tpiccioli
/
ansible-roles
forked from ISTI-ansible-roles/ansible-roles
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
2,548 Commits 1 Branch 0 Tags 298 MiB
Commit Graph

280 Commits

Author SHA1 Message Date
Andrea Dell'Amico 289d299360 Fixes #719. Spostare i ruoli in repository dedicati. 2020-06-02 16:01:07 +02:00
Andrea Dell'Amico db93e253b5 Dependencies are galaxy style roles only. 2020-05-29 13:13:12 +02:00
Andrea Dell'Amico 5a81560775 iptables: mirror the NAT rules in the FORWARD chain to allow the traffic, so that masquerade can work with the FORWARD chain in default REJECT. 2020-05-26 13:48:17 +02:00
Andrea Dell'Amico e448415ec8 sync with the d4science ansible library. 2020-05-25 19:39:43 +02:00
Andrea Dell'Amico 3e0854480e duply configuration: raise the max open files. Force a full backup regularly. 2020-05-24 13:35:59 +02:00
Andrea Dell'Amico e05633878e Refer to the remote php-fpm role. 2020-05-24 13:34:52 +02:00
Andrea Dell'Amico 50657d5f82 clamav: remove, and not just empty, the broken signature files. 2020-05-20 02:53:59 +02:00
Andrea Dell'Amico 3d543e60e4 Fixes #577. Disattivato il db clamav con le firme di scamnailer. 2020-05-20 02:37:01 +02:00
Andrea Dell'Amico 51ff938a01 Use the remote letsencrypt role. 2020-05-19 17:06:13 +02:00
Andrea Dell'Amico 480580c99e python3-env: Install wheel packages if required. 2020-05-17 18:10:01 +02:00
Andrea Dell'Amico 60de429172 letsencrypt-acme-sh-client has its own repository now. 2020-05-17 17:54:57 +02:00
Andrea Dell'Amico c6181a5d66 Add python-ipaddress, required by ansible. 2020-05-17 17:53:52 +02:00
Andrea Dell'Amico 48b75eabe4 haproxy letsencrypt hook: Fix the path to the certificates. 2020-05-15 19:01:25 +02:00
Andrea Dell'Amico 335b395927 powerdns: add tags to the tasks that install the configuration files. 2020-05-12 15:04:53 +02:00
Andrea Dell'Amico 911781c297 Remove the roles that now have their repository. 2020-04-30 15:16:39 +02:00
Andrea Dell'Amico 43b871663c clamav: explicitly wipe the scamnailer db file. 2020-04-29 14:23:53 +02:00
Andrea Dell'Amico 8dfab517e6 dovecot firewall: Fix a default. 2020-04-28 15:24:23 +02:00
Andrea Dell'Amico 12eef67ba2 php: Set the sockets permissions when a pool is configured to use them. 2020-04-27 16:45:53 +02:00
Andrea Dell'Amico fa649f5521 openvpn: add some tags. 2020-04-27 15:24:58 +02:00
Andrea Dell'Amico 55822343bb Postfix: add some tags to the sasl related tasks. 2020-04-25 17:28:08 +02:00
Andrea Dell'Amico 57c5f89740 openvpn role: fix a typo. 2020-04-25 17:27:01 +02:00
Andrea Dell'Amico ec37831b0d freeipa: Fix the letsencrypt certificates path. 2020-04-24 19:38:27 +02:00
Andrea Dell'Amico 9adfee6e21 openvpn: add nagios support. 2020-04-24 16:53:49 +02:00
Andrea Dell'Amico 4abb469672 FreeIPA: refine the role, add a command line example of a replica configuration. 2020-04-24 16:16:17 +02:00
Andrea Dell'Amico 7b870305f7 Another python package required by the ansible module. 2020-04-23 16:50:10 +02:00
Andrea Dell'Amico 445b23b941 powerdns-admin: use gunicorn instead of flask. Fix the paths, they changed in newer releases. 2020-04-22 19:26:33 +02:00
Andrea Dell'Amico 294fe526d9 More configurable options for the spamassassin plugin. 2020-04-21 19:35:08 +02:00
Andrea Dell'Amico 010579681e Fixes #633. Variable to globally define the postgresql firewall. 2020-04-20 13:06:25 +02:00
Andrea Dell'Amico ffd81aa6db Add the zabbix agent role to the bootstrap tasks. 2020-04-19 20:01:04 +02:00
Andrea Dell'Amico ecb8cabd4d Add a special case for the zabbix agent. 2020-04-19 20:00:44 +02:00
Andrea Dell'Amico a5632f404f letsencrypt: set the installation directory to the value of 'letsencrypt_acme_sh_certificates_install_dir'. 2020-04-16 14:39:36 +02:00
Andrea Dell'Amico d714e8e49a Fixes #615. Aggiungere la configurazione esplicita della CA alla configurazione di postfix. 2020-04-16 14:11:53 +02:00
Andrea Dell'Amico 0124bdbd75 Role that installs and configures phpMyAdmin. 2020-04-15 13:44:44 +02:00
