crans
/
ansible
mirror of http://gitlab.adm.crans.org/nounous/ansible.git
19
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,439 Commits
12 Branches
0 Tags
7.9 MiB
Commit Graph

804 Commits (20ba82fa4e1bbd829bee7dc4b191f0fa87a2ce67)

Author SHA1 Message Date
_shirenn 9e5d931b06
[rsyslog-client] PEPCRANS + cachan 2021-06-21 10:53:09 +02:00
_shirenn 2095ae8f19
[rsyslog_server] pep-cransified + gulp 2021-06-21 10:53:09 +02:00
_shirenn 44f7e0285c
[prefix_delegation] adds a service for prefix_delegation on routeur-gulp 2021-06-21 10:53:08 +02:00
_shirenn f7347e41d2
[monitoring] PEPCRANS + monitoring of cachan infra 2021-06-21 10:53:08 +02:00
_shirenn 3d528a1891
[borg] Migration of zephir and omnomnom 2021-06-21 10:53:08 +02:00
_shirenn 1837a8a90d
[crans-scripts] move the scripts to /usr/local/src/scripts 2021-06-21 10:53:08 +02:00
_shirenn 60c9f7579b
[re2o] install correct version of boostrap3 2021-06-21 10:53:08 +02:00
_shirenn 0e396ce23b
[radius] update 2021-06-21 10:53:07 +02:00
_shirenn 03a0dbfdca
[bird] PEPED 2021-06-21 10:53:07 +02:00
_shirenn b8e57e9627
[service] create a generic role for services and apply it to dhcp 2021-06-21 10:53:07 +02:00
_shirenn 821330bf99
[radvd] pep-crans 2021-06-21 10:53:07 +02:00
_shirenn 9190313690
[postgresql] dont restart postgres, only reload it 2021-06-21 10:53:07 +02:00
_shirenn 57b72e53cc
[re2o] updating variables 2021-06-21 10:53:07 +02:00
_shirenn 5096de1a6a
[psql] Refactoring 2021-06-21 10:53:06 +02:00
Yohann D'ANELLO f41ee5cf3d [re2o] Add python3-netaddr as re2o dependency 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:52:01 +00:00
Yohann D'ANELLO 3a9eb75545 [re2o] Pin django-bootstrap3 version 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:52:01 +00:00
Yohann D'ANELLO 7ea444f02e [re2o-front] Use generic nginx role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:52:01 +00:00
Yohann D'ANELLO 154b9069e6 [galene] Move configuration directory in /var/lib/galene 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:49:52 +00:00
Yohann D'ANELLO ceb8dc644c [galene] Fix systemd unit 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:49:52 +00:00
Yohann D'ANELLO 6420fe0afa [galene] Put configuration into /etc/galene 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:49:52 +00:00
Yohann D'ANELLO dd2d39297e [galene] Deploy Galène 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:49:52 +00:00
Yohann D'ANELLO 1e97a98491 [apt] Debian Security changed its naming convention since Bullseye 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:48:42 +00:00
Yohann D'ANELLO 86b8424972
[Ninjabot] NinjaBot requires dateutil 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-07 15:05:19 +02:00
_shirenn 2eb57a975d moved nounou homes 2021-05-12 18:49:11 +02:00
_shirenn eacbef7917 nounou → _nounou 2021-05-12 16:14:29 +02:00
_shirenn 385650b951 [re2o-firewall] goodbye 2021-05-12 16:10:07 +02:00
_shirenn 404ed06542 [re2o-home] goodbye 2021-05-12 16:06:18 +02:00
_shirenn a6aa20ca64 [re2o-dns] goodbye 2021-05-12 16:04:31 +02:00
_benjamin bd041c8dc7 [home] Use new home script 2021-04-29 14:38:56 +02:00
_benjamin 7a2394e1e0 [inspircd] Refresh certificate every month 2021-04-23 15:36:34 +00:00
Yohann D'ANELLO 4178285249 [opendkim] Fix trusted hosts 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 1785d7f095 [mailman] Setup DKIM configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO c3cd94f6e6 [opendkim] Pepcransification 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO abbfd96a37 [mailman] Mailman is relayed 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 6c038c10b4 [mailman] Symlink mailman-web is included in latest version 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO e9f1cf265b [mailman] Install dedicated modules instead of sourcing them from /usr/scripts 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 77d292713f [mailman] Use multiple domains for mailman-web 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO b085b774ad [mailman] variable postfix.mailman is now useless 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 07ab008447 [mailman3] Run django-admin commands as www-data 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO ae4aa2b9e2 [mailman3] Mailman 3 is translated under Bullseye 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO ef172cbf49 [Mailman3] Collect static files 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 5c939e45e3 [mailman3] IPython is pretty 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 95d6086863 [mailman3] Automatically apply migrations and compress static files 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO ee31feffe9 [mailman3] Add mailman-web shortcut for Django interaction 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 79ae6fa60a [mailman3] Update postfix configuration of Redisdead 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 20efa747fc [mailman3] Don't deploy postgresql with mailman3 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO f2a7114ecf [mailman3] Install django-allauth-cas from PIP 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 90a6c623ed [mailman3] Use nginx role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO b74d5e0bf1 [mailman3] Drop mailman2 configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 23a02adf11 [mailman3] Pepcransification 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
ynerant c6ae645459 [mailman3] Réparation a posteriori du chemin du certificat 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 32492e0e7e [mailman] Install sassc in order to compile css files 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 4b76b1a7bf [mailman] Use pepcransification of certbot 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO ad4f625992 [mailman] Setup database host 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 368bdfe5ed [mailman3] Apply permissions to the folder /var/lib/mailman3 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO b847a41846 [logos] Use custom role to deploy logos 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-24 15:26:28 +00:00
