config_apache.yml
|
||||||
when: php_apache_enable | bool
|
when: php_apache_enable | bool
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP apache2 directory (Debian 10)"
|
- name: "Enforce permissions on PHP apache2 directory (Debian 10)"
|
||||||
|
@ -93,5 +93,5 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_apache_enable | bool
|
when: php_apache_enable | bool
|
||||||
|
|
||||||
- include: sury_post.yml
|
- import_tasks: sury_post.yml
|
||||||
when: php_sury_enable | bool
|
when: php_sury_enable | bool
|
||||||
|
|
|
@ -57,14 +57,14 @@
|
||||||
dest: /etc/php5
|
dest: /etc/php5
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
|
|
||||||
- include: config_cli.yml
|
- import_tasks: config_cli.yml
|
||||||
|
|
||||||
- name: Enforce permissions on PHP cli directory (Debian 8)
|
- name: Enforce permissions on PHP cli directory (Debian 8)
|
||||||
file:
|
file:
|
||||||
dest: /etc/php5/cli
|
dest: /etc/php5/cli
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
|
|
||||||
- include: config_fpm.yml
|
- import_tasks: config_fpm.yml
|
||||||
when: php_fpm_enable | bool
|
when: php_fpm_enable | bool
|
||||||
|
|
||||||
- name: Enforce permissions on PHP fpm directory (Debian 8)
|
- name: Enforce permissions on PHP fpm directory (Debian 8)
|
||||||
|
@ -73,7 +73,7 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_fpm_enable | bool
|
when: php_fpm_enable | bool
|
||||||
|
|
||||||
- include: config_apache.yml
|
- import_tasks: config_apache.yml
|
||||||
when: php_apache_enable | bool
|
when: php_apache_enable | bool
|
||||||
|
|
||||||
- name: Enforce permissions on PHP apache2 directory (Debian 8)
|
- name: Enforce permissions on PHP apache2 directory (Debian 8)
|
||||||
|
|
|
@ -35,7 +35,7 @@
|
||||||
- composer
|
- composer
|
||||||
- libphp-phpmailer
|
- libphp-phpmailer
|
||||||
|
|
||||||
- include: sury_pre.yml
|
- import_tasks: sury_pre.yml
|
||||||
when: php_sury_enable | bool
|
when: php_sury_enable | bool
|
||||||
|
|
||||||
- name: "Install PHP packages (Debian 9)"
|
- name: "Install PHP packages (Debian 9)"
|
||||||
|
@ -69,14 +69,14 @@
|
||||||
- /etc/php
|
- /etc/php
|
||||||
- /etc/php/7.0
|
- /etc/php/7.0
|
||||||
|
|
||||||
- include: config_cli.yml
|
- import_tasks: config_cli.yml
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP cli directory (Debian 9)"
|
- name: "Enforce permissions on PHP cli directory (Debian 9)"
|
||||||
file:
|
file:
|
||||||
dest: /etc/php/7.0/cli
|
dest: /etc/php/7.0/cli
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
|
|
||||||
- include: config_fpm.yml
|
- import_tasks: config_fpm.yml
|
||||||
when: php_fpm_enable | bool
|
when: php_fpm_enable | bool
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP fpm directory (Debian 9)"
|
- name: "Enforce permissions on PHP fpm directory (Debian 9)"
|
||||||
|
@ -85,7 +85,7 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_fpm_enable | bool
|
when: php_fpm_enable | bool
|
||||||
|
|
||||||
- include: config_apache.yml
|
- import_tasks: config_apache.yml
|
||||||
when: php_apache_enable | bool
|
when: php_apache_enable | bool
|
||||||
|
|
||||||
- name: "Enforce permissions on PHP apache2 directory (Debian 9)"
|
- name: "Enforce permissions on PHP apache2 directory (Debian 9)"
|
||||||
|
@ -94,5 +94,5 @@
|
||||||
mode: "0755"
|
mode: "0755"
|
||||||
when: php_apache_enable | bool
|
when: php_apache_enable | bool
|
||||||
|
|
||||||
- include: sury_post.yml
|
- import_tasks: sury_post.yml
|
||||||
when: php_sury_enable | bool
|
when: php_sury_enable | bool
|
||||||
