crans
/
ansible
mirror of http://gitlab.adm.crans.org/nounous/ansible.git
19
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,774 Commits
12 Branches
0 Tags
7.9 MiB
Commit Graph

325 Commits (bf9cded6d571fa60e8555ec166c1c68936714544)

Author SHA1 Message Date
_shirenn 91220c5238 [routeurs] lets fix everything 2021-07-11 00:11:25 +02:00
Yohann D'ANELLO 70d335e1b8
[wireguard] Refactor role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-26 01:04:37 +02:00
_shirenn f0c6a62853 [nfs] obsolete play 2021-06-25 12:54:13 +02:00
_shirenn dafaafc187 [nfs-common] burn rpcbind to the ground 2021-06-25 12:19:02 +02:00
Yohann D'ANELLO 7ff3532bba
[grafana] Re-enable Grafana, fix logo deployment 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-25 12:05:20 +02:00
_shirenn 62a00a877e [ethercalc] PEPCRANSED 2021-06-25 11:29:14 +02:00
_shirenn 0fedc8cf42 [cameron] deploys backup and home service scripts 2021-06-25 11:18:42 +02:00
_shirenn 72fa48a15c [postfix] prevent mistakes 2021-06-25 10:46:25 +02:00
Yohann D'ANELLO 1b3bb7bc8c
[unifi] Deploy Unifi controller to the unifi group 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-25 00:21:21 +02:00
Yohann D'ANELLO 6f35dc15b2
[tv] People watch Youtube 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-25 00:13:23 +02:00
Yohann D'ANELLO 65f01fa420
[postfix] Deploy Postfix on mail servers (/\!\ playbook is noot ready) 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 23:08:20 +02:00
Yohann D'ANELLO f6b2ff4804
[ntp_server] Update adm restriction for Cachan 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 21:51:52 +02:00
Yohann D'ANELLO 20ba82fa4e
[nfs_mount] Fix configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 21:39:42 +02:00
Yohann D'ANELLO 7f8a41ce1d
[nfs_mount] Maybe access points don't need to mount any directory 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 18:06:49 +02:00
Yohann D'ANELLO 60b6c319c3
[freeradius] Fix mirror configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 16:51:05 +02:00
Yohann D'ANELLO 16cf470df5
[re2o] Fix Re2o configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 15:20:38 +02:00
Yohann D'ANELLO ada8e7abfa
[nginx] Allow to add a service_nginx 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 14:15:04 +02:00
Yohann D'ANELLO 78121f65bb
[ssh_known_hosts] Also deploy it on OVH 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:59:34 +02:00
Yohann D'ANELLO 213f618848
[prometheus] Update configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO 489d189725
Fix mirrors 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO a602075c17
[ntp] Add NTP server on eclat 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO 51c77aee0c
[sssd] Add sssd playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 13:22:21 +02:00
Yohann D'ANELLO 3d0f7a5f5f
[docker] Add firewall between Docker containers and adm network 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 11:24:56 +02:00
_shirenn d0ff9cc204
[apt] MàJ 2021-06-21 10:53:55 +02:00
_shirenn 37ea941a8d
[keepalived] https://www.youtube.com/watch?v=fNFzfwLM72c please dont die 2021-06-21 10:53:12 +02:00
_shirenn 6fa8f17d0c
[nfs-mount] generic systemd nfs mount service 2021-06-21 10:53:11 +02:00
_shirenn 7205d3b4ca
[borg] actually backup gulp 2021-06-21 10:53:11 +02:00
_shirenn 397ce6dd11
[logs] 2021-06-21 10:53:10 +02:00
_shirenn 833f4a3afb
[postgres] 2021-06-21 10:53:10 +02:00
_shirenn 3468f6a7ca
[mirror] 2021-06-21 10:53:10 +02:00
_shirenn 4a4526506d
[vsftpd] 2021-06-21 10:53:10 +02:00
Yohann D'ANELLO 4b70700526
[mtail] More configuration to select what should be monitored 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:10 +02:00
Yohann D'ANELLO 0f59004446
[monitoring] Monitor logs on gulp 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:10 +02:00
Yohann D'ANELLO 610bcfbe23
[re2o-ldap] Deploy re2o-ldap-replica on re2o-dev, use terenez as main server 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:09 +02:00
Yohann D'ANELLO 05c641fa7e
[re2o-ldap-replica] Deploy a re2o-ldap-replica 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:09 +02:00
_shirenn b14fd01ce0
migration routage 2021-06-21 10:53:09 +02:00
_shirenn d7a0a43c70
[routeurs] adds prefix_delegation to the list 2021-06-21 10:53:09 +02:00
_shirenn 24fdf21bb4
[logall-cachan] flemme de pepcrans 2021-06-21 10:53:09 +02:00
_shirenn 9e5d931b06
[rsyslog-client] PEPCRANS + cachan 2021-06-21 10:53:09 +02:00
_shirenn 2095ae8f19
[rsyslog_server] pep-cransified + gulp 2021-06-21 10:53:09 +02:00
_shirenn 44f7e0285c
[prefix_delegation] adds a service for prefix_delegation on routeur-gulp 2021-06-21 10:53:08 +02:00
_shirenn f7347e41d2
[monitoring] PEPCRANS + monitoring of cachan infra 2021-06-21 10:53:08 +02:00
_shirenn 3d528a1891
[borg] Migration of zephir and omnomnom 2021-06-21 10:53:08 +02:00
_shirenn fccda8d486
[routeurs] playbook to deploy routing 2021-06-21 10:53:08 +02:00
_shirenn 0e396ce23b
[radius] update 2021-06-21 10:53:07 +02:00
_shirenn 03a0dbfdca
[bird] PEPED 2021-06-21 10:53:07 +02:00
_shirenn b8e57e9627
[service] create a generic role for services and apply it to dhcp 2021-06-21 10:53:07 +02:00
_shirenn 821330bf99
[radvd] pep-crans 2021-06-21 10:53:07 +02:00
_shirenn 5096de1a6a
[psql] Refactoring 2021-06-21 10:53:06 +02:00
Yohann D'ANELLO 7ea444f02e [re2o-front] Use generic nginx role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:52:01 +00:00