Yohann D'ANELLO 62655644b6 [etherpad] Automatically install ep_delete_after_delay module if necessary 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-23 10:19:24 +00:00
Yohann D'ANELLO 3d44998c5a [etherpad] PEPCRANSIFICATION 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-23 10:19:24 +00:00
Yohann D'ANELLO 5b52a5eeab [etherpad] Deploy a second instance 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-23 10:19:24 +00:00
Yohann D'ANELLO ca2d38042a [moinmoin] Only permit subscriptions from ENS, don't allow public navigation 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-15 09:53:06 +00:00
Yohann D'ANELLO 7cff2ba05b
[prometheus-nginx] Ensure that nginx is installed, e.g. in root playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-15 10:50:29 +01:00
Yohann D'ANELLO 0c363aabf3
[moinmoin] Cr@ns -> Crans 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-12 11:30:16 +01:00
Yohann D'ANELLO 43a1b5bb58
[moinmoin] Fix subnets for ENS and Aurore 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-12 11:26:13 +01:00
Yohann D'ANELLO f75c12fb63
[moinmoin] Fix sitemap path 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-08 09:40:15 +01:00
Yohann D'ANELLO acd1be606e
[moinmoin] Install missing python2 dependencies 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-06 10:18:06 +01:00
Yohann D'ANELLO 56b7635d99
[moinmoin] Missing import 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-06 10:15:30 +01:00
Yohann D'ANELLO e76beab84f
[moinmoin] Hi, it's me! 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-06 10:12:58 +01:00
Yohann D'ANELLO 66deecd26f
[moinmoin] Don't speak too loudly, wget. Take example on curl 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-06 10:09:12 +01:00
Yohann D'ANELLO 1ba1a65ff2
[moinmoin] Nice to meet you /usr/bin/wget 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-06 09:54:24 +01:00
Yohann D'ANELLO f9cc32b71b
[Jitsi] Put configuration in group vars 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 18:08:27 +01:00
Yohann D'ANELLO b34b1aac4f
[Jitsi] Remove dependencies that not in the good role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 18:03:29 +01:00
Yohann D'ANELLO 3deae233b1
[Jitsi] Add Jitsi role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 16:12:43 +01:00
Yohann D'ANELLO 1e0f84a6e5
[certbot] Remove obsolete DNS lookup 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:37:04 +01:00
Yohann D'ANELLO 870cdd163b
[certbot] No change when certificates are already renewed 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:36:29 +01:00
Yohann D'ANELLO 6054b7a545
[nginx] P-Real-IP -> X-Real-IP 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 10:56:01 +01:00
_benjamin 6957939ffc [anope] Deploy Anope on irc 2021-03-02 11:44:08 +00:00
Yohann D'ANELLO 13c97d3e07 [scripts] Ansible is buggy, git has no change if the commit hash did not change 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 5aeefd730e [root] Sputnik is using deb.debian.org 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 13b0367d46 [prometheus-nginx] Change exposed port for a non-standard port 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
_shirenn f5e7405188 [root] split root play and deploy root password 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 0c3e56fc2c [ldap] ldap_server is slapd 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 4f8cf7f901 [prometheus] Add missing webhook for alertmanager 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 0a794d590c [prometheus] Restart nginx before prometheus-nginx-exporter 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO b171d58e4c [borg] Don't bin borgbackup from bullseye if we are already under bullseye 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
ynerant 02faa09e61 [ntp-client] Install systemd-timesyncd on Bullseye 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
ynerant 61cf1eb892 [prometheus] Install prometheus-node-exporter-collectors on bullseye 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
_benjamin 6026f8d84e [inspircd] Deploy InspIRCd on irc 2021-02-28 09:10:21 +01:00
_benjamin 83e2460b65 [home] Use full path for zfs 2021-02-26 17:00:13 +01:00
_benjamin a40404314f [ssh_known_hosts] Add hostname to ssh_known_hosts 2021-02-25 14:50:57 +01:00
_shirenn 5661bb4bf6 [dhcp] Restart isc-dhcp-server only if it is already running 2021-02-23 23:28:20 +01:00
Yohann D'ANELLO 2844df31b2
[gitlab] Fix irker configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:35:17 +01:00
Yohann D'ANELLO 98eaeaa53b
[gitlab] Install irker from Debian Sid to add IRC webhooks 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:58 +01:00
ynerant 7eae75a470
[gitlab] Enable local nginx server, don't server HTTPS port 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00
ynerant 5786663cfb
[gitlab] Disable grafana server 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00
ynerant a8e90e1ea9
[gitlab] Update gitlab default configuration 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00
ynerant 065fe78435
[gitlab] Import Gitlab GPG public key 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00
_shirenn b152c48ed3
[gitlab] smtp server and https push 2021-02-22 23:29:56 +01:00
Yohann D'ANELLO 46f1627c02
[gitlab] Fix gitlab configuration file path 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:56 +01:00
Yohann D'ANELLO 73a6b5afb4
[gitlab] Install gitlab 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:56 +01:00
Yohann D'ANELLO f07bb8b749
[Gitlab] Reconfigure Gitlab after deploying its configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:56 +01:00