|
|
|
@ -1,12 +1,12 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: common.yml
|
- import_tasks: common.yml
|
||||||
|
|
||||||
- include: minimal.yml
|
- import_tasks: minimal.yml
|
||||||
when: not (postfix_packmail | bool)
|
when: not (postfix_packmail | bool)
|
||||||
|
|
||||||
- include: packmail.yml
|
- import_tasks: packmail.yml
|
||||||
when: postfix_packmail | bool
|
when: postfix_packmail | bool
|
||||||
|
|
||||||
- include: slow_transport.yml
|
- import_tasks: slow_transport.yml
|
||||||
when: postfix_slow_transport_include | bool
|
when: postfix_slow_transport_include | bool
|
||||||
|
|
|
@ -1,25 +1,25 @@
|
||||||
---
|
---
|
||||||
- include: locales.yml
|
- import_tasks: locales.yml
|
||||||
|
|
||||||
- include: packages_jessie.yml
|
- import_tasks: packages_jessie.yml
|
||||||
when: ansible_distribution_release == "jessie"
|
when: ansible_distribution_release == "jessie"
|
||||||
|
|
||||||
- include: packages_stretch.yml
|
- import_tasks: packages_stretch.yml
|
||||||
when: ansible_distribution_release == "stretch"
|
when: ansible_distribution_release == "stretch"
|
||||||
|
|
||||||
- include: packages_buster.yml
|
- import_tasks: packages_buster.yml
|
||||||
when: ansible_distribution_release == "buster"
|
when: ansible_distribution_release == "buster"
|
||||||
|
|
||||||
- include: packages_bullseye.yml
|
- import_tasks: packages_bullseye.yml
|
||||||
when: ansible_distribution_major_version is version('11', '>=')
|
when: ansible_distribution_major_version is version('11', '>=')
|
||||||
|
|
||||||
- include: config.yml
|
- import_tasks: config.yml
|
||||||
|
|
||||||
- include: nrpe.yml
|
- import_tasks: nrpe.yml
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
||||||
- include: logrotate.yml
|
- import_tasks: logrotate.yml
|
||||||
|
|
||||||
- include: postgis.yml
|
- import_tasks: postgis.yml
|
||||||
when: postgresql_install_postgis | bool
|
when: postgresql_install_postgis | bool
|
||||||
|
|
|
@ -5,7 +5,7 @@
|
||||||
postgresql_version: '15'
|
postgresql_version: '15'
|
||||||
when: postgresql_version is none or postgresql_version | length == 0
|
when: postgresql_version is none or postgresql_version | length == 0
|
||||||
|
|
||||||
- include: pgdg-repo.yml
|
- import_tasks: pgdg-repo.yml
|
||||||
when: postgresql_version != '15'
|
when: postgresql_version != '15'
|
||||||
|
|
||||||
- name: Install postgresql package
|
- name: Install postgresql package
|
||||||
|
|
|
@ -5,7 +5,7 @@
|
||||||
postgresql_version: '13'
|
postgresql_version: '13'
|
||||||
when: postgresql_version is none or postgresql_version | length == 0
|
when: postgresql_version is none or postgresql_version | length == 0
|
||||||
|
|
||||||
- include: pgdg-repo.yml
|
- import_tasks: pgdg-repo.yml
|
||||||
when: postgresql_version != '13'
|
when: postgresql_version != '13'
|
||||||
|
|
||||||
- name: Install postgresql package
|
- name: Install postgresql package
|
||||||
|
|
|
@ -5,7 +5,7 @@
|
||||||
postgresql_version: '11'
|
postgresql_version: '11'
|
||||||
when: postgresql_version is none or postgresql_version | length == 0
|
when: postgresql_version is none or postgresql_version | length == 0
|
||||||
|
|
||||||
- include: pgdg-repo.yml
|
- import_tasks: pgdg-repo.yml
|
||||||
when: postgresql_version != '11'
|
when: postgresql_version != '11'
|
||||||
|
|
||||||
- name: Install postgresql package
|
- name: Install postgresql package
|
||||||
|
|
|
@ -5,7 +5,7 @@
|
||||||
postgresql_version: '9.4'
|
postgresql_version: '9.4'
|
||||||
