diff --git a/README.md b/README.md index 8e8455d3..0859ba00 100644 --- a/README.md +++ b/README.md @@ -106,7 +106,7 @@ cela rendre accessible le LDAP sur votre machine, en ouvrant dans un terminal à côté : ```bash -ssh -L 1636:tealc.adm.crans.org:636 tealc.adm.crans.org +ssh -L 1636:wall-e.adm.crans.org:636 wall-e.adm.crans.org ``` Pour que la connexion puisse fonctionner, vous aurez besoin du paquet diff --git a/group_vars/all/borg.yml b/group_vars/all/borg.yml index fc64d92e..e9142089 100644 --- a/group_vars/all/borg.yml +++ b/group_vars/all/borg.yml @@ -9,8 +9,8 @@ glob_borg: - /backup/borg-server - /backup/borg-adh remote: - - borg@backup-ft.adm.crans.org:/backup/borg-server/{{ ansible_hostname }} - - borg@backup-thot.adm.crans.org:/backup/borg-server/{{ ansible_hostname }} + - ssh://borg@backup-ft.adm.crans.org/backup/borg-server/{{ ansible_hostname }} +# - ssh://borg@backup-thot.adm.crans.org/backup/borg-server/{{ ansible_hostname }} retention: - ["daily", 4] - ["monthly", 6] diff --git a/group_vars/onlyoffice.yml b/group_vars/onlyoffice.yml new file mode 100644 index 00000000..6a7b69ce --- /dev/null +++ b/group_vars/onlyoffice.yml @@ -0,0 +1,4 @@ +--- +glob_onlyoffice: + server: + port: 8080 diff --git a/host_vars/eclaircie.adm.crans.org.yml b/host_vars/eclaircie.adm.crans.org.yml new file mode 100644 index 00000000..9b46ec92 --- /dev/null +++ b/host_vars/eclaircie.adm.crans.org.yml @@ -0,0 +1,16 @@ +--- +interfaces: + adm: ens18 + san: ens19 + srv_nat: ens20 + +loc_unattended: + reboot: true + +loc_needrestart: + override: [] + +loc_ldap: + base_dn: "{{ vault.slapd.re2o.admin.binddn }}" + password: "{{ vault.slapd.re2o.admin.bindpass }}" + uri: "ldap://{{ query('ldap', 'ip4', 'yson-partou', 'adm') }}" diff --git a/host_vars/tealc.adm.crans.org.yml b/host_vars/tealc.adm.crans.org.yml index 8618f5ad..902a71ac 100644 --- a/host_vars/tealc.adm.crans.org.yml +++ b/host_vars/tealc.adm.crans.org.yml @@ -21,6 +21,8 @@ loc_postgres: - db: roundcube user: roundcube map: {name: webmail, system: www-data, pg: roundcube} + - {db: onlyoffice, user: onlyoffice} + - {db: nextcloud, user: nextcloud} - {db: owncloud, user: owncloud} - {db: cas, user: cas} - {db: hedgedoc, user: hedgedoc} diff --git a/hosts b/hosts index 98babe28..e06db2fa 100644 --- a/hosts +++ b/hosts @@ -165,6 +165,9 @@ wiki [ntp_server] eclat.adm.crans.org +[onlyoffice] +chene.adm.crans.org + [opendkim:children] mailman postfix diff --git a/roles/onlyoffice/handlers/main.yml b/roles/onlyoffice/handlers/main.yml new file mode 100644 index 00000000..2e593d34 --- /dev/null +++ b/roles/onlyoffice/handlers/main.yml @@ -0,0 +1,5 @@ +--- +- name: Restart nginx + service: + name: nginx + state: restarted diff --git a/roles/onlyoffice/tasks/main.yml b/roles/onlyoffice/tasks/main.yml index 0dff11be..9164d29b 100644 --- a/roles/onlyoffice/tasks/main.yml +++ b/roles/onlyoffice/tasks/main.yml @@ -20,6 +20,7 @@ owner: root group: root +# L'installation de onlyoffice ne marche pas, il faut la faire à la main - name: Install onlyoffice apt: update_cache: true @@ -38,3 +39,10 @@ src: update-motd.d/05-service.j2 dest: /etc/update-motd.d/05-onlyoffice mode: 0755 + +- name: nginx configuration + template: + src: nginx/default + dest: /etc/nginx/sites-available/default + mode: 0755 + notify: Restart nginx diff --git a/roles/onlyoffice/templates/nginx/default b/roles/onlyoffice/templates/nginx/default new file mode 100644 index 00000000..3a919def --- /dev/null +++ b/roles/onlyoffice/templates/nginx/default @@ -0,0 +1,15 @@ +{{ ansible_header | comment }} + +server { + listen 80 default_server; + listen [::]:80 default_server; + + index index.html index.htm index.nginx-debian.html; + + server_name _; + + location / { + proxy_pass "http://localhost:{{ glob_onlyoffice.server.port }}"; + } + +}