ansible-roles

Author	SHA1	Message	Date
Jérémy Lecour	f47af9f54f	haproxy: preconfigure SSL with defaults All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-14 12:37:04 +02:00
Jérémy Lecour	7f54b8ab60	haproxy: adapt backports installed package list to distibution	2020-06-14 12:37:04 +02:00
Jérémy Lecour	e5d4ea3c18	nginx: make default vhost configurable	2020-06-14 12:37:04 +02:00
Jérémy Lecour	ce0d61bcbd	certbot: detect HAProxy cert directory	2020-06-14 12:37:04 +02:00
Jérémy Lecour	a8887aaa8e	update changelog All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-09 11:45:19 +02:00
Jérémy Lecour	4c71ea2012	haproxy: enable stats frontend with access lists All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-09 11:41:33 +02:00
Patrick Marchand	c9daa8ba35	evobackup-client: Fix ssh connection test in zzz_evobackup.sh All checks were successful continuous-integration/drone/push Build is passing Details When I made the ssh key name a variable and defaulted it to id_ed25519, I forgot to change the hardcoded value for the ssh test in evobackup-client/templates/zzz_evobackup.default.sh.j2	2020-06-08 17:22:18 -04:00
Jérémy Lecour	1ade990526	mongodb: fix logrotate patterm on Debian buster All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-05 11:02:54 +02:00
Jérémy Lecour	7f0931510f	evoacme: upstream release 20.06.1 All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-05 11:01:42 +02:00
Ludovic Poujol	ebffccae59	lxc-php: Do --no-install-recommends for ssmtp/opensmtpd All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-05 11:01:22 +02:00
Ludovic Poujol	186f3d90b9	lxc-php: Install opensmtpd as intended	2020-06-05 10:57:49 +02:00
Ludovic Poujol	0dfb92360f	php: Don't disable putenv() by default in PHP settings All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-04 11:52:04 +02:00
Ludovic Poujol	90704dc712	lxc-php: Don't disable putenv() by default in PHP settings	2020-06-04 11:51:25 +02:00
Ludovic Poujol	ead0b7fd88	lxc-php: Install php-sqlite by default All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-04 11:42:17 +02:00
Ludovic Poujol	8c883c44dd	php: Install php-sqlite by default	2020-06-04 11:39:51 +02:00
Ludovic Poujol	c7d456471b	packweb-apache: Install zip & unzip by default	2020-06-04 11:34:26 +02:00
Jérémy Lecour	3bd0a4ffb3	certbot: restore compatibility with old Nginx	2020-06-04 11:22:58 +02:00
Jérémy Lecour	9aed38b637	certbot: install certbot dependencies non-interactively for jessie	2020-06-04 11:22:58 +02:00
Jérémy Lecour	1d5a30b144	evoacme: upstream release 20.06 All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-03 12:09:58 +02:00
Patrick Marchand	c8cd119a18	Merge pull request 'Make it possible to setup mysql replication' (#102 ) from mysql_replication into unstable All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-02 17:31:13 +02:00
Jérémy Lecour	4cf438c8ff	redis: raise an error is port 6379 is used in "instance" mode All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-02 11:22:56 +02:00
Jérémy Lecour	8a87fecbe4	redis: new syntax for match filter All checks were successful continuous-integration/drone/push Build is passing Details	2020-06-02 11:00:06 +02:00
Jérémy Lecour	47d11308ba	redis: create sudoers file if missing	2020-06-02 10:59:51 +02:00
Jérémy Lecour	86cab2ab94	haproxy: chroot and socket path are configurable	2020-06-02 10:58:10 +02:00
Patrick Marchand	8c1e40c1a9	Add option to make a mysql install read only Some checks failed continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is failing Details Rebased on unstable	2020-06-01 12:03:23 -04:00
Ludovic Poujol	09371b095f	packweb-apache: Don't turn on mod-evasive emails by default All checks were successful continuous-integration/drone/push Build is passing Details	2020-05-18 12:03:34 +02:00
