tom/sib_10_premier_playbook
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Compare commits

base: tom:895f1f15fd0e5c6258e784e02f215a37830e6998
Branches Tags
tom:master tom:solution tom:solution_epsi tom:solution_abr tom:master_blanc tom:master_abr
..
compare: tom:solution
Branches Tags
tom:master tom:solution tom:solution_epsi tom:solution_abr tom:master_blanc tom:master_abr

2 Commits
895f1f15fd ... solution

Author SHA1 Message Date
Thomas Constans
c4294b55a6 firewall service management has nothing to do here 2025-09-22 16:32:27 +02:00
Thomas Constans
c92c54ff3b switch to fqmn 2023-01-20 12:32:15 +01:00
4 changed files with 35 additions and 35 deletions
Expand all files Collapse all files

6
Readme.md
View File

@@ -1,6 +0,0 @@
# Playbook d'installation apache
LEs fichiers vhost.conf et index.html sont récupérés par le pilote
directement depuis le dépôt git

37
apache.yml
View File

@@ -3,28 +3,21 @@
hosts: centos hosts: centos
tasks: tasks:
- name: retrieve files
ansible.builtin.git:
repo: https://infra.opendoor.fr/git/tom/sib_10_premier_playbook
dest: /tmp/sib_10
delegate_to: localhost
become: false
- name: install apache - name: install apache
yum: ansible.builtin.package:
name: httpd name: httpd
state: present state: present
- name: conf httpd - name: conf httpd
template: ansible.builtin.template:
src: /tmp/sib_10/vhost.conf src: vhost.conf
dest: /etc/httpd/conf.d/vhost.conf dest: /etc/httpd/conf.d/vhost.conf
mode: 0640 mode: 0640
owner: root owner: root
group: apache group: apache
- name: activate apache - name: activate apache
service: ansible.builtin.service:
name: httpd name: httpd
enabled: yes enabled: yes
state: started state: started
@@ -32,20 +25,14 @@
- name: setup firewall - name: setup firewall
block: block:
- name: install firewalld packages - name: install firewalld packages
yum: ansible.builtin.package:
name: name:
- python3-firewall - python3-firewall
- firewalld - firewalld
state: present state: present
- name: enable firewalld service
service:
name: firewalld
enabled: true
state: started
- name: open firewall port - name: open firewall port
firewalld: ansible.posix.firewalld:
service: "{{ item }}" service: "{{ item }}"
permanent: yes permanent: yes
immediate: yes immediate: yes
@@ -53,20 +40,14 @@
loop: loop:
- http - http
- https - https
ignore_errors: true
- name: create documentroot - name: create documentroot
file: ansible.builtin.file:
name: /var/www/html/example.org/ name: /var/www/html/example.org/
state: directory state: directory
- name: copy index file - name: copy index file
template: ansible.builtin.template:
src: /tmp/sib_10/index.txt src: index.txt
dest: /var/www/html/example.org/index.html dest: /var/www/html/example.org/index.html
mode: 0644 mode: 0644
- name: delete temp files
file:
path: /tmp/sib_10
state: absent

1
index.txt Normal file
View File

@@ -0,0 +1 @@
<h1>hello World</h1>

24
vhost.conf Normal file
View File

@@ -0,0 +1,24 @@
<VirtualHost *:80>
ServerName example.org
ServerAlias www.example.org
ServerAlias {{ inventory_hostname }}
DocumentRoot /var/www/html/example.org
CustomLog /var/log/httpd/example.org_access.log combined
ErrorLog /var/log/httpd/example.org_error.log
<Directory />
Options none
Allowoverride none
Require all denied
</Directory>
<Directory /var/www/html/example.org>
Require all granted
</Directory>
<Directory /var/www/html/example.org/Private>
Options indexes
AuthName "stop"
AuthType Basic
AuthUserFile /etc/httpd/passwd
require valid-user
</Directory>
</VirtualHost>