Commit Graph

70 Commits

Author SHA1 Message Date
Andrea Dell'Amico 7bae9c82bc library/roles/ubuntu-deb-general/tasks/main.yml include -> import_tasks 2018-01-30 18:41:54 +01:00
Andrea Dell'Amico 2555e1837f Add the digicert root ca that signs the terena personal certificates one. 2017-12-20 12:35:45 +01:00
Andrea Dell'Amico 898648c8af Add the Terena CA for personal certificates. 2017-12-19 19:12:14 +01:00
Andrea Dell'Amico d74caa1d87 pki-basics: shorten the certificate CN because when we use long hostnames it could overflow. 2017-10-23 19:09:04 +02:00
Andrea Dell'Amico 3eb0e0a126 self signed certificates: make them last 365 days. 2017-09-29 17:03:38 +02:00
Andrea Dell'Amico ab3d32a54d The infrascience ppa repository is now optional and disabled by default. 2017-07-21 11:08:34 +02:00
Tommaso Piccioli 53f3e7c28e letsencrypt directory check fixed 2017-04-10 18:04:31 +02:00
Andrea Dell'Amico e49d3be780 library/roles/ubuntu-deb-general/tasks/packages.yml: The internal repositories fail on i386. 2017-03-17 15:20:23 +01:00
Andrea Dell'Amico 2b08e985ac library/roles/ubuntu-deb-general: Install a couple of python packages needed by some ansible modules. 2017-02-22 18:19:58 +01:00
Andrea Dell'Amico 73f08306ea library/roles/ubuntu-deb-general: Revert the default for the root ssh keys management. Default is True now. 2017-02-09 15:33:41 +01:00
Andrea Dell'Amico 37b22b5f6b library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Add the 'ca' tag to the tasks that create the /etc/pki directory tree. 2017-01-20 18:31:31 +01:00
Andrea Dell'Amico 7a8b52c96e library/roles/ubuntu-deb-general/tasks/packages.yml: Try to fix a broken repository definition. 2016-11-22 17:21:49 +01:00
Andrea Dell'Amico 4b4507bdce library/roles/ubuntu-deb-general: Fix the rsyslog tasks. 2016-10-24 15:33:10 +02:00
Andrea Dell'Amico a6dc7a6d2a library/roles/ubuntu-deb-general/defaults/main.yml: Ensure that bsdutils is installed. We use the /usr/bin/logger binary in some scripts. 2016-10-21 15:21:47 +02:00
Andrea Dell'Amico b446c20fb5 library/isti_vars/isti-global.yml: rsyslog customizations.
library/roles/ubuntu-deb-general: add a task that installs rsyslog custom rules.
2016-10-13 20:00:05 +02:00
Andrea Dell'Amico 3ee895d56a library/roles/ubuntu-deb-general: There is now a specific role that manages the kernel ipv6 status. 2016-10-11 17:42:36 +02:00
Andrea Dell'Amico 5b15e502db library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Fix some undefined variables. 2016-09-30 18:39:28 +02:00
Andrea Dell'Amico dee341975b library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Fix a conditional. 2016-09-13 13:48:00 +02:00
Andrea Dell'Amico c7c65cc0ac library/roles/openvpn: Support to two different kinds of ldap authentication: Via the openvpn-ldap-auth module (no posix groups support, and it crashes on ubuntu 14.04), and via an external perl script. 2016-09-07 17:25:38 +02:00
Andrea Dell'Amico ca2bbc03cd library/roles/ubuntu-deb-general/tasks/manage-ipv6-status.yml: Simplify the ipv6 enabling/disabling. 2016-08-08 18:17:52 +02:00
Andrea Dell'Amico 80605e8530 library/roles/sshd_config/defaults/main.yml: More restrictive defaults for the ssh daemon.
library/roles/ubuntu-deb-general/meta/main.yml: Always run sshd_config.
2016-08-02 16:04:44 +02:00
Andrea Dell'Amico c34cd379db library/roles/d4s_user_services_perms/defaults/main.yml, library/roles/ubuntu-deb-general/defaults/main.yml: Fix the same typo, in two different places. 2016-07-28 15:34:55 +02:00
Andrea Dell'Amico b0431d49ac library/roles/ubuntu-deb-general: Increase the root files descriptors limits to 8192.
library/roles/d4s_user_services_perms: Increase the d4science user files descriptor limits to 16000.
2016-07-26 12:51:34 +02:00
Andrea Dell'Amico 2500422287 library/roles/ubuntu-deb-general/defaults/main.yml: Do not run by default the task that disables services. 2016-07-12 16:37:27 +02:00
Andrea Dell'Amico 965d6bf6ae library/roles/ubuntu-deb-general/defaults/main.yml: Install xmlstarlet.
library/roles/smartgears: Change the default versions to the new production ones.
library/roles/smartgears/smartgears/tasks/smartgears-app.yml: Task that sets the loglevel. The default is WARN.
2016-07-07 17:39:27 +02:00
Andrea Dell'Amico 68f076b334 library/roles: nagios-plugins-contrib is not available on ubuntu 12.04 2016-06-21 14:03:02 +02:00
Andrea Dell'Amico 41004de7ee library/roles/openvpn, library/roles/ubuntu-deb-general: The CA file that contains both the letsencrypt full chain and the INFN ca is now installed by the ubuntu-deb-general role. 2016-06-13 16:55:25 +02:00
Tommaso Piccioli 6b711b6535 munin IP entry fixed 2016-06-06 17:04:01 +02:00
Andrea Dell'Amico 5e6406b1df d4science-ghn-cluster/group_vars/tagme: Install as smartgears node.
d4science-ghn-cluster/elasticsearch-cluster.yml: New elasticsearch node for the production environment.
d4science-ghn-cluster/smartgears-node*.yml: separate the standard and "upgrade" playbooks.