Jérémy Lecour	4016387ca8	Release 10.0.0 All checks were successful continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is passing Details	2020-05-13 11:20:45 +02:00
Jérémy Lecour	ac7ee86a9c	minifirewall: /bin/true command doesn't report "changed" anymore All checks were successful continuous-integration/drone/push Build is passing Details	2020-05-11 15:23:52 +02:00
Jérémy Lecour	849ec405d5	evocheck: upstream version 20.04.4 All checks were successful continuous-integration/drone/push Build is passing Details	2020-04-28 16:00:45 +02:00
Jérémy Lecour	57e5791728	networkd-to-ifconfig: add variables for configuration by variables All checks were successful continuous-integration/drone/push Build is passing Details	2020-04-26 18:39:25 +02:00
Jérémy Lecour	2f77100b47	evocheck: upstream version 20.04.3 All checks were successful continuous-integration/drone/push Build is passing Details	2020-04-26 10:54:49 +02:00
Jérémy Lecour	d013a65cf6	Merge branch 'unstable' into lpoujol/better-multiphp Some checks failed continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is failing Details	2020-04-17 12:23:56 +02:00
Jérémy Lecour	6764418e75	evocheck: upstream release 20.04.2 All checks were successful continuous-integration/drone/push Build is passing Details	2020-04-15 18:01:55 +02:00
Jérémy Lecour	257a3476f1	evocheck: upstream release 20.04.1 All checks were successful continuous-integration/drone/push Build is passing Details	2020-04-12 22:30:07 +02:00
Jérémy Lecour	f2613e91aa	evolinux-base: configure cciss-vol-statusd in the proper file All checks were successful continuous-integration/drone/push Build is passing Details The default file should be used for configuration instead of the init script.	2020-04-10 11:36:03 +02:00
Ludovic Poujol	93c043c8e0	(fix) lxc: Fix container existance check to be able to run in check_mode	2020-04-08 17:57:46 +02:00
Ludovic Poujol	bd63e7037f	packweb-apache: Do the install & conffigure phpContainer script (instead of evoadmin-web role) Some checks failed continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is failing Details	2020-04-08 17:54:43 +02:00
Ludovic Poujol	f135f67cd0	(change) php: Cleanup CLI Settings. Also, allow url fopen and don't disable functions (in CLI only) All checks were successful continuous-integration/drone/push Build is passing Details Closes #98	2020-04-01 18:22:46 +02:00
Ludovic Poujol	7fc260a17b	(fix) php: update surry_post.yml to match current latest PHP release Some checks failed continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is failing Details	2020-04-01 18:08:57 +02:00
Ludovic Poujol	f442239cec	(fix) packweb-apache: Don't try to install PHPMyAdmin on Buster as it's not available	2020-04-01 18:05:20 +02:00
Ludovic Poujol	135a089341	(change) lxc-php: Use OpenSMTPD for Stretch/Buster containers, and ssmtp for Jessie containers Some checks failed continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is failing Details	2020-04-01 17:23:39 +02:00
Ludovic Poujol	a21fcaf663	(fix) php: Chose the debian version repo archive for packages.sury.org	2020-04-01 17:23:39 +02:00
Ludovic Poujol	a680399608	packweb-apache: Add missing dependency to evoacme role	2020-04-01 17:23:39 +02:00
Ludovic Poujol	9b80db3772	lxc: Don't stop the container if it already exists	2020-04-01 17:17:00 +02:00
Jérémy Lecour	5b5b8944c5	java: add Java 11 as possible version to install All checks were successful continuous-integration/drone/push Build is passing Details	2020-03-21 19:07:26 +01:00
Patrick Marchand	d5731f90e0	Merge branch 'bind9_evocheck_fix' into unstable All checks were successful continuous-integration/drone/push Build is passing Details	2020-03-10 13:48:52 -04:00
Jérémy Lecour	ac98aa2d18	evolinux-base: install Evocheck (default: `True`) All checks were successful continuous-integration/drone/push Build is passing Details	2020-03-09 17:02:23 +01:00
