majic-ansible-roles Changeset

Changeset - 4b964a31bd96

Parent rev.

Child rev.

[Not reviewed]

0 4 0

Branko Majic (branko) - 7 years ago 2017-04-09 15:10:00
branko@majic.rs

MAR-95: Separated configuration for backing-up the /root and /home directories in the common role. This should allow user to have better fine-grained control over what gets backed-up in the home directory. Updated role reference documentation. Updated the testsite variable configuration so the new setting can be tested.

4 files changed with 18 insertions and 6 deletions:

docs/rolereference.rst

roles/common/defaults/main.yml

roles/common/meta/main.yml

testsite/group_vars/mail.yml

0 comments (0 inline, 0 general)

docs/rolereference.rst

➞

Show inline comments

   Log files from the system.
 **/home**
   Home directory for regular users.
+  Home directory for regular users (this can be changed via role parameters).
 **/root**
   Root user's home directory.
+  Root user's home directory (this can be changed via role parameters).
 **/etc/shadow**
   Operating system user passwords.
@@ @@ -346,6 +346,10 @@ Parameters @@
   directory ``/usr/local/share/ca-certificates/``, while values are
   corresponding content to be placed in the file.
 **extra_backup_patterns** (list, optional, ``[ "/home", "/root" ]]``)
   List of additional globbing patterns defining additional files or directories
   that should be backed-up.
 **incoming_connection_limit** (string, optional, ``3/second``)
   Rate at which the incoming ICMP echo-request packages and new TCP connections
   will be accepted at. The value should be specified in the same format as value

roles/common/defaults/main.yml

➞

Show inline comments

@@ @@ -9,6 +9,9 @@ incoming_connection_limit: 3/second @@
 incoming_connection_limit_burst: 9
 prompt_colour: none
 prompt_id: null
 extra_backup_patterns:
   - "/root"
   - "/home"
 # Internal use only.
 prompt_colour_mapping:

roles/common/meta/main.yml

➞

Show inline comments

@@ @@ -5,9 +5,11 @@ dependencies: @@
     when: enable_backup
     backup_patterns_filename: common
     backup_patterns:
       - "/root"
       - "/home"
       - "/var/log"
       - "/etc/shadow"
       - "/var/mail"
       - "/var/spool/cron"
@@ \ No newline at end of file @@
       - "/var/spool/cron"
   - role: backup
     when: enable_backup
     backup_patterns_filename: common_extra
     backup_patterns: "{{ extra_backup_patterns }}"

testsite/group_vars/mail.yml

➞

Show inline comments

@@ @@ -35,4 +35,7 @@ mail_server_tls_protocols: @@
   - TLSv1.2
   - TLSv1.1
 mail_server_tls_ciphers: "DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES256-SHA:!aNULL:!MD5:!EXPORT"
@@ \ No newline at end of file @@
 mail_server_tls_ciphers: "DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES256-SHA:!aNULL:!MD5:!EXPORT"
 extra_backup_patterns:
   - "/root"
@@ \ No newline at end of file @@

0 comments (0 inline, 0 general)