Release 22.12 #165

Merged
jlecour merged 76 commits from unstable into stable 2 months ago
Owner

Added

  • all: add signed-by option for additional APT sources
  • all: preliminary work to support Debian 12
  • all: use proper keyrings directory for APT version
  • evolinux-base: replace regular kernel by cloud kernel on virtual servers
  • lxc-php: set php-fpm umask to 007
  • nagios-nrpe: check_ceph_*
  • nagios-nrpe: check_haproxy_stats supports DRAIN status
  • packweb-apache: enable log_forensic module
  • rabbitmq: add link in default page
  • varnish: create special tmp directory for syntax validation

Changed

  • certbot: auto-detect HAPEE version in renewal hook
  • evocheck: install script according to Debian version
  • evolinux-base: utils.yml can be excluded
  • evolinux-todo: execute tasks only for Debian distribution (because this task is a dependency for others roles used on different distributions)
  • evolinux-user: add sudoers privilege for check php_fpm81
  • evomaintenance: allow missing API endpoint if APi is disabled
  • java: use default JRE package when version is not specified
  • keepalived: change exit code (warning if running but not on expected state ; critical if not running)
  • listupgrade: better detection for PostgreSQL
  • listupgrade: sort/uniq of packages/services lists in email template
  • lxc-solr: detect the real partition options
  • lxc-solr: download URL according to Solr Version
  • lxc-solr: set homedir and port at install
  • minifirewall: whitelist deb.freexian.com
  • openvpn: shellpki upstream release 22.12.2
  • openvpn: specifies that the mail for expirations is for OpenVPN
  • packweb-apache: manual dependencies resolution
  • redis: some values should be quoted
  • redis: variable to disable transparent hugepage (default: do nothing)
  • squid: whitelist deb.freexian.com
  • varnish: better package facts usage with check mode and tags
  • varnish: systemd override depends on Varnish version instead of Debian version

Fixed

  • evolinux-user: Fix sudoers privilege for check php_fpm80
  • nagios-nrpe: Fix check opendkim for recent change in listening port
  • openvpn: Fix mode of shellpki script
  • proftpd: Fix format of public key files controlled by Ansible
  • proftpd: Fix mode of public key directory and files (they have to be accessible by proftpd:nobody)
  • varnish: fix missing state, that blocked the task