Jérémy Lecour	92dcbf1ab5	rbenv: change default Ruby version to 2.7.0	2020-03-09 17:02:23 +01:00
Jérémy Lecour	ac6414076c	nodejs: change default version to 12 (new LTS)	2020-03-09 17:02:23 +01:00
Jérémy Lecour	ec54af596c	evolinux-base: Don't customize the logcheck recipient by default. Some checks failed continuous-integration/drone/push Build is failing Details By default the package sends its messages to the logcheck user. By default we alias the "logcheck" user to "root" which is redirected to our custom address.	2020-03-04 14:03:18 +01:00
Jérémy Lecour	783dcb9890	evomaintenance: upstream release 0.6.3 All checks were successful continuous-integration/drone/push Build is passing Details	2020-03-02 22:12:58 +01:00
Jérémy Lecour	68a1d4eb27	update changelog	2020-03-02 20:53:54 +01:00
Jérémy Lecour	af53a6b2ec	evomaintenance: upstream release 0.6.2 Some checks failed continuous-integration/drone/push Build is failing Details	2020-03-02 14:45:41 +01:00
Jérémy Lecour	eb74bda22a	nagios-nrpe: check_mode per cpu dynamically All checks were successful continuous-integration/drone/push Build is passing Details	2020-02-28 12:14:20 +01:00
Jérémy Lecour	1b29f2d793	update listupgrade from upstream All checks were successful continuous-integration/drone/push Build is passing Details	2020-02-27 13:41:04 +01:00
Jérémy Lecour	d31dddc9aa	evocheck: upstream verison 20.02.1 All checks were successful continuous-integration/drone/push Build is passing Details	2020-02-27 11:37:01 +01:00
Jérémy Lecour	65bc2c657d	certbot: commit hook must be executed at the end All checks were successful continuous-integration/drone/push Build is passing Details	2020-02-25 10:46:21 +01:00
Jérémy Lecour	7283e34077	Replace version_compare() with version()	2020-02-25 10:45:35 +01:00
Jérémy Lecour	ff7f8669ef	evomaintenance: install PG dependencies only when needed	2020-02-25 10:43:23 +01:00
Ludovic Poujol	704b76e6de	minifirewall: Properly detect alert5.sh to turn on firewall at boot All checks were successful continuous-integration/drone/push Build is passing Details	2020-02-17 16:02:48 +01:00
Ludovic Poujol	02e8754d75	minifirewall: Backport changes from minifirewall (properly open outgoing smtp(s)) Some checks failed continuous-integration/drone/push Build is failing Details	2020-02-17 10:56:38 +01:00
Jérémy Lecour	f57af13349	minifirewall: better alert5 activation All checks were successful continuous-integration/drone/push Build is passing Details	2020-02-10 10:36:00 +01:00
Jérémy Lecour	68b7a88e63	apt: added buster backports prerferences	2020-02-10 10:35:18 +01:00
Patrick Marchand	896b8bd7e4	Merge branch 'evobackup-client' into unstable All checks were successful continuous-integration/drone/push Build is passing Details Import evobackup client code into mainline.	2020-02-06 16:29:02 -05:00
Jérémy Lecour	72f5dc70f8	apt: hold packages only if package is installed All checks were successful continuous-integration/drone/push Build is passing Details	2020-02-04 18:14:57 +01:00
Jérémy Lecour	dc7358bc4c	nagios-nrpe: change default haproxy socket path Some checks failed continuous-integration/drone/push Build is failing Details	2020-01-23 15:04:25 +01:00
Jérémy Lecour	02858692bb	evomaintenance: don't configure firewall for database if not necessary Some checks failed continuous-integration/drone/push Build is failing Details	2020-01-23 14:34:03 +01:00
Jérémy Lecour	71a2a19847	apache: the default VHost doesn't redirect to https for ".well-known" paths	2020-01-23 14:34:03 +01:00
Ludovic Poujol	31df2d2fbc	php: Add a task to remove Debian's default FPM pool file (off by default) Some checks failed continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is failing Details Can be triggered by switching php_fpm_remove_default_pool to True.	2020-01-16 15:55:35 +01:00
