Jérémy Lecour
|
aeba94bcba
|
default/additional variables
List of hosts/ip are a combination of 2 lists allowing overrides
|
2017-12-20 18:04:54 +01:00 |
|
Jérémy Lecour
|
8ef9554746
|
Combine evolix and additional trusted IP addresses
|
2017-11-15 23:57:58 +01:00 |
|
Victor LABORIE
|
1c48df025c
|
Move /usr rw remount into remount-usr role
|
2017-11-07 13:34:05 +01:00 |
|
Victor LABORIE
|
ce89d5c5a5
|
apache: fix usr rw remount
|
2017-10-31 15:28:42 +01:00 |
|
Victor LABORIE
|
2d1504ddf6
|
apache: add somes modules by defaults
|
2017-10-27 15:01:06 +02:00 |
|
Jérémy Lecour
|
9527aff68a
|
apache/nginx: remove compatibility mode
|
2017-10-11 18:13:15 +02:00 |
|
Ludovic Poujol
|
745c45f88d
|
Fix remount_usr_rw/yml
|
2017-10-11 17:58:18 +02:00 |
|
Jérémy Lecour
|
e7e9f9e125
|
Apache/Nginx: use ipaddr_whitelist
|
2017-10-07 13:48:04 +02:00 |
|
Jérémy Lecour
|
0e9fab48f5
|
apache: fix ipaddr_whitelist path
|
2017-10-07 13:12:03 +02:00 |
|
Jérémy Lecour
|
be84ab434e
|
apache: install save_apache_status.sh
|
2017-10-07 13:12:01 +02:00 |
|
Jérémy Lecour
|
2395777194
|
apache: no need for server status suffix anymore
The location is restricted, so we don't need to obfuscate
|
2017-10-07 13:11:25 +02:00 |
|
Jérémy Lecour
|
ddeb39b886
|
apache: phpmyadmin is not managed here anymore
|
2017-10-07 13:03:43 +02:00 |
|
Jérémy Lecour
|
dc3b735445
|
apache: cleanup munin tasks
|
2017-10-07 11:54:31 +02:00 |
|
Jérémy Lecour
|
1776b4bc24
|
Apache: improve munin integration
* ansible syntax
* remove duplicate tasks
* improve tasks names
|
2017-10-07 11:17:02 +02:00 |
|
Benoît S.
|
50cba28f7b
|
Merge branch 'apache-munin' into unstable
|
2017-10-06 15:42:45 +02:00 |
|
Gregory Colpart
|
87ef758891
|
we need force=no for files who will be lineinfile/blockinfile
|
2017-09-07 02:32:08 +02:00 |
|
Gregory Colpart
|
26b76aed17
|
review default vhost
|
2017-09-07 02:31:48 +02:00 |
|
Gregory Colpart
|
be4e811c47
|
phpMyAdmin configuration
|
2017-09-07 02:26:35 +02:00 |
|
Gregory Colpart
|
94625a73c2
|
Prepare phpMyAdmin config if needed
|
2017-09-06 19:34:04 +02:00 |
|
Gregory Colpart
|
6241bdc8ce
|
Easy activation of Access-Control-Allow-Origin for eot|ttf|otf|woff files
|
2017-09-06 14:58:43 +02:00 |
|
Jérémy Lecour
|
2f2192e5cf
|
apache is compatible with Stretch
|
2017-09-04 17:15:02 +02:00 |
|
Romain Dessort
|
58bc7940ac
|
Add LimitUIDRange. Fix sudo calls from evoadmin
|
2017-08-24 12:56:12 -04:00 |
|
Gregory Colpart
|
9c406cc9bd
|
Fix "Unable to reload service munin-node: Failed to reload munin-node.service: Job type reload is not applicable for unit munin-node.service.\n"
|
2017-08-22 06:30:04 +02:00 |
|
Gregory Colpart
|
2fd165a465
|
fix error in handler call
|
2017-08-18 04:18:52 +02:00 |
|
Gregory Colpart
|
2bb7367edf
|
standardization for Debian versions : we use "jessie" or "9 or later" to prepare buster smoothly as possible
|
2017-08-18 03:50:30 +02:00 |
|
Gregory Colpart
|
e5e44d5bc1
|
standard Evolix name is /etc/apache2/ipaddr_whitelist.conf cf https://wiki.evolix.org/HowtoApache
|
2017-08-18 02:31:41 +02:00 |
|
Jérémy Lecour
|
17bdfc8fef
|
apache: cleanup log2mail tasks
|
2017-08-12 12:51:28 -04:00 |
|
Jérémy Lecour
|
a4b917152d
|
apache: cleanup munin tasks
|
2017-08-12 12:51:15 -04:00 |
|
Jérémy Lecour
|
69ed3ecf05
|
apache: fix log2mail config permissions
|
2017-08-12 12:35:37 -04:00 |
|
Gregory Colpart
|
ce0644e976
|
copy general_alert_email/log2mail_alert_email to Apache role
|
