evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 32 Wiki Activity
3582 commits 76 branches 56 tags 128 MiB
Commit graph

135 commits

Author SHA1 Message Date
Jérémy Lecour 28954e634c whitespaces 2018-01-03 10:05:20 +01:00
Jérémy Lecour aeba94bcba default/additional variables 
List of hosts/ip are a combination of 2 lists allowing overrides
 2017-12-20 18:04:54 +01:00
Jérémy Lecour 8ef9554746 Combine evolix and additional trusted IP addresses 2017-11-15 23:57:58 +01:00
Victor LABORIE 1c48df025c Move /usr rw remount into remount-usr role 2017-11-07 13:34:05 +01:00
Victor LABORIE ce89d5c5a5 apache: fix usr rw remount 2017-10-31 15:28:42 +01:00
Victor LABORIE 2d1504ddf6 apache: add somes modules by defaults 2017-10-27 15:01:06 +02:00
Jérémy Lecour 9527aff68a apache/nginx: remove compatibility mode 2017-10-11 18:13:15 +02:00
Ludovic Poujol 745c45f88d Fix remount_usr_rw/yml 2017-10-11 17:58:18 +02:00
Jérémy Lecour e7e9f9e125 Apache/Nginx: use ipaddr_whitelist 2017-10-07 13:48:04 +02:00
Jérémy Lecour 0e9fab48f5 apache: fix ipaddr_whitelist path 2017-10-07 13:12:03 +02:00
Jérémy Lecour be84ab434e apache: install save_apache_status.sh 2017-10-07 13:12:01 +02:00
Jérémy Lecour 2395777194 apache: no need for server status suffix anymore 
The location is restricted, so we don't need to obfuscate
 2017-10-07 13:11:25 +02:00
Jérémy Lecour ddeb39b886 apache: phpmyadmin is not managed here anymore 2017-10-07 13:03:43 +02:00
Jérémy Lecour dc3b735445 apache: cleanup munin tasks 2017-10-07 11:54:31 +02:00
Jérémy Lecour 1776b4bc24 Apache: improve munin integration 
* ansible syntax
* remove duplicate tasks
* improve tasks names
 2017-10-07 11:17:02 +02:00
Benoît S. 50cba28f7b Merge branch 'apache-munin' into unstable 2017-10-06 15:42:45 +02:00
Gregory Colpart 87ef758891 we need force=no for files who will be lineinfile/blockinfile 2017-09-07 02:32:08 +02:00
Gregory Colpart 26b76aed17 review default vhost 2017-09-07 02:31:48 +02:00
Gregory Colpart be4e811c47 phpMyAdmin configuration 2017-09-07 02:26:35 +02:00
Gregory Colpart 94625a73c2 Prepare phpMyAdmin config if needed 2017-09-06 19:34:04 +02:00
Gregory Colpart 6241bdc8ce Easy activation of Access-Control-Allow-Origin for eot|ttf|otf|woff files 2017-09-06 14:58:43 +02:00
Jérémy Lecour 2f2192e5cf apache is compatible with Stretch 2017-09-04 17:15:02 +02:00
Romain Dessort 58bc7940ac Add LimitUIDRange. Fix sudo calls from evoadmin 2017-08-24 12:56:12 -04:00
Gregory Colpart 9c406cc9bd Fix "Unable to reload service munin-node: Failed to reload munin-node.service: Job type reload is not applicable for unit munin-node.service.\n" 2017-08-22 06:30:04 +02:00
Gregory Colpart 2fd165a465 fix error in handler call 2017-08-18 04:18:52 +02:00
Gregory Colpart 2bb7367edf standardization for Debian versions : we use "jessie" or "9 or later" to prepare buster smoothly as possible 2017-08-18 03:50:30 +02:00