Ludovic Poujol	ef5ed6911e	php: Change the default pool names to something more explicit (and same for the variables names) Because it's more than just pure configuration, but a fpm pool definition, I've changed the following variables in Ansible : - php_fpm_defaults_conf_file to replaced by php_fpm_default_pool_file - php_fpm_custom_conf_file to php_fpm_default_pool_custom_file. On the FPM side, I've also changed the files names of the pool to make them more explicit. No more z and zzz. It's the www pool, so let's put www in the file name for coherence : - z-evolinux-defaults.conf changes to www-evolinux-defaults.conf - zzz-evolinux-custom.conf changes to www-evolinux-zcustom.conf	2020-01-16 15:55:25 +01:00
Ludovic Poujol	c9d3635cf8	php: Make sure the default pool we define can be fully functionnal witout debian's default pool file	2020-01-16 15:55:17 +01:00
Jérémy Lecour	80081aa26e	evolinux-base: remove the chrony package Some checks failed continuous-integration/drone/push Build is failing Details	2020-01-16 10:57:47 +01:00
Jérémy Lecour	e7952dc3c8	etc-git: fix warnings ansible-lint All checks were successful continuous-integration/drone/push Build is passing Details	2020-01-08 17:19:36 +01:00
Jérémy Lecour	bf7de332ea	minifirewall: fix warnings ansible-lint	2020-01-08 17:19:13 +01:00
Jérémy Lecour	f79b30eeb4	update changelog All checks were successful continuous-integration/drone/push Build is passing Details	2020-01-03 16:40:53 +01:00
Jérémy Lecour	3b258cc43e	tomcat: package version derived from Debian version if missing	2019-12-31 16:43:51 +01:00
Patrick Marchand	20191c8873	Fixed regression introduced by commit `276177900b` All checks were successful continuous-integration/drone/push Build is passing Details The default behavior for ansible template is to overwrite the targeted file. Since we dont always want to overwrite a file when we play this role, we set `force` to `False` by default. This means that if the `dest` already exists, ansible will not overwrite it with it's given template. This is fine for most of the tasks in this role, but in the case of `{{ evoadmin_scripts_dir }}/web-mail.tpl`,the file is created by a task that runs prior to the template task, so setting it to `False` by default means it never gets updated and clients dont get notified when they create new websites.	2019-12-24 14:10:24 -05:00
Victor LABORIE	2a1e0b7ef6	evolinux-base: install ssacli for HP Smart Array All checks were successful continuous-integration/drone/push Build is passing Details	2019-12-13 11:00:20 +01:00
Jérémy Lecour	e557a3eaae	apache: improve permissions in save_apache_status script	2019-12-13 10:44:44 +01:00
Ludovic Poujol	6e918d166e	evolinux-base: Don't make alert5.service executable All checks were successful continuous-integration/drone/push Build is passing Details Every 3 mins, systemd complain that the service file is marked as executable, and asks the executable bit to be remove. Nov 27 01:35:11 foo systemd[1]: Configuration file /etc/systemd/system/alert5.service is marked executable. Please remove executable permission bits. Proceeding anyway.	2019-11-28 10:59:29 +01:00
Ludovic Poujol	0e58f34e18	certbot: Properly evaluate when apache is installed Some checks failed continuous-integration/drone/push Build is failing Details Checking the existence of /etc/apache2 is not enough as a condition to validate the presence of apache. Indeed, some packages (including certbot!!!), put some files in /etc/apache2/conf-available even if apache isn't installed. In those cases, the check is not correct, and we'll enter in the apache block, and fail when we try to enable the configuration. With this commit, we now validate the presence apache with the presence of /usr/sbin/apachectl	2019-11-26 11:58:52 +01:00
