evolix
/
ansible-roles
18
2
Fork 2
Code Issues 61 Pull Requests 18 Releases 32 Wiki Activity
1,103 Commits 76 Branches 56 Tags 128 MiB
Commit Graph

1103 Commits

Author SHA1 Message Date
Jérémy Lecour 7b88393ccf Refactoring of admin-users + evolinux-base roles 
* rename admin-users to evolinux-users
* splitting the "sudo" part for users between jessie and stretch
* with stretch, the sudo group is customizable and properly configured
* import evolinux-users role from evolinux-base at proper time
  to ensure ssh connections are possible for other users before
  cutting root's access
* evomaintenance is also included in evolinux-base to have it available
  when users are created
 2017-10-06 01:06:59 +02:00
Jérémy Lecour 116f086b86 drbd: cleanup readme 2017-10-06 01:06:59 +02:00
Jérémy Lecour b180ca432b apt: remove a debug task 2017-10-06 01:06:59 +02:00
Jérémy Lecour 24948cf4fa proftpd: blank vpasswd if missing 2017-10-05 18:46:40 +02:00
Ludovic Poujol 713ca3fbf4 Merge branch 'redis-lpoujol' into unstable 2017-10-05 11:51:02 +02:00
Jérémy Lecour be32fd9a23 Remove useless comments 2017-10-05 00:29:14 +02:00
Jérémy Lecour 622698fb99 Don't disable root access by default 
It will be caught by evocheck if we forget to disable it
but will prevent locking ourselves out if we don't create users
 2017-10-05 00:29:14 +02:00
Jérémy Lecour ee80235e14 evolinux-base: etc-git is included after apt customization 
APT sources must be customized before installing any package
 2017-10-04 23:32:27 +02:00
Jérémy Lecour f050608596 evolinux-base/meta: compatible with stretch 2017-10-04 23:31:29 +02:00
Jérémy Lecour d35068cf11 postgresql: forgotten files, sorry 2017-10-04 17:20:33 +02:00
Jérémy Lecour 3f350e7955 nagios: don't overwrite the config file 2017-10-04 17:19:49 +02:00
Jérémy Lecour 72c1bb4834 postgresql: version 9.6 by default 
For Jessie we use external repositories
For Stretch we install from Debian repositories
 2017-10-04 14:54:46 +02:00
Jérémy Lecour 5ffc94281f evolinux-base: parse fstab with better regex 
The fstab file usually has fields separated by spaces
but sometimes they are separated by tabs.
 2017-10-04 14:31:01 +02:00
Gregory Colpart 46c1cbd1a4 update title 2017-10-03 23:45:17 +02:00
Ludovic Poujol 27e4512e50 Redis: Ensure that we do not modify munin-node config if there is multiple redis config blocs 2017-10-03 10:21:13 +02:00
Gregory Colpart 3e92696556 Improve evoacme, mainly evoacme.sh script 2017-10-03 00:02:19 +02:00
Ludovic Poujol 36419c5b3c Redis: Set pasword variable as NULL instead of '' 2017-10-02 17:13:10 +02:00
Gregory Colpart 31a8aa0a32 update tasks description. 2017-10-02 15:33:10 +02:00
Benoît S. 7d5ecc3685 Merge branch 'bash-completion' into 'unstable' 
Bash completion

See merge request !9
 2017-10-02 11:30:05 +02:00
Benoît S. b6775bda65 Merge branch 'evoadmin-web-bad-mail-template' into 'unstable' 
Sed keyword missing

Closes #2

See merge request !11
 2017-10-02 11:27:49 +02:00
Benoît S. 2cba10ea27 Merge branch 'php-71' into 'unstable' 
Add support for PHP 7.1 using sury repository.

