thomas
/
sovereign
Seguir 1
Destacar 0
Cuchillo 0
Código Incidencias 0 Peticiones pull 0 Lanzamientos 0 Wiki Actividad
Sin descripción
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
462 Commits
1 Rama
Árbol: 2fd1e1b722
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '2fd1e1b722'
${ noResults }
sovereign/roles/common/tasks/main.yml

main.yml 2.3KB
Histórico Original

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. ---

  2. # Defines tasks applicable across all machines in the infrastructure.

  3. 

  4. - name: Update apt cache

  5.   apt: update_cache=yes

  6. 

  7. - name: Upgrade all safe packages

  8.   apt: upgrade=safe

  9. 

  10. - name: Install necessities and nice-to-haves

  11.   apt: pkg={{ item }} state=installed

  12.   with_items:

  13.     - apache2

  14.     - apt-transport-https

  15.     - apticron

  16.     - build-essential

  17.     - debian-goodies

  18.     - git

  19.     - htop

  20.     - iftop

  21.     - iotop

  22.     - mosh

  23.     - python-software-properties

  24.     - ruby1.9.3

  25.     - screen

  26.     - sudo

  27.     - update-notifier-common

  28.     - vim

  29.     - zsh

  30. 

  31. - name: Set timezone to UTC

  32.   action: shell echo Etc/UTC > /etc/timezone

  33. 

  34. - name: Set localtime to UTC

  35.   file: src=/usr/share/zoneinfo/Etc/UTC dest=/etc/localtime

  36. 

  37. - name: Reconfigure tzdata

  38.   action: command dpkg-reconfigure -f noninteractive tzdata

  39.   when: ansible_distribution == 'Debian' or ansible_distribution == 'Ubuntu'

  40. 

  41. - name: Install unattended upgrades (Debian/Ubuntu only)

  42.   apt: pkg=unattended-upgrades state=installed

  43.   when: ansible_distribution == 'Debian' or ansible_distribution == 'Ubuntu'

  44. 

  45. - name: Apticron email configuration

  46.   template: src=apticron.conf.j2 dest=/etc/apticron/apticron.conf

  47. 

  48. - name: Disable default Apache site

  49.   command: a2dissite 000-default removes=/etc/apache2/sites-enabled/000-default

  50.   notify: restart apache

  51. 

  52. - name: Enable Apache headers module

  53.   command: a2enmod headers creates=/etc/apache2/mods-enabled/headers.load

  54.   notify: restart apache

  55. 

  56. - name: Set ServerName for Apache

  57.   template: src=fqdn.j2 dest=/etc/apache2/conf.d/fqdn

  58.   notify: restart apache

  59.   when: ansible_distribution_release != 'trusty'

  60. 

  61. - name: Create ServerName configuration file for Apache for Ubuntu Trusty

  62.   template: src=fqdn.j2 dest=/etc/apache2/conf-available/fqdn.conf

  63.   when: ansible_distribution_release == 'trusty'

  64. 

  65. - name: Set ServerName for Apache for Ubuntu Trusty

  66.   command: a2enconf fqdn creates=/etc/apache2/conf-enabled/fqdn.conf

  67.   notify: restart apache

  68.   when: ansible_distribution_release == 'trusty'

  69. 

  70. - include: encfs.yml tags=encfs

  71. - include: users.yml tags=users

  72. - include: ssl.yml tags=ssl

  73. - include: ufw.yml tags=ufw

  74. - include: security.yml tags=security

  75. - include: ntp.yml tags=ntp

  76. - include: google_auth.yml tags=google_auth

  77.   when: ansible_distribution_release != 'trusty'

  78. - include: google_auth_mod.yml tags=google_auth

  79.   when: ansible_distribution_release == 'trusty'