Yohann D'ANELLO dd2d39297e [galene] Deploy Galène 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:49:52 +00:00
Yohann D'ANELLO aa011c6272 [galene] Deploy nginx and certbot 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:49:52 +00:00
_shirenn 2eb57a975d moved nounou homes 2021-05-12 18:49:11 +02:00
_benjamin bd041c8dc7 [home] Use new home script 2021-04-29 14:38:56 +02:00
Yohann D'ANELLO 1785d7f095 [mailman] Setup DKIM configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO c3cd94f6e6 [opendkim] Pepcransification 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 90a6c623ed [mailman3] Use nginx role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO b74d5e0bf1 [mailman3] Drop mailman2 configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 23a02adf11 [mailman3] Pepcransification 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 4b76b1a7bf [mailman] Use pepcransification of certbot 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO ad4f625992 [mailman] Setup database host 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 84b8f88278 [logos] Add logos for Belenios and Jitsi 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-24 15:26:28 +00:00
Yohann D'ANELLO b847a41846 [logos] Use custom role to deploy logos 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-24 15:26:28 +00:00
Yohann D'ANELLO 2e1e8d14e5 [logos] Store all Crans logos in a single directory 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-24 15:26:28 +00:00
Yohann D'ANELLO 3d44998c5a [etherpad] PEPCRANSIFICATION 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-23 10:19:24 +00:00
Yohann D'ANELLO 2321121ec0 [etherpad] Use a group for etherpad 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-23 10:19:24 +00:00
Yohann D'ANELLO 3deae233b1
[Jitsi] Add Jitsi role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 16:12:43 +01:00
Yohann D'ANELLO d9486290c2
[jitsi] Prepare Jitsi role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:45:59 +01:00
_benjamin 6957939ffc [anope] Deploy Anope on irc 2021-03-02 11:44:08 +00:00
Yohann D'ANELLO 15fc32ee53 [root] vm-setup -> vm_setup.yml 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
_shirenn f5e7405188 [root] split root play and deploy root password 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 514fd78eed [root] borgbackups -> borgbackup 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 5a9cdf955e [root] network_interfaces -> network-interfaces 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 80b62b5d25 [root] Include nullmailer playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 9936bfd95b [root] Include ssh_known_hosts role in root playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
ynerant 99ed3ad57a [root] Don't deploy crans_scripts in the root playbook 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
_benjamin 6026f8d84e [inspircd] Deploy InspIRCd on irc 2021-02-28 09:10:21 +01:00
Yohann D'ANELLO 23371f7cb1
[gitlab] Rename git to gitlab 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:30:29 +01:00
Yohann D'ANELLO 98eaeaa53b
[gitlab] Install irker from Debian Sid to add IRC webhooks 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:58 +01:00
Yohann D'ANELLO 85afe1fd32
[gitlab] Fix reverse proxy configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:58 +01:00
_shirenn b152c48ed3
[gitlab] smtp server and https push 2021-02-22 23:29:56 +01:00
ynerant 63d4164ba0
Cransible Gitlab configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:55 +01:00
Yohann D'ANELLO 6b8fb0916f [nginx/moinmoin] Extract nginx configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO d6f15d4210 [nginx/cas] Factorize nginx configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 8d8c212f49 [nginx/roundcube] Factorize configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 4c115a8b34 [thelounge] Don't load ldap configuration if it is disabled 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO e4bdec1dd8 [nginx] Add Nginx playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 2c9b89a74d [thelounge] Rename irc to thelounge 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 1575b3eea5 [nginx] Add nginx playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO de58138a22 [nginx] Multiple certficates are compatible with reverse-proxy 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 72238d79ed [nginx] Add feature to manage multiple certificates, for example for crans.org and for adm.crans.org 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 3f4a66eb7c [thelounge] Copy ldap configuration for zamok 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO f039121e21 [thelounge] Download the Debian package and install it, and deploy 
configuration

Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 70a78d06d1 [irc] Configure nginx for the lounge 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 9f21a7ad79 [nginx] Drop nginx-pubftp role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
ynerant a9897ec3c0 [nginx] Load global and local nginx configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO ec262bd5c1 [nginx] Drop role nginx-mailman 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 84fb96eab6 Create generic Nginx template 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO f09ec69ef1 Remove unused role nginx-rtmp 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 454ca95edf Rename nginx-reverseproxy to nginx 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00