See merge request !10
 2017-10-02 11:24:57 +02:00
Victor LABORIE 3acd997eca varnish: fix systemd unit override 2017-10-02 11:10:08 +02:00
Romain Dessort a82de720a9 Clean override of docker systemd unit 
This hack is still unfortunately needed in stretch…
 2017-09-29 09:31:52 -04:00
Romain Dessort 203def3b64 Don't upgrade docker packages if already installed 2017-09-29 09:31:45 -04:00
Romain Dessort 3409f87125 New variable for docker home 
It is set to /srv/docker by default since shellpki requires exec option
on the partition, making the playbook failed otherwise.
 2017-09-29 09:27:35 -04:00
Jérémy Lecour 9f9894344d etc-git: scope=local is not always supported 
git version 1.7.2.5 (Debian 7) doesn't have "--local" scope
 2017-09-29 12:01:06 +02:00
Gregory Colpart 458a199f1e For GANDI installs, remove useless (and nasty) sources.list.d/*.list files 2017-09-29 01:43:54 +02:00
Gregory Colpart b4130797cb ensure iptables is installed 2017-09-29 01:43:31 +02:00
Gregory Colpart b5b46e707c Quick fix to avoid failure when you are in root without su/sudo 2017-09-29 01:42:38 +02:00
Ludovic Poujol 43d2de5da7 Redis: Fix error in the conditional inclusion of nrpe_stretch.yml 2017-09-28 18:03:26 +02:00
Ludovic Poujol c12559193a Redis: Add the possibility to set an instance password 2017-09-28 15:02:29 +02:00
Gregory Colpart b64073dd39 quick fix to avoid exit 1 2017-09-28 11:10:25 +02:00
Ludovic Poujol eab2c3946a Redis: On stretch, make sure nrpe will use check_redis instead of check_tcp 
check_redis was added in nagios-plugins-contrib in strech.
 2017-09-27 18:41:21 +02:00
Ludovic Poujol 7fa2dcbb28 Redis: Also install redis-tools 2017-09-27 17:57:02 +02:00
Gregory Colpart 30c47fcd50 A lot of improvments: add comments, add tests/tests/tests, add --cron option, drop HAProxy support, modify Apache/Nginx conf only first time 2017-09-21 03:50:24 +02:00
Gregory Colpart 7ea5982611 empty commit, only :retab 2017-09-21 03:48:24 +02:00
Gregory Colpart 81698d03de by default copy use files/ directory 2017-09-21 03:48:17 +02:00
Gregory Colpart 26d823174f use {{ evoacme_crt_dir }} var everywhere 2017-09-21 03:48:11 +02:00
Gregory Colpart a006a604f2 Rename /etc/cron.d/certbot to .disabled as written in https://wiki.evolix.org/HowtoLetsEncrypt 2017-09-21 03:48:05 +02:00
Gregory Colpart cdf0861821 More clear without include for determining apache/nginx presence 2017-09-21 03:47:57 +02:00
Benoît S. c1b719f16a Merge branch 'unstable' into 'bash-completion' 
# Conflicts:
#   evolinux-base/tasks/packages.yml
 2017-09-20 15:56:45 +02:00
Benoît S. 4045195495 Sed keyword missing 
Fix #2
Sed keyword SERVERNAME was replaced with ansible variables which is incorrect.
 2017-09-20 15:36:48 +02:00
Benoît S. 7419937196 Force pining to php* 
Why? Because we have some meta-packages like php which redirect to php7.0 or
php7.1. With this, all php packages will be 7.1 (default from sury).
 2017-09-20 15:06:15 +02:00
Benoît S. e2ed9e4be8 Add preferences file to pin php7.1 packages 2017-09-20 14:33:22 +02:00
Benoît S. cbe40162d9 Remove useless apt update handler 2017-09-20 14:19:30 +02:00
Benoît S. 21f85e4e84 Use apt_repository and rename source list to sury.list 2017-09-20 14:17:02 +02:00
Jérémy Lecour 95c34c5d88 MySQL: "REPLICATION CLIENT" privilege for nrpe 2017-09-20 11:33:27 +02:00
Benoît S. fa55761714 Add support for PHP 7.1 using sury repository. 
See the documentation: https://wiki.evolix.org/HowtoPHP#php-7.1-avec-deb.sury.org
 2017-09-20 11:29:54 +02:00
Jérémy Lecour 248f550a7f Squid: restart minifirewall if needed 2017-09-20 10:30:24 +02:00
Victor LABORIE c430fa3485 php: install php5/php package after fpm/libapache2-mod-php 
Because apt dependency always install libapache2-mod-php
if neither is present
 2017-09-19 10:29:57 +02:00