evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 32 Wiki Activity
1116 commits 76 branches 56 tags 128 MiB
Commit graph

1116 commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Gregory Colpart 26d823174f use {{ evoacme_crt_dir }} var everywhere 2017-09-21 03:48:11 +02:00
Gregory Colpart a006a604f2 Rename /etc/cron.d/certbot to .disabled as written in https://wiki.evolix.org/HowtoLetsEncrypt 2017-09-21 03:48:05 +02:00
Gregory Colpart cdf0861821 More clear without include for determining apache/nginx presence 2017-09-21 03:47:57 +02:00
Benoît S. c1b719f16a Merge branch 'unstable' into 'bash-completion' 
# Conflicts:
#   evolinux-base/tasks/packages.yml
 2017-09-20 15:56:45 +02:00
Benoît S. 4045195495 Sed keyword missing 
Fix #2
Sed keyword SERVERNAME was replaced with ansible variables which is incorrect.
 2017-09-20 15:36:48 +02:00
Benoît S. 7419937196 Force pining to php* 
Why? Because we have some meta-packages like php which redirect to php7.0 or
php7.1. With this, all php packages will be 7.1 (default from sury).
 2017-09-20 15:06:15 +02:00
Benoît S. e2ed9e4be8 Add preferences file to pin php7.1 packages 2017-09-20 14:33:22 +02:00
Benoît S. cbe40162d9 Remove useless apt update handler 2017-09-20 14:19:30 +02:00
Benoît S. 21f85e4e84 Use apt_repository and rename source list to sury.list 2017-09-20 14:17:02 +02:00
Jérémy Lecour 95c34c5d88 MySQL: "REPLICATION CLIENT" privilege for nrpe 2017-09-20 11:33:27 +02:00
Benoît S. fa55761714 Add support for PHP 7.1 using sury repository. 
See the documentation: https://wiki.evolix.org/HowtoPHP#php-7.1-avec-deb.sury.org
 2017-09-20 11:29:54 +02:00
Jérémy Lecour 248f550a7f Squid: restart minifirewall if needed 2017-09-20 10:30:24 +02:00
Victor LABORIE c430fa3485 php: install php5/php package after fpm/libapache2-mod-php 
Because apt dependency always install libapache2-mod-php
if neither is present
 2017-09-19 10:29:57 +02:00
Jérémy Lecour a9278c0d70 haproxy: add a Nagios check 2017-09-19 09:37:38 +02:00
Gregory Colpart 7f9399964b we need www-evoadmin user in Debian 9 2017-09-18 22:36:14 +02:00
Gregory Colpart a5e76c5248 Fix error in handlers filename. 2017-09-18 21:46:27 +02:00
Victor LABORIE d96e2ea5bf evoacme: renew certs 30 days before expiration by default 2017-09-18 15:02:20 +02:00
Jérémy Lecour 3207d837cb etc-git: better commit author composition 2017-09-15 16:03:49 +02:00
Jérémy Lecour accce99e05 mysql: fix slow_log config 2017-09-15 11:30:33 +02:00
Jérémy Lecour b41c4f1567 mysql: custom config file must be world readable 2017-09-15 11:30:08 +02:00
Gregory Colpart 0e89d5ea56 Add files for MariaDB 2017-09-14 22:04:33 +02:00
Gregory Colpart 8e4d7e484a wording 2017-09-14 19:34:04 +02:00
Gregory Colpart ba7c7e0927 add systemd override for MariaDB 2017-09-14 19:32:24 +02:00
Gregory Colpart 139a27383d Use /etc/systemd/system/*.service.d/evolinux.conf and fix systemd unit 2017-09-14 19:30:59 +02:00
Gregory Colpart 3882a366e4 Revert "squid: consistent version switch" because we use == jessie everywhere 
This reverts commit c44896d433.
 2017-09-14 19:13:59 +02:00
Gregory Colpart 76dda62001 remove interface ignore wildcard because it breaks ntp sync with external servers 2017-09-14 19:09:22 +02:00
Benoît.S dbbd0e1783 Patch MySQL 5.5.53, set secure-file-priv to empty value. 
Why? Because we want to do SELECT INTO OUTFILE.
 2017-09-14 15:19:26 +02:00
Jérémy Lecour 685282bf93 minifirewall: fallback when no trusted ip is provided 2017-09-14 14:26:44 +02:00
Jérémy Lecour 3a9b95cedc evolinux-base: fallback with warning for ssh without addresses 2017-09-14 14:26:00 +02:00
Jérémy Lecour 82fda57cdb squid: don't overwrite whitelist for Debian 8 2017-09-14 09:29:52 +02:00
Jérémy Lecour b4cf781dd1 squid: append whitelist for Debian 8 too 2017-09-14 09:29:52 +02:00
Jérémy Lecour c44896d433 squid: consistent version switch 2017-09-14 09:29:51 +02:00
Jérémy Lecour ca2048f9e3 squid: fix variable name 2017-09-14 09:29:51 +02:00
Victor LABORIE 8a139b07b2 evoacme: fix SRV_IP overriding in make-csr 2017-09-13 11:38:38 +02:00
Gregory Colpart a1188c7823 add default_charset example in php custom files 2017-09-12 20:14:56 +02:00
Victor LABORIE f5fdd71681 evoacme: fix invalid domain printing in make-csr 2017-09-12 15:49:35 +02:00
Jérémy Lecour 81aabdbe5e nginx: apt preferences for libnginx packages 2017-09-12 15:16:03 +02:00
Victor LABORIE 0438ece246 php: comments starting with '#' are deprecated 2017-09-12 10:41:47 +02:00
Victor LABORIE 069e675c6b evoacme: add basic check to evoacme.sh 2017-09-11 17:05:46 +02:00
Victor LABORIE ab177c2dad evoacme: add pem extension to dhparam file 2017-09-11 17:05:46 +02:00
Victor LABORIE 6c399ca60e evoacme: fix live link path 2017-09-11 17:05:46 +02:00
Victor LABORIE 1fbcb61559 evoacme: fix typo 2017-09-11 17:05:45 +02:00
Victor LABORIE ff392d8e26 evoacme: fix symlink generation 2017-09-11 17:05:45 +02:00
Victor LABORIE 0726d29796 evoacme: purge same day cert before recreating it 2017-09-11 17:05:45 +02:00
Victor LABORIE 740b60d838 evoacme: make-csr stdout is more verbose 2017-09-11 17:05:45 +02:00
Victor LABORIE e16eafc1a0 evoacme: complete refactoring of make-csr.sh 2017-09-11 17:05:45 +02:00
Victor LABORIE 05afeea894 evoacme: remove obsolete sudoers file 2017-09-11 17:05:44 +02:00
Victor LABORIE 8d7cbab3a9 evoacme: refactoring of certbot.cron 2017-09-11 17:05:44 +02:00
Victor LABORIE 9deb594834 evoacme: move scripts in /usr/local/sbin 2017-09-11 17:05:44 +02:00
Victor LABORIE e210de5f53 evoacme: complete refactoring of evoacme.sh 2017-09-11 17:05:44 +02:00