2017-08-04 09:57:09 -04:00 |
|
Jérémy Lecour
|
03aae520e8
|
apache: server-status only for default vhost
|
2017-07-28 15:28:19 -04:00 |
|
Jérémy Lecour
|
e90d8ceec3
|
apache: "Require local" instead of "Require ip 127.0.0.1"
|
2017-07-28 15:28:03 -04:00 |
|
Jérémy Lecour
|
84fdd356fa
|
apache: formatting
|
2017-07-28 15:27:34 -04:00 |
|
Jérémy Lecour
|
aaded13176
|
apache: add missing reload notifications
|
2017-07-28 15:24:26 -04:00 |
|
Gregory Colpart
|
f49e720efd
|
Add log2mail stuff for Apache
|
2017-07-23 00:54:52 +02:00 |
|
Gregory Colpart
|
5c4125263e
|
Quick review of pack-web-apache role
|
2017-07-23 00:44:06 +02:00 |
|
Gregory Colpart
|
a0ccc2e9d5
|
Review of role Apache, sync with https://wiki.evolix.org/HowtoApache
|
2017-07-22 22:40:31 +02:00 |
|
Benoît S.
|
f5c8d56b6a
|
Wrong register name fixed
|
2017-07-20 09:40:45 +02:00 |
|
Benoît S.
|
5ed119eb38
|
Missing path and tags for a task
|
2017-07-20 09:38:39 +02:00 |
|
Benoît S.
|
1f87d38320
|
Be sure to enable libapache2-mod-fcgid
|
2017-07-20 09:38:05 +02:00 |
|
Benoît S.
|
c2f6708645
|
Better minimalist config in the vhost
Also install mandatory package libcgi-fast-perl.
|
2017-07-20 09:33:22 +02:00 |
|
Jérémy Lecour
|
3e1a600fd5
|
apache: enable Munin plugins and CGI mode
|
2017-07-19 18:25:28 +02:00 |
|
Jérémy Lecour
|
383d432bb8
|
Merge branch '1092-page-for-error-403' into unstable
|
2017-07-19 14:04:53 +02:00 |
|
Jérémy Lecour
|
515460ee0a
|
Merge branch 'apache-fix-default-vhost' into unstable
|
2017-07-19 14:02:52 +02:00 |
|
Jérémy Lecour
|
da4b7ca41a
|
apache: disable GoAway criteria
|
2017-07-19 11:55:58 +02:00 |
|
Jérémy Lecour
|
cb128a897b
|
Apache: new syntax for auth
|
2017-07-19 11:31:21 +02:00 |
|
Gregory Colpart
|
86e1e057a8
|
We don't want anymore a 301 redirect for 403 errors, it's too confusing
|
2017-07-19 10:21:37 +02:00 |
|
Gregory Colpart
|
6e329d2820
|
Deny by default (default conf allow from all)
|
2017-07-19 10:20:54 +02:00 |
|
Jérémy Lecour
|
3a8093fb12
|
Apache: use "Require"
http://httpd.apache.org/docs/2.4/howto/auth.html
|
2017-07-18 20:13:58 +02:00 |
|
Benoît S.
|
92f699b84c
|
A better default vhost for Apache.
This is my proposal to a better vhost.
I added comments to understand the tricky behavior of Directory directive when
using Alias or ScriptAlias.
|
2017-07-18 17:05:47 +02:00 |
|
Benoît S.
|
54d9dbf7aa
|
Implement #1092. We use custom error pages for Apache
Note: The pack web will maybe modify these pages to have Evolix logo or theme,
or other things to customize.
|
2017-07-18 15:40:04 +02:00 |
|
Jérémy Lecour
|
7d4e388141
|
apache: use snakeoil cert by default
|
2017-07-17 10:54:22 +02:00 |
|
Jérémy Lecour
|
b4ca2dd686
|
apache/evoadmin : split jessie/stretch
|
2017-07-13 14:09:34 +02:00 |
|
Gregory Colpart
|
5a28681700
|
easy deny User-Agent
|
2017-07-09 19:59:12 +02:00 |
|
Jérémy Lecour
|
3d77f086ed
|
Disable random URL for server-status (probably temporary)
|
2017-07-06 17:14:28 +02:00 |
|
Jérémy Lecour
|
242c005f6d
|
Fix default web page
* split 80/443
* use modern authorization syntax
* reorganize the VHost file
|
2017-07-06 17:14:28 +02:00 |
|
Jérémy Lecour
|
34f6354a9e
|
random suffices for phpmyadmin abnd server-status with apg
|
2017-07-06 17:14:28 +02:00 |
|
Jérémy Lecour
|
0e0bc1cbbd
|
Split default vhost into nginx ad apache roles
|
2017-07-06 17:14:28 +02:00 |
|
Jérémy Lecour
|
2084e2e53e
|
evoadmin/packweb: end of first pass
|
2017-07-03 18:22:24 +02:00 |
|
Benoît S.