when: postgresql_version is none or postgresql_version | length == 0
|
when: postgresql_version is none or postgresql_version | length == 0
|
||||||
|
|
||||||
- include: pgdg-repo.yml
|
- import_tasks: pgdg-repo.yml
|
||||||
when: postgresql_version != '9.4'
|
when: postgresql_version != '9.4'
|
||||||
|
|
||||||
- name: Install postgresql package
|
- name: Install postgresql package
|
||||||
|
|
|
@ -5,7 +5,7 @@
|
||||||
postgresql_version: '9.6'
|
postgresql_version: '9.6'
|
||||||
when: postgresql_version is none or postgresql_version | length == 0
|
when: postgresql_version is none or postgresql_version | length == 0
|
||||||
|
|
||||||
- include: pgdg-repo.yml
|
- import_tasks: pgdg-repo.yml
|
||||||
when: postgresql_version != '9.6'
|
when: postgresql_version != '9.6'
|
||||||
|
|
||||||
- name: Install postgresql package
|
- name: Install postgresql package
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
---
|
---
|
||||||
- include: accounts_password.yml
|
- import_tasks: accounts_password.yml
|
||||||
when: item.password is undefined
|
when: item.password is undefined
|
||||||
loop: "{{ proftpd_accounts }}"
|
loop: "{{ proftpd_accounts }}"
|
||||||
tags:
|
tags:
|
||||||
|
|
|
@ -93,5 +93,5 @@
|
||||||
tags:
|
tags:
|
||||||
- proftpd
|
- proftpd
|
||||||
|
|
||||||
- include: accounts.yml
|
- import_tasks: accounts.yml
|
||||||
when: proftpd_accounts | length > 0
|
when: proftpd_accounts | length > 0
|
||||||
|
|
|
@ -34,7 +34,7 @@
|
||||||
tags:
|
tags:
|
||||||
- nrpe
|
- nrpe
|
||||||
|
|
||||||
- include: nrpe.yml
|
- import_tasks: nrpe.yml
|
||||||
when: nrpe_evolix_config.stat.exists
|
when: nrpe_evolix_config.stat.exists
|
||||||
|
|
||||||
- name: is Munin present ?
|
- name: is Munin present ?
|
||||||
|
@ -45,7 +45,7 @@
|
||||||
tags:
|
tags:
|
||||||
- nrpe
|
- nrpe
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
when: etc_munin_directory.stat.exists
|
when: etc_munin_directory.stat.exists
|
||||||
|
|
||||||
- name: entry for RabbitMQ in web page is present
|
- name: entry for RabbitMQ in web page is present
|
||||||
|
|
|
@ -12,7 +12,7 @@
|
||||||
reload: yes
|
reload: yes
|
||||||
|
|
||||||
- name: Customize Kernel Transparent Huge Page
|
- name: Customize Kernel Transparent Huge Page
|
||||||
include: thp.yml
|
import_tasks: thp.yml
|
||||||
when: redis_sysctl_transparent_hugepage_enabled is not none
|
when: redis_sysctl_transparent_hugepage_enabled is not none
|
||||||
|
|
||||||
- name: Redis is installed
|
- name: Redis is installed
|
||||||
|
@ -76,11 +76,11 @@
|
||||||
- redis_bind_interface | length > 0
|
- redis_bind_interface | length > 0
|
||||||
|
|
||||||
- name: configure Redis for default mode
|
- name: configure Redis for default mode
|
||||||
include: default-server.yml
|
import_tasks: default-server.yml
|
||||||
when: redis_instance_name is not defined
|
when: redis_instance_name is not defined
|
||||||
|
|
||||||
- name: configure Redis for instance mode
|
- name: configure Redis for instance mode
|
||||||
include: instance-server.yml
|
import_tasks: instance-server.yml
|
||||||
when: redis_instance_name is defined
|
when: redis_instance_name is defined
|
||||||
|
|
||||||
- name: Is Munin installed
|
- name: Is Munin installed
|
||||||
|
@ -92,7 +92,7 @@
|
||||||
- munin
|
- munin
|
||||||
|
|
||||||
- name: configure Munin for default mode
|
- name: configure Munin for default mode
|
||||||
include: default-munin.yml
|
import_tasks: default-munin.yml
|
||||||
when:
|
when:
|
||||||
- _munin_installed.stat.exists
|
- _munin_installed.stat.exists
|
||||||