Removed

  • openvpn: Deleted the task fixing the CRL rights since it has been fixed in upstream
### Added * all: add signed-by option for additional APT sources * all: preliminary work to support Debian 12 * all: use proper keyrings directory for APT version * evolinux-base: replace regular kernel by cloud kernel on virtual servers * lxc-php: set php-fpm umask to `007` * nagios-nrpe: `check_ceph_*` * nagios-nrpe: `check_haproxy_stats` supports DRAIN status * packweb-apache: enable `log_forensic` module * rabbitmq: add link in default page * varnish: create special tmp directory for syntax validation ### Changed * certbot: auto-detect HAPEE version in renewal hook * evocheck: install script according to Debian version * evolinux-base: `utils.yml` can be excluded * evolinux-todo: execute tasks only for Debian distribution (because this task is a dependency for others roles used on different distributions) * evolinux-user: add sudoers privilege for check `php_fpm81` * evomaintenance: allow missing API endpoint if APi is disabled * java: use default JRE package when version is not specified * keepalived: change exit code (_warning_ if running but not on expected state ; _critical_ if not running) * listupgrade: better detection for PostgreSQL * listupgrade: sort/uniq of packages/services lists in email template * lxc-solr: detect the real partition options * lxc-solr: download URL according to Solr Version * lxc-solr: set homedir and port at install * minifirewall: whitelist deb.freexian.com * openvpn: shellpki upstream release 22.12.2 * openvpn: specifies that the mail for expirations is for OpenVPN * packweb-apache: manual dependencies resolution * redis: some values should be quoted * redis: variable to disable transparent hugepage (default: do nothing) * squid: whitelist `deb.freexian.com` * varnish: better package facts usage with check mode and tags * varnish: systemd override depends on Varnish version instead of Debian version ### Fixed * evolinux-user: Fix sudoers privilege for check `php_fpm80` * nagios-nrpe: Fix check opendkim for recent change in listening port * openvpn: Fix mode of shellpki script * proftpd: Fix format of public key files controlled by Ansible * proftpd: Fix mode of public key directory and files (they have to be accessible by `proftpd:nobody`) * varnish: fix missing state, that blocked the task ### Removed * openvpn: Deleted the task fixing the CRL rights since it has been fixed in upstream
jlecour added 74 commits 2 months ago
gitea/ansible-roles/pipeline/head This commit looks good Details
6aeaab078d
lxc-solr: set homedir and port at install
gitea/ansible-roles/pipeline/head This commit looks good Details
c6fb24f7d8
lxc-solr: use default JRE package
gitea/ansible-roles/pipeline/head This commit looks good Details
15d7756881
minifirewall: whitelist deb.freexian.com
gitea/ansible-roles/pipeline/head This commit looks good Details
8114f7c89b
mongodb: Allow to install version 5.0 on Bullseye
gitea/ansible-roles/pipeline/head This commit looks good Details
4f9d6868e0
evolinux-user: sudoers privileges for check php\fpm80 and 81
gitea/ansible-roles/pipeline/head This commit looks good Details
2d16aeb41e
evolinux-base: utils.yml can be excluded
gitea/ansible-roles/pipeline/head This commit looks good Details
05e782c6f8
evolinux-base: remove deprecated tasks files
gitea/ansible-roles/pipeline/head This commit looks good Details
ed4fdce58c
clean duplicate
fc52fbf4bc
redis: some values should be quoted
gitea/ansible-roles/pipeline/head This commit looks good Details
857b3e0e45
nagios-nrpe: check_haproxy_stats supports DRAIN status
gitea/ansible-roles/pipeline/head This commit looks good Details
912cec5a78
lxc-php: update changelog.
gitea/ansible-roles/pipeline/head This commit looks good Details
b1138c07ee
lxc-php: Fix register instruction in wrong order and indentation
gitea/ansible-roles/pipeline/head This commit looks good Details
4d259d3c04
varnish: systemd override depends on Varnish
gitea/ansible-roles/pipeline/head This commit looks good Details
c9ccda2277
varnish: create special tmp directory for syntax validation
gitea/ansible-roles/pipeline/head This commit looks good Details
7f3f7b3e04
varnish: fix tags and variables
f531460f49
Use proper keyrings directory for APT version
gitea/ansible-roles/pipeline/head This commit looks good Details
28540247f0
Add signed-by option for additional APT sources
gitea/ansible-roles/pipeline/head This commit looks good Details
faeb92230b
packweb-apache: manual dependencies resolution
gitea/ansible-roles/pipeline/head This commit looks good Details
83138f0a0b
nagios-nrpe: Correct port for check_opendkim
gitea/ansible-roles/pipeline/head This commit looks good Details
b797a5059a
nagios-nrpe: add ceph checks
gitea/ansible-roles/pipeline/head This commit looks good Details
396afa0a75
nagios-nrpe: add ceph checks to changelog
gitea/ansible-roles/pipeline/head This commit looks good Details
ecd9d1543f
varnish: better package facts usage with check mode and tags
gitea/ansible-roles/pipeline/head This commit looks good Details
057224fb38
Skip task in check_mode
gitea/ansible-roles/pipeline/head This commit looks good Details
54dca82838
varnish: fix missing state, that blocked the task
4156142c85
docker: no need to specify the architecture
gitea/ansible-roles/pipeline/head This commit looks good Details
08db230c29
Merge branch 'debian12' into unstable
gitea/ansible-roles/pipeline/head This commit looks good Details
c96f28e47b
evocheck: install script according to Debian version
gitea/ansible-roles/pipeline/head This commit looks good Details
cca072425b
openvpn: shellpki upstream release 22.12
gitea/ansible-roles/pipeline/head This commit looks good Details
fafff25c20
Add “when: not ansible_check_mode” to allow more --check
gitea/ansible-roles/pipeline/head This commit looks good Details
5e63340aa9
openvpn: shellpki upstream release 22.12.1
gitea/ansible-roles/pipeline/head This commit looks good Details
6cc3e03864
openvpn: specifies that the mail for expirations is for OpenVPN
gitea/ansible-roles/pipeline/head This commit looks good Details
22f30b59f2
certbot: auto-detect HAPEE version in renewal hook
gitea/ansible-roles/pipeline/head This commit looks good Details
982112bd64
rabbitmq: add link in default page
gitea/ansible-roles/pipeline/head This commit looks good Details
e415800508
Run if there are enough place
gitea/ansible-roles/pipeline/head This commit looks good Details
101c282846
proftpd: Fix format of public key files controlled by ansible
gitea/ansible-roles/pipeline/head This commit looks good Details
bc1facd1ba
proftpd: Fix mode of public key files and directory
gitea/ansible-roles/pipeline/head This commit looks good Details
4e7a46c9c3
Run VACUUM where there are enough space and always delete old IPs
gitea/ansible-roles/pipeline/head This commit looks good Details
ce5e4b12c6
Apache: Drop duplicate when keys
gitea/ansible-roles/pipeline/head This commit looks good Details
b02400fd84
php: (partial) fix duplicate when
gitea/ansible-roles/pipeline/head This commit looks good Details
d4f58b9395
Drop duplicate when keys introduced in fafff25c20
gitea/ansible-roles/pipeline/head This commit looks good Details
91b40ce72f
openvpn: Fix mode of shellpki script
gitea/ansible-roles/pipeline/head This commit looks good Details
1728eaee68
Revert "Add “when: not ansible_check_mode” to allow more --check"
gitea/ansible-roles/pipeline/head This commit looks good Details
34fefa1212
typos
gitea/ansible-roles/pipeline/head This commit looks good Details
ac85efe8aa
vrrpd: Small fix to work in check mode
gitea/ansible-roles/pipeline/head This commit looks good Details
21ab9b1e68
Revert ce5e4b12c6
gitea/ansible-roles/pipeline/head This commit looks good Details
240ccee12b
Release 22.12
jlecour added 1 commit 2 months ago
jlecour added 1 commit 2 months ago
jlecour merged commit e1e4f39778 into stable 2 months ago
The pull request has been merged as e1e4f39778.
Sign in to join this conversation.
No reviewers
No Milestone
No Assignees
1 Participants
Notifications
Due Date

No due date set.

Dependencies

No dependencies set.

Reference: evolix/ansible-roles#165
Loading…
There is no content yet.