bec7f3a84d
base: Use copy instead of file
2020-09-01 20:18:14 +00:00
f1468b0f1f
base: Use explicit package names for OpenBSD
2020-09-01 20:16:33 +00:00
f60fb7f88c
Force python3 install when provisioning OpenBSD
2020-09-01 20:15:15 +00:00
51aa0a709e
selinux: lint fixes
2020-09-01 19:21:18 +00:00
55d7d954b3
ldap_netdb: Initial version of role
2020-09-01 18:12:21 +00:00
7b201b31da
collab: Add missing srcdir and remove swap file
2020-08-31 00:21:37 +00:00
9dd83a8146
Lint fixes
2020-08-31 00:20:22 +00:00
c9b21a3286
Add ansible_certificate custom fact
2020-08-29 15:55:51 +00:00
0ae634aed2
Add vmhost02.home.foo.sh
2020-08-29 15:55:16 +00:00
aac14db657
ansible-host: Publish ansible facts with nginx
2020-08-29 13:43:21 +00:00
88157dcc91
collab: Initial version of role
2020-08-28 16:09:53 +00:00
99a88e1baa
Add temporary ssh config for adm hosts
...
* Route vmhost01 through ssh until it gets relocated
* Disable ip host key checking until we get ssh host certificates
2020-08-28 15:44:29 +00:00
acbe47c53f
Add make to adm hosts
2020-08-28 15:34:03 +00:00
13d07b7a6d
Rename moin group/hosts to collab
2020-08-28 12:58:54 +00:00
f6aed5faad
Add collab.foo.sh site to proxies
2020-08-28 12:56:05 +00:00
dd2b5c6a69
apache: Remove Procotols option
...
CentOS 7 doesn't support Protocols definition at all. Also as we
are running Apache only behind proxies all requests are HTTP/1.1
anyway.
2020-08-28 10:57:39 +00:00
fbc8fa55c5
Add moin host group
2020-08-28 10:41:27 +00:00
5c62106142
ansible-host: Use ssh pipelining
2020-08-28 10:40:57 +00:00
e7aa1c9b73
apache: Drop back to Mozilla intermediate
...
Looks like our proxies don't support modern settings yet.
2020-08-28 10:13:29 +00:00
47da9470a6
apache: Allow access to web root
2020-08-28 10:10:57 +00:00
bace8a39b4
apache: Just use Mozilla recommended settings
...
Removed all RedHat default settings and just added Mozilla recommended
modern settings.
2020-08-28 10:05:44 +00:00
affeddd2cc
apache: Require client certificate authentication
2020-08-28 09:58:36 +00:00
480822619d
apache: Initial version of module
2020-08-28 09:52:02 +00:00
677db41af0
Add devel01 to proxy infra
2020-08-28 08:27:50 +00:00
a3b3e91b09
Store only ed25519 key during provisioning
2020-08-28 08:17:48 +00:00
026e077fc7
Add devel01.home.foo.sh host for dev purposes
...
This host is intended for development purposes and is not included
in default playbooks. Start with:
ansible-playbook playbooks/devel.yml -i hosts.devel
2020-08-28 07:52:56 +00:00
9532fa165e
ansible-host: Add missing bashrc file
2020-08-28 07:32:56 +00:00
18919643d9
base: Really disable rsa key and not just say so
2020-08-28 07:29:59 +00:00
cf76184a12
Fix CentOS 7 mirror location
2020-08-27 19:01:31 +00:00
526a192018
ansible-host: Make sure that ssh-agent is running for root
2020-08-27 18:47:49 +00:00
8ecbc19c75
ansible-host: Remove some packages not related to ansible
2020-08-27 18:26:57 +00:00
d759e5d4db
Rename private directory
2020-08-27 18:16:28 +00:00
602cc4dfc6
certbot: Add missing config file and lint fixes
2020-08-27 21:14:36 +03:00
b81950c5b2
ansible-host: Don't update local ansible repo
2020-08-27 21:13:31 +03:00
fa43cc36da
Add certbot role to adm hosts
2020-08-27 20:51:15 +03:00
5e1f521eb6
certbot: Initial version of role
2020-08-27 20:50:57 +03:00
cb51dc186c
network: Fix default network_interfaces variable
2020-08-27 17:47:09 +00:00
c80eca3d85
New implementation of network interfaces
...
Combine interfaces and network_ether_interfaces into one common
variable network_interfaces. Provisioning uses format:
network_interfaces:
- device: device name eg. vio0 or eth0
vlan: vlan id for this interface
mac: mac address for interface (optional)
Additionally network role will use more settings to configure
interface.
2020-08-27 17:42:07 +00:00
78c9a2eaf1
Don't hardcode private dir to vm-create
2020-08-27 12:41:16 +00:00
fc25e0a108
Add support to provision OpenBSD KVM guests
2020-08-27 12:40:17 +00:00
d9f009565c
ansible-host: Don't print skipped hosts
2020-08-27 14:59:37 +03:00
ee03bd3cb7
ansible-host: More fixes to support out of box install
2020-08-27 14:43:19 +03:00
00bdcfb7de
selinux: Fix python package name for EL8
2020-08-27 14:35:31 +03:00
098ab32a78
Don't hardcode private directory path
2020-08-27 14:29:35 +03:00
f14bb25ade
nginx/site: Add support for self signed certs
2020-08-27 13:45:19 +03:00
e672015a1f
nginx: Use alias for certbot host
2020-08-27 12:00:28 +03:00
ee23e2120b
ansible-host: Add missing virt-install
2020-08-26 23:46:18 +03:00
398bbf5a32
ansible-host: Install more tools
2020-08-26 23:40:52 +03:00
d09ad303dc
ansible-host: Fix private directory link
2020-08-26 23:31:20 +03:00
eb92f9f7bd
add adm01.home.foo.sh
...
Temporarily running in vmhost02
2020-08-26 23:26:00 +03:00
