Zolfa
a76d3c0d44
roles/matrix-synapse: better ldap integration
read password from config file instead of generating one new every time
4 years ago
Zolfa
96aba4b73e
roles/*: tags refactoring
4 years ago
Zolfa
375d1db38b
roles/riot-web: update to 1.6.8
4 years ago
Zolfa
16279790a0
roles/icinga2: update to php7.4
4 years ago
Zolfa
14dbd2059e
roles/icinga2: read ldap secret from config file
4 years ago
Zolfa
e6e5388b22
ldap: use `uid` instead of `cn` for usernames
4 years ago
Zolfa
996ee61205
roles/ldap/acl: rules for group (non root) sub-admins
4 years ago
Zolfa
21ca2fb0a9
roles/service: linux alpine support
4 years ago
Zolfa
fd02d01aaa
roles/onlyoffice: fix to run 5.5.3
4 years ago
Zolfa
b01feabffb
backup status monitoring
4 years ago
Zolfa
cec0b7cf50
roles/borg[server|repo]: new roles!
4 years ago
Zolfa
454bf96086
roles/nextcloud: ldap tunings
4 years ago
Zolfa
849e99d150
roles/nextcloud: bumps to .5 and php 7.4
Plus some php cache tunings
4 years ago
Zolfa
507072ba09
roles/icinga2: add dns monitoring for web services
4 years ago
Zolfa
e6f1e96a6c
roles/coturn: add support for alpine linux
4 years ago
Zolfa
48a365730f
roles/lxc_guest: add support for alpine linux vm
4 years ago
Zolfa
5efe297f0c
roles/icinga2: support for backup ldap servers
4 years ago
Zolfa
5278d25567
roles/icinga2: improved web service syntax
http external web services are monitored as separeted host
4 years ago
Zolfa
db3c3009c3
roles/coturn: use only loopback topology
To avoid excessive consumption of UDP port that seems to be detected
and blocked by SIAF upstream firewall.
Only loopback relay is permitted, so the only TURN Topology allowed
is:
Forward:
Client 1 <--TURN--> (udp/88) Server <--RTP--> Server (udp/88) <--TURN--> Client 2
Topologies like:
Client 1 <--TURN--> (udp/88) Server (udp/>10000) <--RTP--> Client 2
Are not allowed.
4 years ago
Zolfa
3f8db5cc20
roles/ldap: improved log and repl fix
4 years ago
Zolfa
ca11d57162
roles/onlyoffice: new role !
4 years ago
Zolfa
35bc3004d3
roles/etherpad: new role !
4 years ago
Zolfa
cf34d9522c
roles/ldap: monitoring fact added
4 years ago
Zolfa
42212333a4
roles/icinga2: ssh control persist and ldap checks
4 years ago
Zolfa
78dfe4819f
roles/ldap: add syncrepl support
4 years ago
Zolfa
11fc50313e
roles/ldap: test_user instead of pippo
4 years ago
Zolfa
aac0856524
roles/nextcloud: fix folder permission
4 years ago
Zolfa
26097f8b44
roles/lxc and prepare host: apt autorefresh
4 years ago
Zolfa
4ce04659c4
roles/nextcloud: add alternate fqdns support
4 years ago
Zolfa
e8383499bd
roles/nginx: add tls 1.2 support
4 years ago
Zolfa
caa2cba6bf
roles/nginx: add alternate fqdn variable
4 years ago
Zolfa
8e84130b2f
roles/dns_record: add host default
4 years ago
Zolfa
041a842571
roles/ca_cert: role variable scope
Put some variable in ./vars/main.yaml scope to avoid change in one
role import overwriting all successive use.
4 years ago
Zolfa
80b5d67ad0
roles/certbot: zero downtime, reload only
Do not stop the webserver before performing HTTP challenge (challenge
is on port 80, webserver should be listening on port 443 only).
As post-renewal hook just reload the webserver, don't restart.
4 years ago
Zolfa
19f07539e0
roles/certbot: add alternate fqdns variable
4 years ago
Zolfa
3707cf056e
roles/ldap: prepare for bump to ansible 2.10
5 years ago
Zolfa
d8674388f8
roles/nextcloud: use ldap username instead of uuid
Don't use random uuid as internal user refs for LDAP users, otherwise
administration from the web interface become impossible.
5 years ago
Zolfa
423ea9a189
roles/gitlab: update cache after apt
5 years ago
Zolfa
d2ef029311
fixup! monitoring: new host template
5 years ago
Zolfa
b478954cb6
roles/dns_record: use full fqdn in hosts file
5 years ago
Zolfa
def1bfe428
roles/icinga2: fix for debian bullseye
nagios-plugins-contrib not available on bullseye
5 years ago
Zolfa
0d032a9e2b
fixup! roles/nextcloud: ldap groups memberof overlay fix
5 years ago
Zolfa
6db052e8a7
monitoring: new host template
5 years ago
Zolfa
80f8f61502
roles/icinga2: new templates configuration
Improved automatic settings for ssh agent.
Load and mem services against `physical` machine and not lxc guest.
5 years ago
Zolfa
599e0b8996
roles/lxc_guest: add unprivileged support
5 years ago
Zolfa
2c3d068809
roles/ldap: fix acl to add user to groups
5 years ago
Zolfa
2754e1b597
roles/ldap: fix logging
5 years ago
Zolfa
a3dd2cca7c
roles/ldap: add servers
5 years ago
Zolfa
267ff56235
roles/ca_cert: custom algorithm and broker chain
Allows custom (non-ed25519) algorithm and verification of broken trust
chain, to work with current stable ca_manager implementation.
5 years ago
Zolfa
6eb3fd6125
roles/nextcloud: ldap groups memberof overlay fix
5 years ago