debfranca
/
ansible-roles
forked from ISTI-ansible-roles/ansible-roles
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
1,739 Commits 1 Branch 0 Tags 525 MiB
Commit Graph

89 Commits

Author SHA1 Message Date
Andrea Dell'Amico 2d6676df50 Various fixes to support debian 9. 2018-09-16 13:51:34 +02:00
Andrea Dell'Amico a5f0c611b7 Cleanup the basic pki tasks. Add support for acme.sh 2018-08-20 23:42:35 +02:00
Andrea Dell'Amico 07ebea657c Refactor: fix all the 'when: variable is changed' occurrencies. 2018-08-09 18:48:09 +02:00
Andrea Dell'Amico cc375e74ee Fix the key directory permissions. 2018-08-03 17:18:02 +02:00
Andrea Dell'Amico 72882b275c Add the role that fixes pip on Trusty as dependency of ubuntu-deb-general 2018-07-25 12:23:50 +02:00
Andrea Dell'Amico b7ca1b5c22 Failed attempt to automatically setup a different list of resolvers. 2018-07-04 18:39:38 +02:00
Andrea Dell'Amico eacb127542 library/roles/ubuntu-deb-general/tasks/resolvconf.yml: Add a tag to the resolvconf task. 2018-06-15 13:50:40 +02:00
Andrea Dell'Amico 3ef6eaf3a9 The resolv.conf file is now parametric. 2018-05-04 19:47:39 +02:00
Andrea Dell'Amico f3ad3c6bab Role that installs and configure the unbound resolver. 2018-05-04 19:47:14 +02:00
Andrea Dell'Amico 929fc8ceb7 ntp: install a configuration that makes the nagios check work. 2018-05-03 12:46:32 +02:00
Andrea Dell'Amico b79034e490 library/roles/ubuntu-deb-general/files/resolv.conf: Update the resolv.conf file. 2018-05-02 12:58:15 +02:00
Andrea Dell'Amico 6e6850d139 library/roles/ubuntu-deb-general/tasks/main.yml: Fix a typo. 2018-04-19 17:51:49 +02:00
Andrea Dell'Amico 4f0d6b582e Add tasks to install nscd if needed. 2018-04-19 17:48:06 +02:00
Andrea Dell'Amico 60dd80953b library/roles/ubuntu-deb-general: Fix the apt parameters. The old ones are going to be deprecated. 2018-04-19 14:38:29 +02:00
Andrea Dell'Amico 5d1ece1c20 Add a task that runs a dist-upgrade on request (need to pass 'dist_upgrade=True' to the playbook. 2018-04-18 15:37:41 +02:00
Andrea Dell'Amico a5d1babc0b Add a new local repository, with some Trusty backports. 2018-04-04 20:21:09 +02:00
Andrea Dell'Amico 974a7e011e library/roles/ubuntu-deb-general/tasks/install_external_ca_cert.yml: Another typo. 2018-03-30 11:46:57 +02:00
Andrea Dell'Amico 082b4f99db library/roles/ubuntu-deb-general/tasks/install_external_ca_cert.yml: Fix the task that installs the CA files. 2018-03-30 11:43:50 +02:00
Andrea Dell'Amico fe3a6a3077 Install the INFN CA certs using a local file. The INFN site sometimes do not respond. 2018-03-30 11:41:02 +02:00
Andrea Dell'Amico 7bae9c82bc library/roles/ubuntu-deb-general/tasks/main.yml include -> import_tasks 2018-01-30 18:41:54 +01:00
Andrea Dell'Amico 2555e1837f Add the digicert root ca that signs the terena personal certificates one. 2017-12-20 12:35:45 +01:00
Andrea Dell'Amico 898648c8af Add the Terena CA for personal certificates. 2017-12-19 19:12:14 +01:00
Andrea Dell'Amico d74caa1d87 pki-basics: shorten the certificate CN because when we use long hostnames it could overflow. 2017-10-23 19:09:04 +02:00
Andrea Dell'Amico 3eb0e0a126 self signed certificates: make them last 365 days. 2017-09-29 17:03:38 +02:00
Andrea Dell'Amico ab3d32a54d The infrascience ppa repository is now optional and disabled by default. 2017-07-21 11:08:34 +02:00
Tommaso Piccioli 53f3e7c28e letsencrypt directory check fixed 2017-04-10 18:04:31 +02:00
Andrea Dell'Amico e49d3be780 library/roles/ubuntu-deb-general/tasks/packages.yml: The internal repositories fail on i386. 2017-03-17 15:20:23 +01:00
Andrea Dell'Amico 2b08e985ac library/roles/ubuntu-deb-general: Install a couple of python packages needed by some ansible modules. 2017-02-22 18:19:58 +01:00
Andrea Dell'Amico 73f08306ea library/roles/ubuntu-deb-general: Revert the default for the root ssh keys management. Default is True now. 2017-02-09 15:33:41 +01:00
Andrea Dell'Amico 37b22b5f6b library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Add the 'ca' tag to the tasks that create the /etc/pki directory tree. 2017-01-20 18:31:31 +01:00
Andrea Dell'Amico 7a8b52c96e library/roles/ubuntu-deb-general/tasks/packages.yml: Try to fix a broken repository definition. 2016-11-22 17:21:49 +01:00
Andrea Dell'Amico 4b4507bdce library/roles/ubuntu-deb-general: Fix the rsyslog tasks. 2016-10-24 15:33:10 +02:00
Andrea Dell'Amico a6dc7a6d2a library/roles/ubuntu-deb-general/defaults/main.yml: Ensure that bsdutils is installed. We use the /usr/bin/logger binary in some scripts. 2016-10-21 15:21:47 +02:00
Andrea Dell'Amico b446c20fb5 library/isti_vars/isti-global.yml: rsyslog customizations. 
