Zolfa
de3e0ac650
bulk playbooks renaming
4 years ago
Zolfa
1ea9cab1d9
playbook to upgrade os package managers
5 years ago
Zolfa
f01b9fcd2e
prepare_lxc_container: var to skip ssh config for thin vm
5 years ago
Zolfa
e095830fd8
playbook nextcloud with onlyoffice and backup
5 years ago
Zolfa
41ed7f2d7f
playbook status with ldap mirror
5 years ago
Zolfa
2fe5d4f99a
playbook ldap with replication
5 years ago
Zolfa
21ca2fb0a9
roles/service: linux alpine support
5 years ago
Zolfa
fd02d01aaa
roles/onlyoffice: fix to run 5.5.3
5 years ago
Zolfa
b01feabffb
backup status monitoring
5 years ago
Zolfa
cec0b7cf50
roles/borg[server|repo]: new roles!
5 years ago
Zolfa
454bf96086
roles/nextcloud: ldap tunings
5 years ago
Zolfa
849e99d150
roles/nextcloud: bumps to .5 and php 7.4
Plus some php cache tunings
5 years ago
Zolfa
507072ba09
roles/icinga2: add dns monitoring for web services
5 years ago
Zolfa
e6f1e96a6c
roles/coturn: add support for alpine linux
5 years ago
Zolfa
48a365730f
roles/lxc_guest: add support for alpine linux vm
5 years ago
Zolfa
5efe297f0c
roles/icinga2: support for backup ldap servers
5 years ago
Zolfa
5278d25567
roles/icinga2: improved web service syntax
http external web services are monitored as separeted host
5 years ago
Zolfa
db3c3009c3
roles/coturn: use only loopback topology
To avoid excessive consumption of UDP port that seems to be detected
and blocked by SIAF upstream firewall.
Only loopback relay is permitted, so the only TURN Topology allowed
is:
Forward:
Client 1 <--TURN--> (udp/88) Server <--RTP--> Server (udp/88) <--TURN--> Client 2
Topologies like:
Client 1 <--TURN--> (udp/88) Server (udp/>10000) <--RTP--> Client 2
Are not allowed.
5 years ago
Zolfa
3f8db5cc20
roles/ldap: improved log and repl fix
5 years ago
Zolfa
ca11d57162
roles/onlyoffice: new role !
5 years ago
Zolfa
35bc3004d3
roles/etherpad: new role !
5 years ago
Zolfa
cf34d9522c
roles/ldap: monitoring fact added
5 years ago
Zolfa
42212333a4
roles/icinga2: ssh control persist and ldap checks
5 years ago
Zolfa
78dfe4819f
roles/ldap: add syncrepl support
5 years ago
Zolfa
11fc50313e
roles/ldap: test_user instead of pippo
5 years ago
Zolfa
aac0856524
roles/nextcloud: fix folder permission
5 years ago
Zolfa
6a8ed9911d
prepare_host: typo
5 years ago
Zolfa
26097f8b44
roles/lxc and prepare host: apt autorefresh
5 years ago
Zolfa
4ce04659c4
roles/nextcloud: add alternate fqdns support
5 years ago
Zolfa
e8383499bd
roles/nginx: add tls 1.2 support
5 years ago
Zolfa
caa2cba6bf
roles/nginx: add alternate fqdn variable
5 years ago
Zolfa
8e84130b2f
roles/dns_record: add host default
5 years ago
Zolfa
041a842571
roles/ca_cert: role variable scope
Put some variable in ./vars/main.yaml scope to avoid change in one
role import overwriting all successive use.
5 years ago
Zolfa
80b5d67ad0
roles/certbot: zero downtime, reload only
Do not stop the webserver before performing HTTP challenge (challenge
is on port 80, webserver should be listening on port 443 only).
As post-renewal hook just reload the webserver, don't restart.
5 years ago
Zolfa
19f07539e0
roles/certbot: add alternate fqdns variable
5 years ago
Zolfa
3707cf056e
roles/ldap: prepare for bump to ansible 2.10
5 years ago
Zolfa
d8674388f8
roles/nextcloud: use ldap username instead of uuid
Don't use random uuid as internal user refs for LDAP users, otherwise
administration from the web interface become impossible.
5 years ago
Zolfa
423ea9a189
roles/gitlab: update cache after apt
5 years ago
Zolfa
d2ef029311
fixup! monitoring: new host template
5 years ago
Zolfa
b478954cb6
roles/dns_record: use full fqdn in hosts file
5 years ago
Zolfa
5488494efd
prepare_lxc_guest: added vm_size var
reword of task names
5 years ago
Zolfa
6ddf490a00
monitoring: increased max proc for lxc host
5 years ago
Zolfa
def1bfe428
roles/icinga2: fix for debian bullseye
nagios-plugins-contrib not available on bullseye
5 years ago
Zolfa
0d032a9e2b
fixup! roles/nextcloud: ldap groups memberof overlay fix
5 years ago
Zolfa
6db052e8a7
monitoring: new host template
5 years ago
Zolfa
80f8f61502
roles/icinga2: new templates configuration
Improved automatic settings for ssh agent.
Load and mem services against `physical` machine and not lxc guest.
5 years ago
Zolfa
599e0b8996
roles/lxc_guest: add unprivileged support
5 years ago
Zolfa
2c3d068809
roles/ldap: fix acl to add user to groups
5 years ago
Zolfa
2754e1b597
roles/ldap: fix logging
5 years ago
Zolfa
a3dd2cca7c
roles/ldap: add servers
5 years ago