Gregory Colpart e5e44d5bc1 standard Evolix name is /etc/apache2/ipaddr_whitelist.conf cf https://wiki.evolix.org/HowtoApache 2017-08-18 02:31:41 +02:00
Jérémy Lecour 17bdfc8fef apache: cleanup log2mail tasks 2017-08-12 12:51:28 -04:00
Jérémy Lecour a4b917152d apache: cleanup munin tasks 2017-08-12 12:51:15 -04:00
Jérémy Lecour 69ed3ecf05 apache: fix log2mail config permissions 2017-08-12 12:35:37 -04:00
Gregory Colpart ce0644e976 copy general_alert_email/log2mail_alert_email to Apache role 2017-08-04 09:57:09 -04:00
Jérémy Lecour 03aae520e8 apache: server-status only for default vhost 2017-07-28 15:28:19 -04:00
Jérémy Lecour e90d8ceec3 apache: "Require local" instead of "Require ip 127.0.0.1" 2017-07-28 15:28:03 -04:00
Jérémy Lecour 84fdd356fa apache: formatting 2017-07-28 15:27:34 -04:00
Jérémy Lecour aaded13176 apache: add missing reload notifications 2017-07-28 15:24:26 -04:00
Gregory Colpart f49e720efd Add log2mail stuff for Apache 2017-07-23 00:54:52 +02:00
Gregory Colpart 5c4125263e Quick review of pack-web-apache role 2017-07-23 00:44:06 +02:00
Gregory Colpart a0ccc2e9d5 Review of role Apache, sync with https://wiki.evolix.org/HowtoApache 2017-07-22 22:40:31 +02:00
Benoît S. f5c8d56b6a Wrong register name fixed 2017-07-20 09:40:45 +02:00
Benoît S. 5ed119eb38 Missing path and tags for a task 2017-07-20 09:38:39 +02:00
Benoît S. 1f87d38320 Be sure to enable libapache2-mod-fcgid 2017-07-20 09:38:05 +02:00
Benoît S. c2f6708645 Better minimalist config in the vhost 
Also install mandatory package libcgi-fast-perl.
 2017-07-20 09:33:22 +02:00
Jérémy Lecour 3e1a600fd5 apache: enable Munin plugins and CGI mode 2017-07-19 18:25:28 +02:00
Jérémy Lecour 383d432bb8 Merge branch '1092-page-for-error-403' into unstable 2017-07-19 14:04:53 +02:00
Jérémy Lecour 515460ee0a Merge branch 'apache-fix-default-vhost' into unstable 2017-07-19 14:02:52 +02:00
Jérémy Lecour da4b7ca41a apache: disable GoAway criteria 2017-07-19 11:55:58 +02:00
Jérémy Lecour cb128a897b Apache: new syntax for auth 2017-07-19 11:31:21 +02:00
Gregory Colpart 86e1e057a8 We don't want anymore a 301 redirect for 403 errors, it's too confusing 2017-07-19 10:21:37 +02:00
Gregory Colpart 6e329d2820 Deny by default (default conf allow from all) 2017-07-19 10:20:54 +02:00
Jérémy Lecour 3a8093fb12 Apache: use "Require" 
http://httpd.apache.org/docs/2.4/howto/auth.html
 2017-07-18 20:13:58 +02:00
Benoît S. 92f699b84c A better default vhost for Apache. 
This is my proposal to a better vhost.
I added comments to understand the tricky behavior of Directory directive when
using Alias or ScriptAlias.
 2017-07-18 17:05:47 +02:00
Benoît S. 54d9dbf7aa Implement #1092. We use custom error pages for Apache 
Note: The pack web will maybe modify these pages to have Evolix logo or theme,
or other things to customize.