library/roles/ubuntu-deb-general: add a task that installs rsyslog custom rules.
 2016-10-13 20:00:05 +02:00
Andrea Dell'Amico 3ee895d56a library/roles/ubuntu-deb-general: There is now a specific role that manages the kernel ipv6 status. 2016-10-11 17:42:36 +02:00
Andrea Dell'Amico 5b15e502db library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Fix some undefined variables. 2016-09-30 18:39:28 +02:00
Andrea Dell'Amico dee341975b library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Fix a conditional. 2016-09-13 13:48:00 +02:00
Andrea Dell'Amico c7c65cc0ac library/roles/openvpn: Support to two different kinds of ldap authentication: Via the openvpn-ldap-auth module (no posix groups support, and it crashes on ubuntu 14.04), and via an external perl script. 2016-09-07 17:25:38 +02:00
Andrea Dell'Amico ca2bbc03cd library/roles/ubuntu-deb-general/tasks/manage-ipv6-status.yml: Simplify the ipv6 enabling/disabling. 2016-08-08 18:17:52 +02:00
Andrea Dell'Amico 80605e8530 library/roles/sshd_config/defaults/main.yml: More restrictive defaults for the ssh daemon. 
library/roles/ubuntu-deb-general/meta/main.yml: Always run sshd_config.
 2016-08-02 16:04:44 +02:00
Andrea Dell'Amico c34cd379db library/roles/d4s_user_services_perms/defaults/main.yml, library/roles/ubuntu-deb-general/defaults/main.yml: Fix the same typo, in two different places. 2016-07-28 15:34:55 +02:00
Andrea Dell'Amico b0431d49ac library/roles/ubuntu-deb-general: Increase the root files descriptors limits to 8192. 
library/roles/d4s_user_services_perms: Increase the d4science user files descriptor limits to 16000.
 2016-07-26 12:51:34 +02:00
Andrea Dell'Amico 2500422287 library/roles/ubuntu-deb-general/defaults/main.yml: Do not run by default the task that disables services. 2016-07-12 16:37:27 +02:00
Andrea Dell'Amico 965d6bf6ae library/roles/ubuntu-deb-general/defaults/main.yml: Install xmlstarlet. 
library/roles/smartgears: Change the default versions to the new production ones.
library/roles/smartgears/smartgears/tasks/smartgears-app.yml: Task that sets the loglevel. The default is WARN.
 2016-07-07 17:39:27 +02:00
Andrea Dell'Amico 68f076b334 library/roles: nagios-plugins-contrib is not available on ubuntu 12.04 2016-06-21 14:03:02 +02:00
Andrea Dell'Amico 41004de7ee library/roles/openvpn, library/roles/ubuntu-deb-general: The CA file that contains both the letsencrypt full chain and the INFN ca is now installed by the ubuntu-deb-general role. 2016-06-13 16:55:25 +02:00
Tommaso Piccioli 6b711b6535 munin IP entry fixed 2016-06-06 17:04:01 +02:00
Andrea Dell'Amico 5e6406b1df d4science-ghn-cluster/group_vars/tagme: Install as smartgears node. 
d4science-ghn-cluster/elasticsearch-cluster.yml: New elasticsearch node for the production environment.
d4science-ghn-cluster/smartgears-node*.yml: separate the standard and "upgrade" playbooks.
 2016-05-06 16:27:32 +02:00
Andrea Dell'Amico 34963cc94d library/roles/letsencrypt-acmetool-client: Fix the initialization procedure. 
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: A link to the fullchain was missing.
 2016-05-06 13:22:34 +02:00
Andrea Dell'Amico 19508aee71 library/roles/ubuntu-deb-general: Fix the certificates' link paths. 2016-05-06 11:42:06 +02:00