Andrea Dell'Amico 587faf5555 sshd: add more limits to the 'sftp only' users. 2020-04-10 18:12:37 +02:00
Andrea Dell'Amico ae9dfca4e6 postfix and letsencrypt: use the fullchain file. 2020-04-09 16:54:35 +02:00
Andrea Dell'Amico 8b7e86a722 Fixes #577. clamav, disabilitata la signature scamnailer, il servizio è stato dismesso. 2020-04-06 20:26:42 +02:00
Andrea Dell'Amico ddc4219197 Closes #575: add sauserspref to the roundcube role. 2020-04-05 18:40:07 +02:00
Andrea Dell'Amico 5e748e6bee CKAN: fix a typo. 2020-04-03 15:21:45 +02:00
Andrea Dell'Amico 0c4c08c8a0 Role that installs and configures a eXistDB service. 2020-04-03 15:19:54 +02:00
Andrea Dell'Amico daca2d6ff8 nginx: optionally add proxy_set_header nginx-request-uri $request_uri 2020-04-03 15:16:23 +02:00
Andrea Dell'Amico 6043de35f4 IPA server: Fix the letsencrypt acme hook and the letsencrypt proxy entry for the httpd server. 2020-03-31 23:20:52 +02:00
Andrea Dell'Amico 54155b9672 nginx: It's now possible to customise the https port. 2020-03-31 16:38:07 +02:00
Andrea Dell'Amico 1f7d7ac082 elasticsearch: fix the 'transport.tcp.port' arguments syntax. 2020-03-30 18:07:19 +02:00
Andrea Dell'Amico 75f8f92822 mysql: Install the server config file into the correct place. Support SSL and letsencrypt certificates. 2020-03-30 11:38:47 +02:00
Andrea Dell'Amico ac53754be0 powerdns: more options for the 'slave' configuration. 2020-03-24 12:28:14 +01:00
Andrea Dell'Amico 5657fc35fa gitea: move to version 1.12.3. 2020-03-22 17:37:40 +01:00
Andrea Dell'Amico c5f0ee75ef openvpn: better user ccd management, option that enables the management interface, option to force the presence of a ccd entry. 2020-03-22 15:14:33 +01:00
Andrea Dell'Amico 8331f98490 Drupal: Fix some obsoleted parts, ad php-fpm as dependency, fix the php packages list. 2020-03-21 16:56:57 +01:00
Andrea Dell'Amico 4a4f623b47 apache: Fix the task that adds additional modules when we have an empty list. 2020-03-19 17:48:21 +01:00
Andrea Dell'Amico 5de6afff94 apache: ignore errors when enabling the ssl modules. The check could fail because the configuration is not ready yet. 2020-03-19 13:32:06 +01:00
Andrea Dell'Amico 37d23844e3 vsftpd: Support TLS in the Ubuntu role. 2020-03-19 13:31:38 +01:00
Andrea Dell'Amico 59717eae9c orientdb: support hazelcast in unicast/tcp mode. 2020-03-19 12:01:23 +01:00
Andrea Dell'Amico dacad8da23 nginx: more modern TLS ciphers. 2020-03-19 11:58:55 +01:00
Andrea Dell'Amico bf2d334aa8 CKAN: some cleanups, fix the version of some python modules. 2020-03-18 14:42:38 +01:00
Andrea Dell'Amico d2bcb78d80 More generic custom rules. 2020-03-16 14:18:32 +01:00
Andrea Dell'Amico f64f5ca21c Add TLS support to the CentOS vsftpd role. 2020-03-14 16:08:22 +01:00
Andrea Dell'Amico 0d5bf23f5e ELK: add tasks and templates that manage kibana, and nginx in front of it. 2020-03-13 19:47:02 +01:00
Andrea Dell'Amico 3aa4504a79 roundcube: disable the help plugin by default, it's not useful. 2020-03-12 10:42:27 +01:00
Andrea Dell'Amico a30b91640e Default to the latest version. Fix a typo. 2020-03-10 19:13:04 +01:00
Tommaso Piccioli ae28502c50 DB dump retention changed 2020-03-06 11:48:35 +01:00
Andrea Dell'Amico 65a711d387 mysql: Fixes to make it work with the new python module and with mysql 5.7. 2020-03-03 18:41:27 +01:00
Andrea Dell'Amico cadbcc5cc7 Two tasks used the copy module instead of the template one. 2020-02-27 17:19:38 +01:00
Andrea Dell'Amico ba36889c0e clamav: install perl if the unofficial signatures are enabled. 2020-02-18 14:31:01 +01:00
Andrea Dell'Amico 973faadfe2 tomcat: add tags so that we set tomcat_version when we use tomcat_conf or tomcat_javamelody. 2020-02-17 12:40:46 +01:00
Andrea Dell'Amico a5c523bb4c keepalived: put the state file under /run/keepalived and instruct systemd to create the directory. 2020-02-14 18:39:00 +01:00
Andrea Dell'Amico 47ce8bf05c simplesaml: fix a problem in the main configuration. It's now possible to enable/disable debug and error output. 2020-02-13 14:14:04 +01:00