 2017-07-18 15:40:04 +02:00
Jérémy Lecour 7d4e388141 apache: use snakeoil cert by default 2017-07-17 10:54:22 +02:00
Jérémy Lecour b4ca2dd686 apache/evoadmin : split jessie/stretch 2017-07-13 14:09:34 +02:00
Gregory Colpart 5a28681700 easy deny User-Agent 2017-07-09 19:59:12 +02:00
Jérémy Lecour 3d77f086ed Disable random URL for server-status (probably temporary) 2017-07-06 17:14:28 +02:00
Jérémy Lecour 242c005f6d Fix default web page 
* split 80/443
* use modern authorization syntax
* reorganize the VHost file
 2017-07-06 17:14:28 +02:00
Jérémy Lecour 34f6354a9e random suffices for phpmyadmin abnd server-status with apg 2017-07-06 17:14:28 +02:00
Jérémy Lecour 0e0bc1cbbd Split default vhost into nginx ad apache roles 2017-07-06 17:14:28 +02:00
Jérémy Lecour 2084e2e53e evoadmin/packweb: end of first pass 2017-07-03 18:22:24 +02:00
Benoît S. 58dd5c3817 WIP: More things done for packweb... 
PHP, Awstats, ...
 2017-07-03 17:56:59 +02:00
Benoît S. 6a225e469b [WIP]: First pass for packweb-apache 2017-07-03 17:55:00 +02:00
Gabriel Periard-Tremblay 87ebadcadd Kitchen: Change base image to evolix/ansible 2017-06-02 08:38:08 -04:00
Jérémy Lecour 9fae99f8dc Minor syntax and whitespaces fixes 2017-05-19 22:29:53 +02:00
Jérémy Lecour 81e46962d2 apache: change idempotency test 2017-04-19 17:58:46 +02:00
Jérémy Lecour 33314828b1 Change Ansible version used by ansible-kitchen 2017-04-19 17:48:02 +02:00
Jérémy Lecour 5b2ab0d8d3 Ansible >= 2.2 supported 2017-03-24 14:15:09 +01:00
Jérémy Lecour ef7deb2ffe Apache: add a reload handler 2017-03-14 17:49:05 +01:00
Gabriel Périard-Tremblay 9baf84736c Add max_ssh_sessions to .kitchen as a workaround 2017-03-13 14:42:02 -04:00
Jérémy Lecour 83c8faab2d Apache: permissions mode with leading 0 
… even in string form
 2017-03-03 12:23:13 +01:00
Jérémy Lecour 32fc9a822d whitespaces 2017-03-03 12:23:13 +01:00
Jérémy Lecour 00f96b2b8b Apache: no need for a template, just copy 2017-03-03 12:23:13 +01:00
Gabriel Périard-Tremblay bcb740d3d1 Update test kitchen configuration and directory layout 2017-02-27 15:49:10 -05:00
Gabriel Périard-Tremblay fd77649cb9 Add basic kitchen test files to nginx, apache and nodejs roles 2017-02-27 11:18:37 -05:00
Jérémy Lecour 8920ff1ee4 Add "always_run: yes" where it's pertinent 
There is also the "check_mode: no", but commented,
for when we switch to Ansible 2.2
 2017-01-31 11:45:35 +01:00
Jérémy Lecour 61f5219f48 Improve documentation 
Each role has a README and a meta/main.yml file
 2017-01-05 18:22:06 +01:00
Jérémy Lecour 5a4f838375 Unix mode MUST be a quoted string when using octal notation 2017-01-05 12:03:54 +01:00
Gregory Colpart 5fb95a8685 add handlers for apache role 2016-12-26 20:43:42 +01:00
Sebastien Dubois 0ebd9cc147 guillemets manquants 2016-12-23 10:35:20 +01:00
Jérémy Lecour c0ab8f99ce Squash: conventions, evolinux, etc-git… 2016-12-21 16:12:30 +01:00
Gregory Colpart e0ca7c1f0e convention for custom config is z_evolinux / zzz_evolinux 2016-12-21 16:12:28 +01:00
Gregory Colpart 6c3a658271 MaxClients -> MaxRequestWorkers 2016-12-21 16:12:27 +01:00
Gabriel Périard-Tremblay dda436a53d update apache role 2016-12-21 16:12:25 +01:00
Gregory Colpart 241f3f13fd Improvments on Apache role 2016-12-21 16:12:24 +01:00
Gregory Colpart 4328f2cdec Add Apache role 2016-12-21 16:12:24 +01:00