From 13f0332fa18aa42e87ceabe572c3017a92200dda Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Wed, 29 May 2019 00:07:39 +0300
Subject: [PATCH] create rsyslog role which logs everything to /var/log/all.log

---
 roles/base/tasks/RedHat.yml     |  1 +
 roles/rsyslog/files/logrotate   |  6 ++++++
 roles/rsyslog/handlers/main.yml |  5 +++++
 roles/rsyslog/tasks/main.yml    | 31 +++++++++++++++++++++++++++++++
 4 files changed, 43 insertions(+)
 create mode 100644 roles/rsyslog/files/logrotate
 create mode 100644 roles/rsyslog/handlers/main.yml
 create mode 100644 roles/rsyslog/tasks/main.yml

diff --git a/roles/base/tasks/RedHat.yml b/roles/base/tasks/RedHat.yml
index 834f977..328b751 100644
--- a/roles/base/tasks/RedHat.yml
+++ b/roles/base/tasks/RedHat.yml
@@ -42,6 +42,7 @@
     name: "{{ role }}"
   with_items:
     - iptables
+    - rsyslog
     - selinux
   loop_control:
     loop_var: role
diff --git a/roles/rsyslog/files/logrotate b/roles/rsyslog/files/logrotate
new file mode 100644
index 0000000..0f2d1b1
--- /dev/null
+++ b/roles/rsyslog/files/logrotate
@@ -0,0 +1,6 @@
+/var/log/all.log {
+    create 0640 root root
+    postrotate
+        /bin/kill -HUP `cat /var/run/syslogd.pid 2> /dev/null` 2> /dev/null || true
+    endscript
+}
diff --git a/roles/rsyslog/handlers/main.yml b/roles/rsyslog/handlers/main.yml
new file mode 100644
index 0000000..6500301
--- /dev/null
+++ b/roles/rsyslog/handlers/main.yml
@@ -0,0 +1,5 @@
+---
+- name: restart rsyslog
+  service:
+    name: rsyslog
+    state: restarted
diff --git a/roles/rsyslog/tasks/main.yml b/roles/rsyslog/tasks/main.yml
new file mode 100644
index 0000000..9d279ce
--- /dev/null
+++ b/roles/rsyslog/tasks/main.yml
@@ -0,0 +1,31 @@
+---
+- name: install packages
+  package:
+    name: "{{ item }}"
+    state: installed
+  with_items:
+    - rsyslog
+    - rsyslog-gnutls
+
+- name: configure all.log
+  copy:
+    dest: /etc/rsyslog.d/all.log.conf
+    content: "*.* /var/log/all.log\n"
+    mode: 0644
+    owner: root
+    group: "{{ ansible_wheel }}"
+  notify: restart rsyslog
+
+- name: enable rsyslog service
+  service:
+    name: rsyslog
+    state: started
+
+- name: enable all.log rotation
+  copy:
+    dest: /etc/logrotate.d/syslog.all
+    src: logrotate
+    mode: 0644
+    owner: root
+    group: "{{ ansible_wheel }}"
+