🚨: yamllint conformity
This commit is contained in:
VC
@@ -22,5 +22,5 @@
|
||||
ansible.builtin.template:
|
||||
src: jackett.service.j2
|
||||
dest: /etc/systemd/system/jackett.service
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Restart jackett
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
dest: /etc/apt/trusted.gpg.d/sonarr.asc
|
||||
owner: root
|
||||
group: root
|
||||
mode: 0750
|
||||
mode: "0o750"
|
||||
|
||||
- name: Install sonarr repo
|
||||
ansible.builtin.apt_repository:
|
||||
|
||||
@@ -24,4 +24,4 @@
|
||||
dest: /var/lib/transmission-daemon/downloads/CACHEDIR.TAG
|
||||
owner: debian-transmission
|
||||
group: debian-transmission
|
||||
mode: '0644'
|
||||
mode: "0o644"
|
||||
|
||||
@@ -12,7 +12,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: ./files/dovecot.conf
|
||||
dest: /etc/dovecot/dovecot.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart dovecot
|
||||
|
||||
@@ -20,7 +20,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: ./files/before.sieve
|
||||
dest: /etc/dovecot/before.sieve
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Compile sieve
|
||||
- Restart dovecot
|
||||
|
||||
@@ -10,13 +10,13 @@
|
||||
url: "{{ elasticsearch_key_url }}"
|
||||
dest: "{{ elasticsearch_key_path }}"
|
||||
force: true
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Set elasticsearch source repo
|
||||
ansible.builtin.copy:
|
||||
content: "deb [signed-by={{ elasticsearch_key_path }}] https://artifacts.elastic.co/packages/7.x/apt stable main"
|
||||
dest: /etc/apt/sources.list.d/elasticsearch.list
|
||||
mode: '0644'
|
||||
mode: "0o644"
|
||||
|
||||
- name: Install elasticsearch
|
||||
ansible.builtin.apt:
|
||||
@@ -36,7 +36,7 @@
|
||||
ansible.builtin.template:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
mode: '0644'
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart elasticsearch
|
||||
loop:
|
||||
|
||||
@@ -4,5 +4,5 @@
|
||||
ansible.builtin.template:
|
||||
src: firewall.j2
|
||||
dest: /etc/config/firewall
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Reload firewall
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
ansible.builtin.file:
|
||||
path: /srv/ftp
|
||||
state: directory
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Add cachedir file
|
||||
ansible.builtin.template:
|
||||
@@ -17,7 +17,7 @@
|
||||
dest: /srv/ftp/CACHEDIR.TAG
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0644'
|
||||
mode: "0o644"
|
||||
|
||||
- name: Create upload directory
|
||||
ansible.builtin.file:
|
||||
@@ -25,7 +25,7 @@
|
||||
owner: ftp
|
||||
group: root
|
||||
state: directory
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Put vsftpd config file
|
||||
ansible.builtin.copy:
|
||||
@@ -33,7 +33,7 @@
|
||||
dest: /etc/vsftpd.conf
|
||||
owner: root
|
||||
group: root
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Restart vsftpd
|
||||
|
||||
- name: Put control size script
|
||||
@@ -42,7 +42,7 @@
|
||||
dest: /usr/local/sbin/deleteoldfiles.sh
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0700'
|
||||
mode: "0o700"
|
||||
|
||||
- name: Cron control size script
|
||||
ansible.builtin.cron:
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
dest: "{{ garage_bin }}"
|
||||
owner: root
|
||||
group: root
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
force: true
|
||||
notify:
|
||||
- Restart garage
|
||||
@@ -15,13 +15,13 @@
|
||||
ansible.builtin.template:
|
||||
src: garage.service.j2
|
||||
dest: /etc/systemd/system/garage.service
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Put garage.toml conf file
|
||||