- _munin_installed.stat.isdir
|
- _munin_installed.stat.isdir
|
||||||
|
@ -102,7 +102,7 @@
|
||||||
- munin
|
- munin
|
||||||
|
|
||||||
- name: configure Munin for instance mode
|
- name: configure Munin for instance mode
|
||||||
include: instance-munin.yml
|
import_tasks: instance-munin.yml
|
||||||
when:
|
when:
|
||||||
- _munin_installed.stat.exists
|
- _munin_installed.stat.exists
|
||||||
- _munin_installed.stat.isdir
|
- _munin_installed.stat.isdir
|
||||||
|
@ -120,7 +120,7 @@
|
||||||
- log2mail
|
- log2mail
|
||||||
|
|
||||||
- name: configure log2mail for default mode
|
- name: configure log2mail for default mode
|
||||||
include: default-log2mail.yml
|
import_tasks: default-log2mail.yml
|
||||||
when:
|
when:
|
||||||
- _log2mail_installed.stat.exists
|
- _log2mail_installed.stat.exists
|
||||||
- _log2mail_installed.stat.isdir
|
- _log2mail_installed.stat.isdir
|
||||||
|
@ -130,7 +130,7 @@
|
||||||
- log2mail
|
- log2mail
|
||||||
|
|
||||||
- name: configure log2mail for instance mode
|
- name: configure log2mail for instance mode
|
||||||
include: instance-log2mail.yml
|
import_tasks: instance-log2mail.yml
|
||||||
when:
|
when:
|
||||||
- _log2mail_installed.stat.exists
|
- _log2mail_installed.stat.exists
|
||||||
- _log2mail_installed.stat.isdir
|
- _log2mail_installed.stat.isdir
|
||||||
|
@ -148,7 +148,7 @@
|
||||||
- redis
|
- redis
|
||||||
- nrpe
|
- nrpe
|
||||||
|
|
||||||
- include: nrpe.yml
|
- import_tasks: nrpe.yml
|
||||||
when: nrpe_evolix_config.stat.exists
|
when: nrpe_evolix_config.stat.exists
|
||||||
tags:
|
tags:
|
||||||
- redis
|
- redis
|
||||||
|
|
|
@ -1,13 +1,13 @@
|
||||||
---
|
---
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
- include: syslog.yml
|
- import_tasks: syslog.yml
|
||||||
- include: user.yml
|
- import_tasks: user.yml
|
||||||
- include_role:
|
- include_role:
|
||||||
name: evolix/rbenv
|
name: evolix/rbenv
|
||||||
vars:
|
vars:
|
||||||
- username: "{{ redmine_user }}"
|
- username: "{{ redmine_user }}"
|
||||||
- include: config.yml
|
- import_tasks: config.yml
|
||||||
- include: mysql.yml
|
- import_tasks: mysql.yml
|
||||||
- include: source.yml
|
- import_tasks: source.yml
|
||||||
- include: release.yml
|
- import_tasks: release.yml
|
||||||
- include: nginx.yml
|
- import_tasks: nginx.yml
|
||||||
|
|
|
@ -152,15 +152,15 @@
|
||||||
notify: "reload squid"
|
notify: "reload squid"
|
||||||
when: ansible_distribution_major_version is version('9', '>=')
|
when: ansible_distribution_major_version is version('9', '>=')
|
||||||
|
|
||||||
- include: systemd.yml
|
- import_tasks: systemd.yml
|
||||||
when: ansible_distribution_major_version is version('10', '>=')
|
when: ansible_distribution_major_version is version('10', '>=')
|
||||||
|
|
||||||
- include: logrotate_jessie.yml
|
- import_tasks: logrotate_jessie.yml
|
||||||
when: ansible_distribution_release == "jessie"
|
when: ansible_distribution_release == "jessie"
|
||||||
|
|
||||||
- include: logrotate_stretch.yml
|
- import_tasks: logrotate_stretch.yml
|
||||||
when: ansible_distribution_major_version is version('9', '>=')
|
when: ansible_distribution_major_version is version('9', '>=')
|
||||||
|
|
||||||
- include: minifirewall.yml
|
- import_tasks: minifirewall.yml
|
||||||
|
|
||||||
- include: log2mail.yml
|
- import_tasks: log2mail.yml
|
||||||
|
|
|
@ -39,5 +39,5 @@
|
||||||
tags:
|
tags:
|
||||||
- ssl
|
- ssl
|
||||||
|
|
||||||
- include: haproxy.yml
|
- import_tasks: haproxy.yml
|
||||||
when: haproxy_check.rc == 0
|
when: haproxy_check.rc == 0