Ludovic Poujol	dc1c78e08a	evolinux-base: Fix our zsyslog rotate config that doesn't work on Debian 10 All checks were successful continuous-integration/drone/push Build is passing Details I've noticed that some log files, especially /var/log/syslog were empty. After investigating, I've realized that it was happening after a log rotation by logrotate. The old mechanism, `invoke-rc.d rsyslog rotate` isn't working anymore on Debian 10. It will fail with a not so explicit message : [FAIL] Closing open files: rsyslogd failed! Long story short, it seems that the pid file (`/run/rsyslogd.pid`) isn't created any more, so start-stop-daemon as used by /etc/init.d/rsyslog will fail. Explaining the error message. Debian 10 rsyslog now brings `/usr/lib/rsyslog/rsyslog-rotate` that is used by logrotate. It will send the signal HUP the 'right' way, so rsyslog will be aware of the log rotation. Sadly, this script isn't present in Debian 9 nor 8, so the logrotate configuration for rsyslog is now a template, using the right command for the right version.	2019-11-22 16:48:19 +01:00
Jérémy Lecour	473bcb4cd6	apt: verify that /etc/evolinux is present All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-20 11:34:47 +01:00
Jérémy Lecour	26dd244ae0	nagios-nrpe: update check_redis_instances All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-13 09:47:23 +01:00
Jérémy Lecour	7f6ad406a5	evocheck: upstream version 19.11.2 All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-07 10:38:32 +01:00
Jérémy Lecour	767760cbe0	evocheck: upstream version 19.11.1 All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-06 07:50:45 +01:00
Jérémy Lecour	049d36ab8f	etc-git: add versioning for /usr/share/scripts on Debian 10+ All checks were successful continuous-integration/drone/push Build is passing Details The repository.yml task file is generic and can be called for vrious repositories. On Debian 10, /usr/share/scripts is versioned	2019-11-05 17:00:22 +01:00
Jérémy Lecour	6b77372f24	evocheck: upstream version 19.11 All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-05 16:20:07 +01:00
Jérémy Lecour	a55e29186f	evomaintenance: upstream version 0.6.0 All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-05 14:52:59 +01:00
Jérémy Lecour	ab8c6b13b8	evoacme: upstream version 19.11 All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-05 14:08:02 +01:00
Jérémy Lecour	7e50a460a8	minifirewall: add a variable to force the check scripts update All checks were successful continuous-integration/drone/push Build is passing Details	2019-11-05 10:52:14 +01:00
Jérémy Lecour	5476538eb1	minifirewall: no http filtering by default All checks were successful continuous-integration/drone/push Build is passing Details	2019-10-30 14:37:22 +01:00
Jérémy Lecour	f2dacac139	evolinux-base: add /usr/share/scripts in root's PATH (Debian 10+)	2019-10-30 14:32:32 +01:00
Jérémy Lecour	8679da4cb6	evolinux-base: install /sbin/deny	2019-10-30 14:32:32 +01:00
Jérémy Lecour	772c333623	apt: remove jessie/buster sources from Gandi servers	2019-10-30 14:32:32 +01:00
Jérémy Lecour	e80e4197c2	evocheck: upstream version 19.10 All checks were successful continuous-integration/drone/push Build is passing Details	2019-10-25 13:17:16 +02:00
Jérémy Lecour	d5a6487315	Merge branch 'mongodb-buster' into unstable All checks were successful continuous-integration/drone/push Build is passing Details	2019-10-24 17:23:53 +02:00
Jérémy Lecour	27adad616f	squid: compatibility wit Debian 10 All checks were successful continuous-integration/drone/push Build is passing Details	2019-10-24 16:23:48 +02:00
Jérémy Lecour	85b0e36f33	CHANGELOG: sort alphabetically All checks were successful continuous-integration/drone/push Build is passing Details	2019-10-24 15:37:58 +02:00
Jérémy Lecour	76864f226e	WIP mongodb: compatibility with Debian 10 All checks were successful continuous-integration/drone/push Build is passing Details	2019-10-24 15:36:51 +02:00

1 2 3 4 5 ...

444 commits