ansible.builtin.template:
|
||||
src: garage.toml.j2
|
||||
dest: /etc/garage.toml
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
vars:
|
||||
cluster_group: "{{ group_names | map('regex_search', '.+_cluster') | select('string') | first }}"
|
||||
cluster_group_length: "{{ groups[cluster_group] | reject('search', 'gw') | length }}"
|
||||
|
||||
@@ -9,6 +9,6 @@
|
||||
ansible.builtin.template:
|
||||
src: haproxy.cfg.j2
|
||||
dest: /etc/haproxy/haproxy.cfg
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart haproxy
|
||||
|
||||
@@ -9,6 +9,6 @@
|
||||
ansible.builtin.template:
|
||||
src: icecast.xml.j2
|
||||
dest: /etc/icecast2/icecast.xml
|
||||
mode: 0640
|
||||
mode: "0o640"
|
||||
notify:
|
||||
- Restart icecast2
|
||||
|
||||
@@ -12,7 +12,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: ./files/mailman.cfg
|
||||
dest: /etc/mailman3/mailman.cfg
|
||||
mode: 0640
|
||||
mode: "0o640"
|
||||
notify: Restart mailman3
|
||||
|
||||
- name: Start mailman3 service
|
||||
|
||||
@@ -13,7 +13,7 @@
|
||||
owner: mysql
|
||||
group: mysql
|
||||
state: directory
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Populate mysql directory
|
||||
ansible.builtin.command:
|
||||
@@ -27,7 +27,7 @@
|
||||
ansible.builtin.template:
|
||||
src: 50-server.cnf.j2
|
||||
dest: /etc/mysql/mariadb.conf.d/50-server.cnf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Restart mariadb
|
||||
|
||||
- name: Upgrade debian configuration file
|
||||
@@ -36,7 +36,7 @@
|
||||
dest: /etc/mysql/debian.cnf
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0600'
|
||||
mode: "0o600"
|
||||
notify: Restart mariadb
|
||||
|
||||
- name: Force handlers
|
||||
@@ -64,7 +64,7 @@
|
||||
ansible.builtin.template:
|
||||
src: dot.my.cnf.j2
|
||||
dest: ~/.my.cnf
|
||||
mode: '0600'
|
||||
mode: "0o600"
|
||||
|
||||
- name: Set root password (follow-up)
|
||||
community.mysql.mysql_user:
|
||||
@@ -93,13 +93,13 @@
|
||||
ansible.builtin.file:
|
||||
path: /etc/systemd/system/mariadb.service.d/
|
||||
state: directory
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Create MariaDB service override
|
||||
ansible.builtin.copy:
|
||||
src: files/override.conf
|
||||
dest: /etc/systemd/system/mariadb.service.d/override.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart mariadb
|
||||
- Daemon-reload
|
||||
@@ -108,7 +108,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/backup_mysql.sh
|
||||
dest: /usr/local/bin/backup_mysql.sh
|
||||
mode: '0755'
|
||||
mode: "0o755"
|
||||
|
||||
- name: Cron backup script
|
||||
ansible.builtin.cron:
|
||||
|
||||
@@ -12,7 +12,7 @@
|
||||
ansible.builtin.file:
|
||||
state: directory
|
||||
path: "{{ mastodon_home }}/.ssh"
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
owner: mastodon
|
||||
group: mastodon
|
||||
|
||||
@@ -21,7 +21,7 @@
|
||||
remote_src: true
|
||||
src: /root/.ssh/authorized_keys
|
||||
dest: "{{ mastodon_home }}/.ssh/authorized_keys"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
owner: mastodon
|
||||
group: mastodon
|
||||
|
||||
|
||||
@@ -44,14 +44,14 @@
|
||||
ansible.builtin.file:
|
||||
path: "{{ mastodon_home }}/bin"
|
||||
state: directory
|
||||
mode: '0750'
|
||||
mode: "0o750"
|
||||
|
||||
- name: Put template scripts
|
||||
remote_user: mastodon
|
||||
ansible.builtin.template:
|
||||
src: "{{ item }}.j2"
|
||||
dest: "{{ mastodon_home }}/bin/{{ item }}"
|
||||
mode: '0750'
|
||||
mode: "0o750"
|
||||
loop:
|
||||
- remove_media.sh
|
||||
- remove_preview_cards.sh
|
||||
@@ -60,7 +60,7 @@
|
||||
ansible.builtin.template:
|
||||
src: "{{ item }}.j2"
|
||||