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
- include: check.yml
|
- import_tasks: check.yml
|
||||||
- include: user.yml
|
- import_tasks: user.yml
|
||||||
- include: systemd.yml
|
- import_tasks: systemd.yml
|
||||||
- include: alias.yml
|
- import_tasks: alias.yml
|
||||||
- include: bootstrap.yml
|
- import_tasks: bootstrap.yml
|
||||||
|
|
|
@ -1,4 +1,4 @@
|
||||||
---
|
---
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
|
|
||||||
- include: nagios.yml
|
- import_tasks: nagios.yml
|
||||||
|
|
|
@ -189,4 +189,4 @@
|
||||||
group: varnish
|
group: varnish
|
||||||
mode: "0750"
|
mode: "0750"
|
||||||
|
|
||||||
- include: munin.yml
|
- import_tasks: munin.yml
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
- name: Install Evolix public repositry
|
- name: Install Evolix public repositry
|
||||||
include_role:
|
import_role:
|
||||||
name: evolix/apt
|
name: evolix/apt
|
||||||
tasks_from: evolix_public.yml
|
tasks_from: evolix_public.yml
|
||||||
tags:
|
tags:
|
||||||
|
@ -58,7 +58,7 @@
|
||||||
- vrrpd
|
- vrrpd
|
||||||
|
|
||||||
- name: Create VRRP address
|
- name: Create VRRP address
|
||||||
include: ip.yml
|
include_tasks: ip.yml
|
||||||
loop: "{{ vrrp_addresses }}"
|
loop: "{{ vrrp_addresses }}"
|
||||||
loop_control:
|
loop_control:
|
||||||
loop_var: "vrrp_address"
|
loop_var: "vrrp_address"
|
||||||
|
|
|
@ -20,12 +20,12 @@
|
||||||
tags:
|
tags:
|
||||||
- evoadmin-mail
|
- evoadmin-mail
|
||||||
|
|
||||||
- include: ssl.yml
|
- import_tasks: ssl.yml
|
||||||
|
|
||||||
- include: apache.yml
|
- import_tasks: apache.yml
|
||||||
when: evoadminmail_webserver == "apache"
|
when: evoadminmail_webserver == "apache"
|
||||||
|
|
||||||
- include: nginx.yml
|
- import_tasks: nginx.yml
|
||||||
when: evoadminmail_webserver == "nginx"
|
when: evoadminmail_webserver == "nginx"
|
||||||
|
|
||||||
- name: enable evoadmin-mail link in default site index
|
- name: enable evoadmin-mail link in default site index
|
||||||
|
|
|
@ -5,17 +5,17 @@
|
||||||
msg: Please configure var evoadmin_contact_email
|
msg: Please configure var evoadmin_contact_email
|
||||||
when: evoadmin_contact_email is none or evoadmin_contact_email | length == 0
|
when: evoadmin_contact_email is none or evoadmin_contact_email | length == 0
|
||||||
|
|
||||||
- include: packages.yml
|
- import_tasks: packages.yml
|
||||||
|
|
||||||
- include: user.yml
|
- import_tasks: user.yml
|
||||||
|
|
||||||
- include: config.yml
|
- import_tasks: config.yml
|
||||||
|
|
||||||
- include: ssl.yml
|
- import_tasks: ssl.yml
|
||||||
|
|
||||||
- include: web.yml
|
- import_tasks: web.yml
|
||||||
|
|
||||||
- include: ftp.yml
|
- import_tasks: ftp.yml
|
||||||
|
|
||||||
- name: enable evoadmin-web link in default site index
|
- name: enable evoadmin-web link in default site index
|
||||||
blockinfile:
|
blockinfile:
|
||||||
|
|
|
@ -43,14 +43,14 @@
|
||||||
- nextcloud
|
- nextcloud
|
||||||
when: ansible_python_version is version('3', '>=')
|
when: ansible_python_version is version('3', '>=')
|
||||||
|
|
||||||
- include: apache-system.yml
|
- import_tasks: apache-system.yml
|
||||||
|
|
||||||
- include: user.yml
|
- import_tasks: user.yml
|
||||||
|
|
||||||
- include: archive.yml
|
- import_tasks: archive.yml
|
||||||
|
|
||||||
- include: apache-vhost.yml
|
- import_tasks: apache-vhost.yml
|
||||||
|
|
||||||
- include: mysql-user.yml
|
- import_tasks: mysql-user.yml
|
||||||
|
|
||||||
- include: config.yml
|
- import_tasks: config.yml
|
||||||
|
|
Loading…
Reference in a new issue