evolix
/
ansible-roles
18
2
Fork 2
Code Issues 61 Pull Requests 18 Releases 32 Wiki Activity
1,409 Commits 76 Branches 56 Tags 128 MiB
Commit Graph

1409 Commits

Author SHA1 Message Date
Jérémy Lecour b0ef42db11 Merge branch 'unstable' into stable 2018-05-16 11:11:00 +02:00
Jérémy Lecour 4f4b7cd8dc Release 9.2.0 2018-05-16 11:10:31 +02:00
Jérémy Lecour 4d148579c4 Changelog for elasticsearch changes 2018-05-16 11:08:18 +02:00
Jérémy Lecour 3dd1df8236 Changelog for varnish changes 2018-05-16 11:07:12 +02:00
Jérémy Lecour 2451e4d3fa Changelog for NTP changes 2018-05-16 11:06:06 +02:00
Jérémy Lecour 5091157b18 Elasticsearch: defaults to version 6.x 2018-05-16 11:03:24 +02:00
Bruno TATU a47a787a81 squid: add some domains and fix broken restrictions 2018-05-11 15:37:05 +02:00
Jérémy Lecour 93642b4afa filebeat: cleanup unused code 2018-05-09 20:57:32 +02:00
Jérémy Lecour 10af35bf41 filebeat: install version 6.x by default 2018-05-09 20:56:48 +02:00
Bruno TATU b14d15302d Revert "Whiteliste de domaines par defaut pour squid" 
This reverts commit e9afd49373.
 2018-05-09 15:52:26 +02:00
Bruno TATU e9afd49373 Whiteliste de domaines par defaut pour squid 2018-05-09 15:44:16 +02:00
Ludovic Poujol 7fda501eae varnish: Add -F to the sustemd unit to not fork at start 2018-05-04 11:38:11 +02:00
Ludovic Poujol 52c728b524 ntpd: Follow the example config given on https://wiki.evolix.org/HowtoNTP 2018-05-02 19:25:51 +02:00
Jérémy Lecour 08d5ca5696 evolinux-users: fix secondary groups 
With ANsible 2.2 the list of groups must be comma-separated
 2018-05-02 17:16:36 +02:00
Jérémy Lecour c87e3ee576 evolinux-users: add user to internal group if defined and Debian >= 9 2018-05-02 17:12:27 +02:00
Jérémy Lecour 74ca43fe05 evolinux-users: add documentation for variables 2018-05-02 17:12:27 +02:00
Gregory Colpart 20f6371980 typo 2018-05-01 19:38:55 +02:00
Ludovic Poujol 732087235c evolinux-users: Fix check_minifirewall path in sudoers file 2018-04-25 17:36:11 +02:00
Jérémy Lecour c7d291c830 Merge branch 'unstable' into stable 2018-04-24 16:46:34 +02:00
Jérémy Lecour 170bd6c2c1 Release 9.1.9 2018-04-24 16:45:05 +02:00
Jérémy Lecour 5c5361dbb5 apache: customize logrotate (52 weeks) 2018-04-22 18:10:47 +02:00
Jérémy Lecour 15ebb84bb6 mysql/mysql-oracle: mysqltuner cron scripts is 0755 2018-04-22 17:32:23 +02:00
Jérémy Lecour 5bf82d117b Don't copy empty files 2018-04-22 17:23:31 +02:00
Jérémy Lecour 8384e8ba43 evolinux: groups for SSH configuration are used with Debian 10 and later 2018-04-20 14:38:55 +02:00
Jérémy Lecour e79640d770 evolinux: Name and improve compatibility checks 2018-04-20 14:38:55 +02:00
Benoît S. cb941bfe61 webapps/evoadmin-web: Add example of logins vars 
Examples are present in config.php but not config.local.php and can be
disturbing.
 2018-04-20 14:18:49 +02:00
Jérémy Lecour bc3b1182ea evolinux-users: default to AllowGroups (for SSH) in Debian 10 2018-04-20 10:25:14 +02:00
Jérémy Lecour 792e319694 packweb-apache: install evoadmin as a dependency 
A bug in Ansible 2.2 disables some included roles when dependencies have
a conditional evaluated to false.
 2018-04-20 10:23:35 +02:00
Jérémy Lecour d9767aeb86 whitespaces 2018-04-20 10:22:11 +02:00
Ludovic Poujol da13a478c6 webapps/evoadmin-web : Name the fail task 2018-04-19 16:04:21 +02:00
Ludovic Poujol e37b3f569a generate-ldif: add a minifirewall service when /etc/default/minifirewall exists 2018-04-19 16:04:21 +02:00
Jérémy Lecour 92bb60495d mysql: add a name attribute for systemd daemon-reload module 2018-04-19 15:44:05 +02:00
Jérémy Lecour 6daf6877c1 Merge branch 'ssh-groups' into unstable 2018-04-18 18:21:39 +02:00
Jérémy Lecour 43d86f5541 evolinux-users: cover more cases for AllowUsers/Groups in sshd config 2018-04-18 18:21:09 +02:00
Jérémy Lecour 2f631f1ae7 update Changelog 2018-04-18 12:16:57 +02:00
Jérémy Lecour b0b4e13130 evolinux-users: Add users to group for SSH on Debian 9+ 2018-04-18 12:16:04 +02:00
Jérémy Lecour 32c289d915 evolinux: improve case switching 
A case was missing : no AllowUsers/AllowGroups, on Debian 9
 2018-04-18 12:16:04 +02:00
Jérémy Lecour 5bcd7e44cf evolinux-users: really look for evomaintenance 
The file was missing in the grep command :/
 2018-04-18 12:16:04 +02:00
Jérémy Lecour a782ef3180 evolinux-users: better names for a fewtasks 2018-04-18 12:16:04 +02:00
Jérémy Lecour dba26fbbaf evolinux-users: sudoers file should be 0440 also in Stretch 2018-04-18 12:16:04 +02:00
Jérémy Lecour f065310ca6 evolinux-users: use command instead of shell when possible 2018-04-18 12:16:04 +02:00
Jérémy Lecour 2027420877 whitespaces 2018-04-18 12:16:04 +02:00
Jérémy Lecour 13abc44992 evolinux-users: use assert instead of fail 2018-04-18 12:16:04 +02:00
Jérémy Lecour f152ba66cd evolinux-users: regroup tasks 
1. create all accounts
2. configure sudo for everyone
3. configure ssh for everyone
 2018-04-18 12:16:04 +02:00
Jérémy Lecour e0ac7760f0 Use AllowGroups mode also if no AllowUsers is present at all 2018-04-18 12:16:04 +02:00
Jérémy Lecour 4fc58e4b1e evolinux-users: rename included files 2018-04-18 12:16:04 +02:00
Jérémy Lecour b01d9178d0 evolinux-users: split AllowGroups/AllowUsers modes 
If an AllowGroups directive is found or when using Debian 9+,
we use the AllowGroups directive and comment AllowUsers that may be
already present.
When adding a user, we make sure that the allowed group exists
and the use is in that group, to be sure that at least this user
is allowed to connect.

In other situations, we use the AllowUsers directive.
 2018-04-18 12:16:04 +02:00
Jérémy Lecour b866b6fa0a evolinux-base: fail2ban is not enabled by default 2018-04-18 12:15:43 +02:00
Jérémy Lecour 423acc79fd mysql-oracle: copy evolinux config files in mysql.cond.d 2018-04-18 12:06:15 +02:00
Jérémy Lecour cdbce0ae24 mysql-oracle: use systemd module to reload daemon 2018-04-18 12:05:09 +02:00