dest: "/etc/systemd/system/{{ item }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
loop:
|
||||
- "mastodon-sidekiq.service"
|
||||
- "mastodon-streaming.service"
|
||||
|
||||
@@ -9,6 +9,6 @@
|
||||
ansible.builtin.copy:
|
||||
src: ./files/mumble-server.ini
|
||||
dest: /etc/mumble-server.ini
|
||||
mode: 0640
|
||||
mode: "0o640"
|
||||
notify:
|
||||
- Restart mumble
|
||||
|
||||
@@ -14,7 +14,7 @@
|
||||
dest: /etc/munin/plugin-conf.d/garage
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0640'
|
||||
mode: "0o640"
|
||||
notify:
|
||||
- Restart munin-node
|
||||
|
||||
@@ -24,6 +24,6 @@
|
||||
dest: /etc/munin/plugins/garage_bucket
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0755'
|
||||
mode: "0o755"
|
||||
notify:
|
||||
- Restart munin-node
|
||||
|
||||
@@ -14,7 +14,7 @@
|
||||
dest: /etc/munin/plugin-conf.d/nvme
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0640'
|
||||
mode: "0o640"
|
||||
notify:
|
||||
- Restart munin-node
|
||||
|
||||
@@ -24,7 +24,7 @@
|
||||
dest: /etc/munin/plugins/nvme
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0755'
|
||||
mode: "0o755"
|
||||
notify:
|
||||
- Restart munin-node
|
||||
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: "files/{{ item }}"
|
||||
dest: "/etc/munin/plugins/{{ item }}"
|
||||
mode: "0755"
|
||||
mode: "0o755"
|
||||
owner: root
|
||||
group: root
|
||||
notify:
|
||||
|
||||
@@ -26,7 +26,7 @@
|
||||
ansible.builtin.template:
|
||||
src: munin-node.conf.j2
|
||||
dest: /etc/munin/munin-node.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart munin-node
|
||||
when: munin_need_reconfigure
|
||||
|
||||
@@ -4,7 +4,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: "./files/{{ item.0 }}"
|
||||
dest: "/etc/munin/plugins/{{ item.0 }}{{ item.1.name }}"
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
loop: "{{ mikrotik_unitary_scripts | product(mikrotik_hosts) | list }}"
|
||||
notify:
|
||||
- Restart munin-node
|
||||
@@ -13,7 +13,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: "./files/{{ item.1 }}"
|
||||
dest: "/etc/munin/plugins/{{ item.1 }}{{ item.0.0.name }}_{{ item.0.1 }}"
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
loop: "{{ mikrotik_hosts | subelements('ifaces') | product(mikrotik_periface_scripts) }}"
|
||||
loop_control:
|
||||
label: "{{ item.0.1 }}"
|
||||
|
||||
@@ -9,4 +9,4 @@
|
||||
ansible.builtin.template:
|
||||
src: munin.conf.j2
|
||||
dest: /etc/munin/munin.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
@@ -20,7 +20,7 @@
|
||||
ansible.builtin.template:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart nginx
|
||||
loop:
|
||||
|
||||
@@ -15,7 +15,7 @@
|
||||
ansible.builtin.template:
|
||||
src: "vhosts/{{ item }}.conf.j2"
|
||||
dest: "/etc/nginx/sites-available/{{ item }}.conf"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart nginx
|
||||
loop: "{{ web_hostname }}"
|
||||
|
||||
@@ -10,7 +10,7 @@
|
||||
url: "{{ nodejs_key_url }}"
|
||||
dest: /tmp/nodesource.gpg.key
|
||||
force: true
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Dearmor gpg key
|
||||
ansible.builtin.command:
|
||||
@@ -21,7 +21,7 @@
|
||||
ansible.builtin.copy:
|
||||
content: "deb [signed-by={{ nodejs_key_path }}] https://deb.nodesource.com/node_{{ nodejs_version }}.x nodistro main"
|
||||
dest: /etc/apt/sources.list.d/nodesource.list
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Install nodejs
|
||||
ansible.builtin.apt:
|
||||
|
||||
@@ -9,13 +9,13 @@
|
||||
ansible.builtin.template:
|
||||
src: upsmon.conf.j2
|
||||
dest: /etc/nut/upsmon.conf
|
||||
mode: '0640'
|
||||
mode: "0o640"
|
||||
