evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 32 Wiki Activity
1668 commits 76 branches 56 tags 128 MiB
Commit graph

98 commits

Author SHA1 Message Date
Jérémy Lecour aa28e9c1b8 change repositories URL 2019-03-21 15:31:58 +01:00
Jérémy Lecour 41c1ed5a70 apache: add Munin configuration for Apache server-status URL 2019-01-01 21:08:51 +01:00
Jérémy Lecour 06a0f0d9b7 apache/nginx/fail2ban: mention ip_whitelist.yml in README.md 2018-11-02 18:18:22 +01:00
Jérémy Lecour 24ddc78a23 apache/nginx: IP adresses can also be removed 2018-11-02 18:15:17 +01:00
Patrick Marchand b776fc3da2 Make ip whitelist tasks more flexible 
Now the list of whitelisted ip addresses can be updated simply by
including the specific tasks in an external playbook without polluting
our role list.

This change takes effect for nginx, apache and fail2ban.
 2018-11-02 18:08:23 +01:00
Jérémy Lecour bfb591dc74 apache: cleaner way to overwrite the server status suffix 2018-09-09 23:01:43 +02:00
Jérémy Lecour bb956fb5e7 apache: logrotate replacement is more subtle/precise 
It replaces only the proper directive and not every occurence of the 
word.
 2018-08-23 13:02:25 +02:00
Jérémy Lecour ec535b036c apt module: Use "state: present" instead of "state: installed" 
"state: installed" is deprecated in Ansible 2.5
 2018-05-18 09:33:25 +02:00
Jérémy Lecour 5c5361dbb5 apache: customize logrotate (52 weeks) 2018-04-22 18:10:47 +02:00
Ludovic Poujol 94118b2536 Apache: Don't turn on modsec if it's available on default vhost 2018-03-12 11:00:57 +01:00
Jérémy Lecour 25a47173b8 create server status parent directory if missing 2018-01-18 17:17:34 +01:00
Jérémy Lecour 86c2bcb398 apache: /usr/share/scripts exists 2018-01-18 17:08:29 +01:00
Jérémy Lecour b634840b42 apache/nginx: server status suffix 2018-01-03 10:05:20 +01:00
Jérémy Lecour 28954e634c whitespaces 2018-01-03 10:05:20 +01:00
Jérémy Lecour aeba94bcba default/additional variables 
List of hosts/ip are a combination of 2 lists allowing overrides
 2017-12-20 18:04:54 +01:00
Jérémy Lecour 8ef9554746 Combine evolix and additional trusted IP addresses 2017-11-15 23:57:58 +01:00
Victor LABORIE 1c48df025c Move /usr rw remount into remount-usr role 2017-11-07 13:34:05 +01:00
Victor LABORIE ce89d5c5a5 apache: fix usr rw remount 2017-10-31 15:28:42 +01:00
Victor LABORIE 2d1504ddf6 apache: add somes modules by defaults 2017-10-27 15:01:06 +02:00
Jérémy Lecour 9527aff68a apache/nginx: remove compatibility mode 2017-10-11 18:13:15 +02:00
Ludovic Poujol 745c45f88d Fix remount_usr_rw/yml 2017-10-11 17:58:18 +02:00
Jérémy Lecour e7e9f9e125 Apache/Nginx: use ipaddr_whitelist 2017-10-07 13:48:04 +02:00
Jérémy Lecour 0e9fab48f5 apache: fix ipaddr_whitelist path 2017-10-07 13:12:03 +02:00
Jérémy Lecour be84ab434e apache: install save_apache_status.sh 2017-10-07 13:12:01 +02:00
Jérémy Lecour 2395777194 apache: no need for server status suffix anymore 
The location is restricted, so we don't need to obfuscate
 2017-10-07 13:11:25 +02:00
Jérémy Lecour ddeb39b886 apache: phpmyadmin is not managed here anymore 2017-10-07 13:03:43 +02:00
Jérémy Lecour dc3b735445 apache: cleanup munin tasks 2017-10-07 11:54:31 +02:00
Jérémy Lecour 1776b4bc24 Apache: improve munin integration 
* ansible syntax
* remove duplicate tasks
* improve tasks names
 2017-10-07 11:17:02 +02:00
Benoît S. 50cba28f7b Merge branch 'apache-munin' into unstable 2017-10-06 15:42:45 +02:00
Gregory Colpart 87ef758891 we need force=no for files who will be lineinfile/blockinfile 2017-09-07 02:32:08 +02:00
Gregory Colpart 26b76aed17 review default vhost 2017-09-07 02:31:48 +02:00
Gregory Colpart be4e811c47 phpMyAdmin configuration 2017-09-07 02:26:35 +02:00
Gregory Colpart 94625a73c2 Prepare phpMyAdmin config if needed 2017-09-06 19:34:04 +02:00
Gregory Colpart 6241bdc8ce Easy activation of Access-Control-Allow-Origin for eot|ttf|otf|woff files 2017-09-06 14:58:43 +02:00
Jérémy Lecour 2f2192e5cf apache is compatible with Stretch 2017-09-04 17:15:02 +02:00
Romain Dessort 58bc7940ac Add LimitUIDRange. Fix sudo calls from evoadmin 2017-08-24 12:56:12 -04:00
Gregory Colpart 9c406cc9bd Fix "Unable to reload service munin-node: Failed to reload munin-node.service: Job type reload is not applicable for unit munin-node.service.\n" 2017-08-22 06:30:04 +02:00
Gregory Colpart 2fd165a465 fix error in handler call 2017-08-18 04:18:52 +02:00
Gregory Colpart 2bb7367edf standardization for Debian versions : we use "jessie" or "9 or later" to prepare buster smoothly as possible 2017-08-18 03:50:30 +02:00
Gregory Colpart e5e44d5bc1 standard Evolix name is /etc/apache2/ipaddr_whitelist.conf cf https://wiki.evolix.org/HowtoApache 2017-08-18 02:31:41 +02:00
Jérémy Lecour 17bdfc8fef apache: cleanup log2mail tasks 2017-08-12 12:51:28 -04:00
Jérémy Lecour a4b917152d apache: cleanup munin tasks 2017-08-12 12:51:15 -04:00
Jérémy Lecour 69ed3ecf05 apache: fix log2mail config permissions 2017-08-12 12:35:37 -04:00
Gregory Colpart ce0644e976 copy general_alert_email/log2mail_alert_email to Apache role 2017-08-04 09:57:09 -04:00
Jérémy Lecour 03aae520e8 apache: server-status only for default vhost 2017-07-28 15:28:19 -04:00
Jérémy Lecour e90d8ceec3 apache: "Require local" instead of "Require ip 127.0.0.1" 2017-07-28 15:28:03 -04:00
Jérémy Lecour 84fdd356fa apache: formatting 2017-07-28 15:27:34 -04:00
Jérémy Lecour aaded13176 apache: add missing reload notifications 2017-07-28 15:24:26 -04:00
Gregory Colpart f49e720efd Add log2mail stuff for Apache 2017-07-23 00:54:52 +02:00
Gregory Colpart 5c4125263e Quick review of pack-web-apache role 2017-07-23 00:44:06 +02:00