ansible

Author	SHA1	Message	Date
Timo Makinen	a1c96a5369	Support OpenSMTPd only on OpenBSD	2020-08-26 22:53:11 +03:00
Timo Makinen	c8f65fc7bd	Initial version of postfix role	2020-08-26 22:47:04 +03:00
Timo Makinen	f490804106	Disable rsa key from ssh host keys	2020-08-26 22:03:18 +03:00
Timo Makinen	b7e0ef18c5	Reorder installs to get selinux support earlier Ansible cannot set file contexts unless selinux python bindings are installed.	2020-08-26 21:53:48 +03:00
Timo Makinen	08d1495026	syslogd: lint fixes	2020-02-28 00:09:17 +02:00
Timo Makinen	302427c85f	selinux: update module to support centos 8	2020-02-28 00:07:10 +02:00
Timo Makinen	3dbb65302e	base: fix warning of cron job hour value (should be string)	2020-02-27 14:12:09 +02:00
Timo Makinen	08466f3143	base: remove rcs from default installs	2020-02-27 14:08:12 +02:00
Timo Makinen	1fcc2dd407	add remote logging support to rsyslog	2019-07-19 18:04:53 +03:00
Timo Makinen	6085718f5d	enable remote logging for syslogd	2019-07-19 17:55:54 +03:00
Timo Makinen	d11300df60	add syslog support for proxies	2019-07-19 17:55:22 +03:00
Timo Makinen	7088bc9b14	add server support for syslogd	2019-07-19 17:16:59 +03:00
Timo Makinen	9b3bfe9bc8	nginx: use mozilla recommended ssl options	2019-07-05 10:20:25 +03:00
Timo Makinen	6cd29b72a7	nginx: enable http2 protocol	2019-07-05 10:20:00 +03:00
Timo Makinen	84db430875	add foo.sh layout to cups web interface	2019-06-14 11:20:51 +03:00
Timo Makinen	a496da62b0	add more cups configuration	2019-06-14 11:09:23 +03:00
Timo Makinen	5afff575c5	change cups authentication to use kerberos	2019-06-14 10:12:07 +03:00
Timo Makinen	8920d79078	selinux file context fixes for nginx data directories	2019-06-11 15:53:55 +03:00
Timo Makinen	5016b70292	make sure that selinux contexts are correct in ldap data directory	2019-06-11 15:52:53 +03:00
Timo Makinen	020a10677b	add ldap/nss to cups/server dependency to get group access correct	2019-06-10 21:06:00 +03:00
Timo Makinen	9fc02e7bef	add role ldap/nss	2019-06-10 21:05:08 +03:00
Timo Makinen	998dc0b643	install htop on all hosts	2019-06-10 19:24:15 +03:00
Timo Makinen	3129b5e58c	first version of cups server role	2019-06-10 19:23:36 +03:00
Timo Makinen	6541059276	set sasl-host to get kerberos tickets match hostname	2019-06-08 17:28:58 +03:00
Timo Makinen	d599adcd95	enable ldap slave	2019-06-08 17:24:42 +03:00
Timo Makinen	8335a9723e	copy keytab instead of generating it	2019-06-08 17:23:51 +03:00
Timo Makinen	b13fbe1c2a	add support for ldap replication	2019-06-06 22:11:10 +03:00
Timo Makinen	b6b3dbbca3	more authz regexp base dn's for gssapi authentication	2019-06-06 02:30:56 +03:00
Timo Makinen	da6ed9d4ac	force sasl to use external (certificates) when connecting ldap as root	2019-06-06 02:29:59 +03:00
Timo Makinen	1a22ce543b	lint fixes	2019-06-06 02:04:51 +03:00
Timo Makinen	d512c8b8bd	add gssapi auth support for ldap server	2019-06-06 01:58:04 +03:00
Timo Makinen	9cd3910f42	rename keytab to be more logical	2019-06-06 01:56:52 +03:00
Timo Makinen	b533542b57	add support for defining multiple upstream servers for proxy sites	2019-06-06 01:56:00 +03:00
Timo Makinen	11e4a82a35	configure authz mappings for gssapi authenticated users	2019-06-06 01:54:54 +03:00
Timo Makinen	1979925f7e	always install login/plain support for sasl	2019-06-06 01:52:36 +03:00
Timo Makinen	00f7b86de6	first version of kerberos/keytab role	2019-06-06 00:29:10 +03:00
Timo Makinen	87340a1e2a	first version of kerberos/client role	2019-06-05 20:18:39 +03:00
Timo Makinen	911332ec6f	add daily ldap database dumps to ldap master	2019-05-31 19:11:32 +03:00
Timo Makinen	80b017b5d1	write ldap datadirectory handling more cleanly	2019-05-31 18:56:24 +03:00
Timo Makinen	0163a5f932	don't use /export for ldap data directory on slaves	2019-05-31 18:34:39 +03:00
Timo Makinen	7f33b7792a	add robots.txt to git server webroot	2019-05-31 16:57:15 +03:00
Timo Makinen	2374804bfd	change kadmin to use different user than kdc when connecting to ldap	2019-05-31 02:32:57 +03:00
Timo Makinen	6c917dc696	add acl's for kadmin user	2019-05-31 02:31:58 +03:00
Timo Makinen	fbffa25346	install and configure ldapvi on ldap servers	2019-05-31 02:30:53 +03:00
Timo Makinen	4ba69d7632	add ldap indexes for kerberos kdc	2019-05-29 19:38:25 +03:00
Timo Makinen	4cac7b8bc7	finish up kdcproxy	2019-05-29 19:37:55 +03:00
Timo Makinen	2ab21a87f5	allow all users to runtime directory	2019-05-29 19:35:51 +03:00
Timo Makinen	e1311e7ccc	change kdc tcp port to listen only localhost	2019-05-29 03:19:45 +03:00
Timo Makinen	f2934aef91	add kdcproxy to kdc role	2019-05-29 03:15:49 +03:00
Timo Makinen	f1d32f86b7	added gunicorn role	2019-05-29 03:14:46 +03:00

1 2 3 4 5

233 commits