notify: Restart nut-client
|
||||
|
||||
- name: Put nut configuration file
|
||||
ansible.builtin.copy:
|
||||
src: files/nut.conf
|
||||
dest: /etc/nut/nut.conf
|
||||
mode: '0640'
|
||||
mode: "0o640"
|
||||
when: inventory_hostname not in groups['nut_server']
|
||||
notify: Restart nut-client
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/90-nut-ups.rules
|
||||
dest: /etc/udev/rules.d/90-nut-ups.rules
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Reload udev
|
||||
- Restart nut-driver
|
||||
@@ -18,7 +18,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
mode: 0640
|
||||
mode: "0o640"
|
||||
loop:
|
||||
- {src: "files/nut.conf", dest: "/etc/nut/nut.conf"}
|
||||
- {src: "files/ups.conf", dest: "/etc/nut/ups.conf"}
|
||||
@@ -29,5 +29,5 @@
|
||||
ansible.builtin.template:
|
||||
src: upsd.users.j2
|
||||
dest: /etc/nut/upsd.users
|
||||
mode: '0640'
|
||||
mode: "0o640"
|
||||
notify: Restart nut-server
|
||||
|
||||
@@ -12,7 +12,7 @@
|
||||
ansible.builtin.template:
|
||||
src: opendkim.conf
|
||||
dest: /etc/opendkim.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart opendkim
|
||||
|
||||
@@ -20,13 +20,13 @@
|
||||
ansible.builtin.file:
|
||||
path: /etc/dkim
|
||||
state: directory
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Put secondary configuration files
|
||||
ansible.builtin.copy:
|
||||
src: "./files/dkim/{{ item }}"
|
||||
dest: "/etc/dkim/{{ item }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
loop:
|
||||
- KeyTable
|
||||
- PeerList
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: ./files/opendmarc.conf
|
||||
dest: /etc/opendmarc.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart opendmarc
|
||||
|
||||
@@ -17,13 +17,13 @@
|
||||
ansible.builtin.file:
|
||||
path: /etc/dmarc
|
||||
state: directory
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Put secondary configuration files
|
||||
ansible.builtin.copy:
|
||||
src: "./files/dmarc/{{ item }}"
|
||||
dest: "/etc/dmarc/{{ item }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
loop:
|
||||
- IgnoreHosts
|
||||
notify:
|
||||
|
||||
@@ -23,7 +23,7 @@
|
||||
ansible.builtin.file:
|
||||
state: directory
|
||||
path: "{{ peertube_home }}/.ssh"
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
owner: peertube
|
||||
group: peertube
|
||||
|
||||
@@ -32,7 +32,7 @@
|
||||
remote_src: true
|
||||
src: /root/.ssh/authorized_keys
|
||||
dest: "{{ peertube_home }}/.ssh/authorized_keys"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
owner: peertube
|
||||
group: peertube
|
||||
|
||||
@@ -42,9 +42,9 @@
|
||||
state: directory
|
||||
owner: peertube
|
||||
group: peertube
|
||||
mode: "{{ item.mode | default('0755') }}"
|
||||
mode: "{{ item.mode | default('0o755') }}"
|
||||
loop:
|
||||
- {path: "config", mode: "0750"}
|
||||
- {path: "config", mode: "0o750"}
|
||||
- {path: "storage"}
|
||||
- {path: "versions"}
|
||||
|
||||
@@ -78,7 +78,7 @@
|
||||
ansible.builtin.template:
|
||||
src: peertube.service.j2
|
||||
dest: /etc/systemd/system/peertube.service
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Install default configuration
|
||||
ansible.builtin.file:
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
ansible.builtin.template:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
loop:
|
||||
- {src: "www.conf.j2", dest: "/etc/php/{{ php_version }}/fpm/pool.d/www.conf"}
|
||||
- {src: "php.ini.j2", dest: "/etc/php/{{ php_version }}/fpm/php.ini"}
|
||||
|
||||
@@ -14,7 +14,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: "./files/{{ item }}"
|
||||
dest: "/etc/postfix/{{ item }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
