ansible/oopen-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

update..

Browse Source
This commit is contained in:
Christoph
2022-07-20 00:54:30 +02:00
parent 9137c0a021
commit 34d8bccc43
8 changed files with 219 additions and 60 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
roles/common/tasks/basic.yml
View File

@ -126,6 +126,23 @@
tags:
- systctl-config
- name: (basic.yml) Additional Kernel Parameters (files /etc/sysctl.d/*.conf)
copy:
src: '{{ item.src_path }}'
dest: '{{ item.dest_path }}'
owner: root
group: root
mode: '0644'
loop: "{{ copy_additional_plain_files_sysctl }}"
loop_control:
label: 'dest: {{ item.name }}'
when:
- inventory_hostname not in groups['lxc_guest']
- copy_additional_plain_files_sysctl is defined
- copy_additional_plain_files_sysctl|length > 0
tags:
- systctl-config
# ----------
# unattended upgrades

8
roles/common/tasks/main.yml
View File

@ -188,6 +188,14 @@
tags:
- samba-server
- import_tasks: redis-server.yml
when: inventory_hostname in groups['nextcloud_server'] or
inventory_hostname in groups['apache2_webserver'] or
inventory_hostname in groups['nginx_webserver']
tags:
- redis-server
# tags supportetd inside caching-nameserver.yml
#
# apt-caching-nameserver

111
roles/common/tasks/redis-server.yml Normal file
View File

@ -0,0 +1,111 @@
---
- name: (redis-server.yml) update
apt:
update_cache: true
cache_valid_time: "{{ 0 if apt_config_updated is defined and apt_config_updated.changed else apt_update_cache_valid_time }}"
when: apt_update|bool
tags:
- redis-server
- name: (redis-server.yml) dpkg --configure
command: >
dpkg --configure -a
args:
warn: false
changed_when: _dpkg_configure.stdout_lines | length
register: _dpkg_configure
when: apt_dpkg_configure|bool
tags:
- redis-server
- name: (redis-server.yml) upgrade
apt:
upgrade: "{{ apt_upgrade_type }}"
update_cache: true
dpkg_options: "{{ apt_upgrade_dpkg_options | join(',') }}"
when: apt_upgrade|bool
tags:
- redis-server
- name: (redis-server.yml) Install redis-server packages
apt:
name: redis-server
state: present
tags:
- redis-server
- name: (redis-server.yml) Determine available users
getent:
database: passwd
tags:
- redis-server
- name: (redis-server.yml) Determine available groups
getent:
database: group
tags:
- redis-server
- name: (redis-server.yml) Add user 'www-data' to group 'redis'
user:
name: www-data
groups: redis
append: yes
when:
- "'www-data' in my_users"
- "'redis' in my_groups"
vars:
my_users: "{{ getent_passwd.keys()|list }}"
my_groups: "{{ getent_group.keys()|list }}"
tags:
- redis-server
- name: (redis-server.yml) Add user 'webadmin' to group 'redis'
user:
name: webadmin
groups: redis
append: yes
when:
- "'webadmin' in my_users"
- "'redis' in my_groups"
vars:
my_users: "{{ getent_passwd.keys()|list }}"
my_groups: "{{ getent_group.keys()|list }}"
tags:
- redis-server
- name: (redis-server.yml) Check if file '/etc/redis/redis.conf.ORIG' exists
stat:
path: /etc/redis/redis.conf.ORIG
register: redis_conf_exists
tags:
- redis-server
- name: (redis-server.yml) Backup existing file /etc/redis/redis.conf.
command: cp -a /etc/redis/redis.conf /etc/redis/redis.conf.ORIG
when:
- redis_conf_exists.stat.exists == False
tags:
- samba-server
- name: (redis-server.yml) adjust configuration '/etc/redis/redis.conf'
lineinfile:
dest: /etc/redis/redis.conf
regexp: "{{ item.regexp }}"
insertafter: "{{ item.insertafter }}"
line: "{{ item.key }} {{ item.val }}"
state: present
loop:
- { regexp: '^bind\s+', key: 'bind', val: '127.0.0.1 ::1', insertafter: '^#\s*bind\s+' }
- { regexp: '^port\s+', key: 'port', val: '6379', insertafter: '^#\s*port\s+' }
- { regexp: '^unixsocket\s+', key: 'unixsocket', val: '/run/redis/redis-server.sock', insertafter: '^#\s*unixsocketperm' }
- { regexp: '^unixsocketperm', key: 'unixsocketperm', val: '770', insertafter: '^unixsocket\s+' }
- { regexp: '^logfile', key: 'logfile', val: '/var/log/redis/redis-server.log', insertafter: '^#\s+logfile\s+' }
notify: "Restart redis-server"
tags:
- redis-server