2016-05-06 16:27:32 +02:00
Andrea Dell'Amico 34963cc94d library/roles/letsencrypt-acmetool-client: Fix the initialization procedure.
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: A link to the fullchain was missing.
2016-05-06 13:22:34 +02:00
Andrea Dell'Amico 19508aee71 library/roles/ubuntu-deb-general: Fix the certificates' link paths. 2016-05-06 11:42:06 +02:00
Andrea Dell'Amico 46b2d2cae8 library/roles/haproxy: Fixes to the letsencrypt scripts.
d4science-infrastructure/roles/redmine: support letsencrypt certificates on the dev redmine virtualhost.
library/roles/apache/tasks/apache-letsencrypt.yml: Support for letsencrypt (acme tool).
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Do not create the fake certificates if valid ones exist.
2016-04-22 18:03:57 +02:00
Andrea Dell'Amico b382db3b25 d4science-infrastructure/group_vars/ldap_liferay/all.yml: Enable ssl with the use of letsencrypt certificates.
library/roles/haproxy/files: Fix to the acme scripts, the certificate path has become /etc/pki/haproxy/haproxy.pem.
library/roles/openldap-server/tasks/openldap_initializazion.yml: Fix the certificates initialization.
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Create a self signed certificate while waiting the letsencrypt one.
2016-04-20 15:21:19 +02:00
Andrea Dell'Amico 7ba50614ff library/roles/ubuntu-deb-general/tasks/packages.yml: Install software-properties-common on Ubuntu. 2016-04-14 14:57:29 +02:00
Andrea Dell'Amico 8362be052b library/roles/ubuntu-deb-general: Create a generic directory where to store local SSL certificates. 2016-04-08 18:16:00 +02:00
Andrea Dell'Amico 123af8c4ea library/roles/data_disk/tasks/main.yml: Ansible 2 compatibility.
library/roles/postgresql: Ansible 2 compatibility.
library/roles/postgresql/tasks/manage_pg_db.yml: Add a task that activates extensions on the databases.
2016-03-07 17:43:37 +01:00
Andrea Dell'Amico 075f946517 library/roles/ssh-keys, library/roles/ubuntu-deb-general/tasks/pubkeys.yml: Fix the root ssh keys management. 2016-03-07 15:47:16 +01:00
Andrea Dell'Amico f95f3a53b7 d4science-ghn-cluster/group_vars/smartexecutor_dev: Manage the dev smartexecutors too. Two groups to split the devsec and devnext scopes.
d4science-ghn-cluster/roles/nginx-frontend: Better nginx virtualhost management.
library/roles: ansible 2 compatibility fixes.
2016-03-03 18:55:27 +01:00
Andrea Dell'Amico 75fd7d0574 library/roles/postgresql, library/roles/tomcat-multiple-instances, library/roles/tomcat, library/roles/ubuntu-deb-general: ansible 2 cleanup. 2016-03-02 16:44:43 +01:00
Andrea Dell'Amico 289fa488c3 library/roles: More ansible 2 cleanup. 2016-03-02 15:54:10 +01:00
Andrea Dell'Amico ccf86d4319 library/roles/ubuntu-deb-general/defaults/main.yml: A new package is needed to enable the https method for apt.
infrastructure-services: First bits of configuration for the influxdata server.
2016-02-12 10:55:49 +01:00
Andrea Dell'Amico 60a9759f89 library/roles/ubuntu-deb-general/tasks/disable-unneeded-services.yml: Ignore errors if the services are non existent. 2016-01-12 13:12:54 +01:00
Andrea Dell'Amico 40cd9400e3 library/roles/redmine/tasks: Change the ldap sync cron job so that it syncs the ldap groups too.
library/roles/ubuntu-deb-general/tasks/disable-unneeded-services.yml: Disable some services that we do not want running.
2015-12-27 13:52:58 +01:00
Andrea Dell'Amico 05c509a683 library/roles/ubuntu-deb-general/defaults/main.yml: Install curl by default. 2015-12-14 11:31:01 +01:00
Andrea Dell'Amico b6370fc22b library/roles/R/tasks/main.yml: Put packages on hold when we choose to install specific ones.
d4science-ghn-cluster/group_vars/dataminer_dev: Use dataminer release 1.0.0-3.9.0 and not the snapshot
d4science-ghn-cluster/roles/dataminer_app/templates/pom.xml.j2: Fix the pom to download the correct dependencies.
2015-12-09 15:53:32 +01:00
Andrea Dell'Amico 383e8ba256 library/roles/R: task to install R packages from github. Make some steps conditionals.
d4science-ghn-cluster/roles/dataminer_app: First part of the dataminer playbook.
2015-11-27 20:08:21 +01:00
Andrea Dell'Amico 4f7b300729 library/roles/ubuntu-deb-general: Some fixes.
xen/hosts: Remove dlib0x.
san: Fixes.
2015-11-08 21:56:27 +01:00
Tommaso Piccioli ced733bf1c Default backports in wheezy 2015-10-12 18:19:23 +02:00
Andrea Dell'Amico 5e6ddbf01a library/roles/ubuntu-deb-general/tasks/resolvconf.yml: Fix a typo. 2015-10-01 15:46:33 +02:00
Andrea Dell'Amico eeeb9eb811 d4science-ghn-cluster/EGI_playbooks: EGI playbooks run by packer go here. 2015-10-01 15:28:15 +02:00