loop:
|
||||
- main.cf
|
||||
- master.cf
|
||||
@@ -25,7 +25,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: "./files/{{ item }}"
|
||||
dest: "/etc/postfix/{{ item }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
loop:
|
||||
- transport
|
||||
- virtual-regexp
|
||||
@@ -39,4 +39,4 @@
|
||||
dest: /usr/local/bin/generate_email.sh
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0755'
|
||||
mode: "0o755"
|
||||
|
||||
@@ -11,7 +11,7 @@
|
||||
owner: postgres
|
||||
group: postgres
|
||||
state: directory
|
||||
mode: 0700
|
||||
mode: "0o700"
|
||||
|
||||
- name: Populate postgresql directory
|
||||
ansible.builtin.command:
|
||||
@@ -25,14 +25,14 @@
|
||||
ansible.builtin.copy:
|
||||
src: "files/pg_hba.conf"
|
||||
dest: "/etc/postgresql/{{ postgres_pg_version }}/main/pg_hba.conf"
|
||||
mode: "0640"
|
||||
mode: "0o640"
|
||||
notify: Restart postgres
|
||||
|
||||
- name: Put main configuration files
|
||||
ansible.builtin.template:
|
||||
src: "postgresql.conf.j2"
|
||||
dest: "/etc/postgresql/{{ postgres_pg_version }}/main/postgresql.conf"
|
||||
mode: "0644"
|
||||
mode: "0o644"
|
||||
|
||||
- name: Create backup dir
|
||||
ansible.builtin.file:
|
||||
@@ -40,7 +40,7 @@
|
||||
owner: postgres
|
||||
group: postgres
|
||||
state: directory
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Cron backup script
|
||||
ansible.builtin.cron:
|
||||
|
||||
@@ -9,6 +9,6 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/postgrey
|
||||
dest: /etc/default/postgrey
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart postgrey
|
||||
|
||||
@@ -4,7 +4,7 @@
|
||||
ansible.builtin.get_url:
|
||||
url: "{{ restic_download_url }}"
|
||||
dest: "/tmp"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Uncompress restic
|
||||
ansible.builtin.shell:
|
||||
@@ -14,6 +14,6 @@
|
||||
- name: Check restic exe
|
||||
ansible.builtin.file:
|
||||
path: "{{ restic_path }}"
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
owner: root
|
||||
group: "{{ restic_exe_group }}"
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
dest: "{{ restic_script_path }}"
|
||||
owner: root
|
||||
group: "{{ restic_exe_group }}"
|
||||
mode: '0750'
|
||||
mode: "0o750"
|
||||
|
||||
- name: Cron backup script
|
||||
ansible.builtin.cron:
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/sys.conf
|
||||
dest: /etc/rsyslog.d/sys.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Restart rsyslog
|
||||
when: "'rsyslogservers' in group_names"
|
||||
|
||||
@@ -17,7 +17,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/remote.conf
|
||||
dest: /etc/rsyslog.d/remote.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Restart rsyslog
|
||||
|
||||
- name: Insert hosts into /etc/hosts
|
||||
|
||||
@@ -20,7 +20,7 @@
|
||||
ansible.builtin.template:
|
||||
src: sasl_passwd.j2
|
||||
dest: /etc/postfix/sasl_passwd
|
||||
mode: 0640
|
||||
mode: "0o640"
|
||||
notify:
|
||||
- Postmap sasl_passwd
|
||||
- Restart postfix
|
||||
@@ -29,5 +29,5 @@
|
||||
ansible.builtin.template:
|
||||
src: main.cf.j2
|
||||
dest: /etc/postfix/main.cf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Restart postfix
|
||||
|
||||
@@ -3,7 +3,7 @@
|
||||
- name: Create recipient/destination map
|
||||
ansible.builtin.copy:
|
||||
dest: "{{ item.destination }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
content: |
|
||||
{{ item.content }}
|
||||
loop:
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
ansible.builtin.template:
|
||||
src: smtp-wrapper.conf.j2
|
||||