Andrea Dell'Amico 62539644e8 solr as tomcat webapp: try to figure out the tomcat version. 2020-02-12 18:19:18 +01:00
Andrea Dell'Amico bb88b7519a mongodb: manage the keyfile needed by a cluster configuration. 2020-02-12 18:17:42 +01:00
Andrea Dell'Amico f78a20bab8 New default version for rstudio. 2020-02-12 18:14:09 +01:00
Andrea Dell'Amico 5f46719ad8 Do not fail if a plugin do not install. 2020-02-12 18:04:39 +01:00
Andrea Dell'Amico 2a188a11f4 postgresql: use the fullchain file for pgpool too. 2020-02-12 18:01:59 +01:00
Andrea Dell'Amico 4878798502 Always install python-lxml. 2020-02-12 18:00:57 +01:00
Andrea Dell'Amico f0c5a54f9d elasticsearch: support versions >= 6 2020-02-12 17:25:58 +01:00
Andrea Dell'Amico 68ba0933f0 thredds: support the configuration of a google analytics id. 2020-02-12 16:01:58 +01:00
Andrea Dell'Amico 6cbaef0857 tomcat javamelody: maven wants https now. 2020-02-12 16:00:42 +01:00
Andrea Dell'Amico 98dc9c2960 Keepalived: restart the service if the floating IPs disappear on Ubuntu 18.04. 2020-02-12 11:42:05 +01:00
Andrea Dell'Amico 1060ef9300 Fix the path of the php-fpm pid, it is now used by the systemd unit. 2020-02-07 19:35:27 +01:00
Andrea Dell'Amico 172373fb5c Fix some conditionals so that we can skip nagios. 2020-02-07 18:34:48 +01:00
Andrea Dell'Amico e433a4eeb3 Fix the creation of the letsencrypt hook for postfix. 2020-02-07 16:30:21 +01:00
Andrea Dell'Amico 94ffed10c9 acme-sh-request-cert: do not fail if there's a valid, and not expiring, certificate already. 2020-02-07 14:54:39 +01:00
Andrea Dell'Amico d019c0d8cd Fix the behaviour when we request the certificate via http. 2020-02-04 19:17:03 +01:00
Andrea Dell'Amico 2da5d26ef6 The roundcube session lifetime is now a variable. 2020-01-30 12:29:51 +01:00
Andrea Dell'Amico af32ce30bc Change the way we enable the local recipient maps. 2020-01-25 13:58:26 +01:00
Andrea Dell'Amico c90043d44a Move the max_message_size option out of the 'if' case. 2020-01-24 13:58:05 +01:00
Andrea Dell'Amico d53b569189 Manage the transport and virtual_domains maps. 2020-01-24 13:03:07 +01:00
Andrea Dell'Amico c036b0bf8b Fix the management of the size of the attachments. 2020-01-23 11:39:29 +01:00
Andrea Dell'Amico 5c6253e917 Only one nginx role. 2020-01-22 14:37:31 +01:00
Andrea Dell'Amico 4c06ae5b2d One variable to manage the max attachment size. 2020-01-20 12:27:21 +01:00
Andrea Dell'Amico e2bd95f2c2 Role that setups remote logging in rsyslog. 2020-01-17 17:30:44 +01:00
Andrea Dell'Amico 0085eaac94 Force a restart after a clamd reconfiguration. clamupdate must be added to the clamscan group. 2020-01-14 18:49:26 +02:00
Andrea Dell'Amico a411c8d68b The AlertExceedsMax value is now managed by a variable, default 'no'. 2020-01-14 16:48:37 +02:00
Andrea Dell'Amico a054e94915 Change the permissions of /var/lib/clamav so that freshclam can write into it. 2020-01-11 16:32:46 +01:00
Andrea Dell'Amico 75dd8ca0cb Fix the boolean that manages the network interfaces settings. 2020-01-08 18:49:32 +01:00
Andrea Dell'Amico ad4ed35212 Manage the smtp and submission configurations with different variables. 2020-01-08 00:23:34 +01:00
Andrea Dell'Amico ba319f76a5 php fpm pool: Log the remote client IP address correctly. 2020-01-06 17:00:19 +01:00
Andrea Dell'Amico 214cd1d03c Fix the nginx includes filenames of the new onlyoffice package 2020-01-05 19:27:39 +01:00
Andrea Dell'Amico 9170706a03 roundcube: the available skins is now a variable. Configure enigma to support multihost as an option. 2019-12-31 15:31:19 +01:00
Andrea Dell'Amico 72810580ee Refresh the CentOS php-fpm role. 2019-12-26 17:11:20 +01:00
Andrea Dell'Amico e27747426b Set the compatibility level on Ubuntu 18.04. 2019-12-19 11:21:16 +01:00
Andrea Dell'Amico 5ca80e638a Force a postfix restart after a configuration change without waiting for the handlers to kick in. Add 'compatibility_level=2' on Ubuntu 18.04. 2019-12-19 11:15:41 +01:00