|
58dd5c3817
|
WIP: More things done for packweb...
PHP, Awstats, ...
|
2017-07-03 17:56:59 +02:00 |
|
Benoît S.
|
6a225e469b
|
[WIP]: First pass for packweb-apache
|
2017-07-03 17:55:00 +02:00 |
|
Gabriel Periard-Tremblay
|
87ebadcadd
|
Kitchen: Change base image to evolix/ansible
|
2017-06-02 08:38:08 -04:00 |
|
Jérémy Lecour
|
9fae99f8dc
|
Minor syntax and whitespaces fixes
|
2017-05-19 22:29:53 +02:00 |
|
Jérémy Lecour
|
81e46962d2
|
apache: change idempotency test
|
2017-04-19 17:58:46 +02:00 |
|
Jérémy Lecour
|
33314828b1
|
Change Ansible version used by ansible-kitchen
|
2017-04-19 17:48:02 +02:00 |
|
Jérémy Lecour
|
5b2ab0d8d3
|
Ansible >= 2.2 supported
|
2017-03-24 14:15:09 +01:00 |
|
Jérémy Lecour
|
ef7deb2ffe
|
Apache: add a reload handler
|
2017-03-14 17:49:05 +01:00 |
|
Gabriel Périard-Tremblay
|
9baf84736c
|
Add max_ssh_sessions to .kitchen as a workaround
|
2017-03-13 14:42:02 -04:00 |
|
Jérémy Lecour
|
83c8faab2d
|
Apache: permissions mode with leading 0
… even in string form
|
2017-03-03 12:23:13 +01:00 |
|
Jérémy Lecour
|
32fc9a822d
|
whitespaces
|
2017-03-03 12:23:13 +01:00 |
|
Jérémy Lecour
|
00f96b2b8b
|
Apache: no need for a template, just copy
|
2017-03-03 12:23:13 +01:00 |
|
Gabriel Périard-Tremblay
|
bcb740d3d1
|
Update test kitchen configuration and directory layout
|
2017-02-27 15:49:10 -05:00 |
|
Gabriel Périard-Tremblay
|
fd77649cb9
|
Add basic kitchen test files to nginx, apache and nodejs roles
|
2017-02-27 11:18:37 -05:00 |
|
Jérémy Lecour
|
8920ff1ee4
|
Add "always_run: yes" where it's pertinent
There is also the "check_mode: no", but commented,
for when we switch to Ansible 2.2
|
2017-01-31 11:45:35 +01:00 |
|
Jérémy Lecour
|
61f5219f48
|
Improve documentation
Each role has a README and a meta/main.yml file
|
2017-01-05 18:22:06 +01:00 |
|
Jérémy Lecour
|
5a4f838375
|
Unix mode MUST be a quoted string when using octal notation
|
2017-01-05 12:03:54 +01:00 |
|
Gregory Colpart
|
5fb95a8685
|
add handlers for apache role
|
2016-12-26 20:43:42 +01:00 |
|
Sebastien Dubois
|
0ebd9cc147
|
guillemets manquants
|
2016-12-23 10:35:20 +01:00 |
|
Jérémy Lecour
|
c0ab8f99ce
|
Squash: conventions, evolinux, etc-git…
|
2016-12-21 16:12:30 +01:00 |
|
Gregory Colpart
|
e0ca7c1f0e
|
convention for custom config is z_evolinux / zzz_evolinux
|
2016-12-21 16:12:28 +01:00 |
|
Gregory Colpart
|
6c3a658271
|
MaxClients -> MaxRequestWorkers
|
2016-12-21 16:12:27 +01:00 |
|
Gabriel Périard-Tremblay
|
dda436a53d
|
update apache role
|
2016-12-21 16:12:25 +01:00 |
|
Gregory Colpart
|
241f3f13fd
|
Improvments on Apache role
|
2016-12-21 16:12:24 +01:00 |
|
Gregory Colpart
|
4328f2cdec
|
Add Apache role
|
2016-12-21 16:12:24 +01:00 |
|