dest: /etc/stunnel/smtp-wrapper.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Restart stunnel4
|
||||
|
||||
- name: Ensure stunnel is enabled and running
|
||||
|
||||
@@ -14,7 +14,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: "{{ item.src }}"
|
||||
dest: "{{ item.dest }}"
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
loop:
|
||||
- {src: "./files/local.cf", dest: "/etc/spamassassin/local.cf"}
|
||||
- {src: "./files/spamassassin", dest: "/etc/default/spamassassin"}
|
||||
|
||||
@@ -64,7 +64,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/dotbashrc
|
||||
dest: /root/.bashrc
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
owner: root
|
||||
group: root
|
||||
|
||||
@@ -72,7 +72,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/vim/
|
||||
dest: /root/.vim
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
owner: root
|
||||
group: root
|
||||
|
||||
@@ -82,7 +82,7 @@
|
||||
ansible.builtin.template:
|
||||
src: sshd_config.j2
|
||||
dest: /etc/ssh/sshd_config
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart sshd
|
||||
|
||||
@@ -102,4 +102,4 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/5-install
|
||||
dest: /etc/cron-apt/action.d/5-install
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
@@ -4,5 +4,5 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/50-usb.rules
|
||||
dest: /etc/udev/rules.d/50-usb.rules
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify: Reload udev
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
state: directory
|
||||
owner: www-data
|
||||
group: www-data
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Download oolatoocs exec
|
||||
ansible.builtin.get_url:
|
||||
@@ -14,7 +14,7 @@
|
||||
dest: "{{ webapps_oolatoocs_local_bin_path }}"
|
||||
owner: root
|
||||
group: root
|
||||
mode: 0755
|
||||
mode: "0o755"
|
||||
|
||||
- name: Put conf file
|
||||
ansible.builtin.template:
|
||||
@@ -22,7 +22,7 @@
|
||||
dest: /usr/local/etc/oolatoocs.toml
|
||||
owner: www-data
|
||||
group: www-data
|
||||
mode: 0640
|
||||
mode: "0o640"
|
||||
|
||||
- name: Init oolatoocs DB
|
||||
ansible.builtin.command:
|
||||
|
||||
@@ -9,7 +9,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/ttrss_backend.service
|
||||
dest: /etc/systemd/system/ttrss_backend.service
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Enable and start service ttrss_backend
|
||||
ansible.builtin.service:
|
||||
|
||||
@@ -4,7 +4,7 @@
|
||||
ansible.builtin.copy:
|
||||
src: files/fastcgi_cache.conf
|
||||
dest: /etc/nginx/conf.d/fastcgi_cache.conf
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
notify:
|
||||
- Restart nginx
|
||||
|
||||
|
||||
@@ -18,13 +18,13 @@
|
||||
path: /etc/prosody/certs/dh-2048.pem
|
||||
owner: root
|
||||
group: prosody
|
||||
mode: '0640'
|
||||
mode: "0o640"
|
||||
|
||||
- name: Put prosody configuration file
|
||||
ansible.builtin.copy:
|
||||
src: ./files/prosody.cfg.lua
|
||||
dest: /etc/prosody/prosody.cfg.lua
|
||||
mode: 0640
|
||||
mode: "0o640"
|
||||
owner: root
|
||||
group: prosody
|
||||
notify:
|
||||
|
||||
@@ -4,7 +4,7 @@
|
||||
ansible.builtin.get_url:
|
||||
url: "{{ yarn_key_url }}"
|
||||
dest: /tmp/yarn.gpg.key
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
force: true
|
||||
|
||||
- name: Dearmor gpg key
|
||||
@@ -16,7 +16,7 @@
|
||||
ansible.builtin.copy:
|
||||
content: "deb [signed-by={{ yarn_key_path }}] https://dl.yarnpkg.com/debian stable main"
|
||||
dest: /etc/apt/sources.list.d/yarn.list
|
||||
mode: 0644
|
||||
mode: "0o644"
|
||||
|
||||
- name: Install yarn
|
||||
ansible.builtin.apt:
|
||||
|
||||
Reference in New Issue
Block a user