mirror of
https://github.com/iiab/iiab.git
synced 2025-02-13 19:52:06 +00:00
231 lines
6.4 KiB
YAML
231 lines
6.4 KiB
YAML
- name: Install httpd required packages (debian)
|
|
package:
|
|
name: "{{ item }}"
|
|
state: present
|
|
with_items:
|
|
- apache2
|
|
- php{{ php_version }}
|
|
- php{{ php_version }}-curl
|
|
# - php{{ php_version }}-sqlite
|
|
tags:
|
|
- download
|
|
when: is_debian
|
|
|
|
- name: Debian changed SQLite name (debian-8)
|
|
package:
|
|
name: "php{{ php_version }}-sqlite"
|
|
when: is_debian and ansible_distribution_major_version == "8"
|
|
|
|
- name: Debian changed SQLite3 name (debian-9)
|
|
package:
|
|
name: "php{{ php_version }}-sqlite3"
|
|
when: is_debian and ansible_distribution_major_version == "9"
|
|
|
|
- name: Install httpd required packages (ubuntu)
|
|
package:
|
|
name: "{{ item }}"
|
|
state: present
|
|
with_items:
|
|
- apache2
|
|
- php
|
|
tags:
|
|
- download
|
|
when: is_ubuntu
|
|
|
|
- name: SQLite3 no longer included in another package (ubuntu-18)
|
|
package:
|
|
name: php{{ php_version }}-sqlite3
|
|
when: is_ubuntu_18
|
|
|
|
- name: Install httpd required packages (redhat)
|
|
package:
|
|
name: "{{ item }}"
|
|
state: present
|
|
with_items:
|
|
- httpd
|
|
- php
|
|
- php-curl
|
|
- mod_authnz_external
|
|
# - php-sqlite
|
|
tags:
|
|
- download
|
|
when: is_redhat
|
|
|
|
# MOVED DOWN ~58 LINES
|
|
#- name: Remove the default apache2 config file (debuntu)
|
|
# file:
|
|
# path: /etc/apache2/sites-enabled/000-default.conf
|
|
# state: absent
|
|
# when: is_debuntu
|
|
|
|
- name: Create httpd config files
|
|
template:
|
|
backup: yes
|
|
src: "{{ item.src }}"
|
|
dest: "{{ item.dest }}"
|
|
owner: root
|
|
group: root
|
|
mode: "{{ item.mode }}"
|
|
with_items:
|
|
- { src: '010-iiab.conf.j2', dest: '/etc/{{ apache_config_dir }}/010-iiab.conf', mode: '0755' }
|
|
- { src: 'proxy_ajp.conf.j2', dest: '/etc/{{ apache_config_dir }}/proxy_ajp.conf', mode: '0644' }
|
|
#- { src: 'php.ini.j2', dest: '/etc/php.ini', mode: '0644' } # @jvonau suggests removing this in https://github.com/iiab/iiab/issues/1147
|
|
|
|
# For schools that use WordPress and/or Moodle intensively. See iiab/iiab #1147
|
|
# WARNING: Enabling this (might) cause excess use of RAM or other resources?
|
|
- name: Enact high limits in /etc/php/{{ php_version }}/{{ apache_service }}/php.ini if using WordPress and/or Moodle intensively
|
|
lineinfile:
|
|
path: "/etc/php/{{ php_version }}/{{ apache_service }}/php.ini"
|
|
regexp: "{{ item.regexp }}"
|
|
line: "{{ item.line }}"
|
|
when: apache_high_php_limits
|
|
with_items:
|
|
- { regexp: '^upload_max_filesize', line: 'upload_max_filesize = 64M ; default is 2M' }
|
|
- { regexp: '^post_max_size', line: 'post_max_size = 128M ; default is 8M' }
|
|
- { regexp: '^memory_limit', line: 'memory_limit = 256M ; default is 128M' }
|
|
- { regexp: '^max_execution_time', line: 'max_execution_time = 300 ; default is 30' }
|
|
- { regexp: '^max_input_time', line: 'max_input_time = 300 ; default is 60' }
|
|
|
|
# remove symlinks for mpm-event, replace with mpm-prefork
|
|
- name: Remove mpm event links (debuntu)
|
|
file:
|
|
path: "/etc/apache2/mods-enabled/{{ item }}"
|
|
state: absent
|
|
with_items:
|
|
- mpm_event.conf
|
|
- mpm_event.load
|
|
when: is_debuntu
|
|
|
|
- name: Create symlinks for mpm-prefork (debuntu)
|
|
file:
|
|
path: "/etc/apache2/mods-enabled/{{ item }}"
|
|
src: "/etc/apache2/mods-available/{{ item }}"
|
|
state: link
|
|
with_items:
|
|
- mpm_prefork.conf
|
|
- mpm_prefork.load
|
|
when: is_debuntu
|
|
|
|
- name: Turn on mod_proxy (debuntu)
|
|
command: a2enmod {{ item }}
|
|
with_items:
|
|
- proxy
|
|
- proxy_html
|
|
- headers
|
|
- rewrite
|
|
when: is_debuntu
|
|
|
|
- name: Create symlinks for enabling our site (debuntu)
|
|
file:
|
|
path: "/etc/apache2/sites-enabled/{{ item }}"
|
|
src: "/etc/apache2/sites-available/{{ item }}"
|
|
state: link
|
|
with_items:
|
|
- 010-iiab.conf
|
|
when: is_debuntu
|
|
|
|
- name: Remove apache2 default config files (debuntu)
|
|
file:
|
|
path: "{{ item }}"
|
|
state: absent
|
|
with_items:
|
|
- /etc/apache2/000-default.conf # Not nec on Raspbian. Is this really still needed elsewhere?
|
|
- /etc/apache2/sites-enabled/000-default.conf
|
|
when: is_debuntu
|
|
|
|
- name: Create http pid dir /var/run/{{ apache_user }}
|
|
file:
|
|
path: "/var/run/{{ apache_user }}"
|
|
mode: 0755
|
|
owner: root
|
|
group: root
|
|
state: directory
|
|
|
|
- name: Create admin group
|
|
group:
|
|
name: admin
|
|
state: present
|
|
|
|
- name: Add {{ apache_user }} (from variable apache_user) to admin group
|
|
user:
|
|
name: "{{ apache_user }}"
|
|
groups: admin
|
|
state: present
|
|
createhome: no
|
|
|
|
- name: Create httpd log dir /var/log/{{ apache_service }}
|
|
file:
|
|
path: "/var/log/{{ apache_service }}"
|
|
mode: 0755
|
|
owner: "{{ apache_user }}"
|
|
group: "{{ apache_user }}"
|
|
state: directory
|
|
|
|
- name: Enable httpd
|
|
service:
|
|
name: "{{ apache_service }}"
|
|
enabled: yes
|
|
|
|
- name: Create iiab-info directory
|
|
file:
|
|
path: "{{ doc_root }}/info"
|
|
mode: 0755
|
|
owner: "{{ apache_user }}"
|
|
group: "{{ apache_user }}"
|
|
state: directory
|
|
|
|
- name: Remove iiab-info.conf
|
|
file:
|
|
dest: "/etc/{{ apache_config_dir }}/iiab-info.conf"
|
|
state: absent
|
|
|
|
- name: Remove iiab-info.conf symlink (debuntu)
|
|
file:
|
|
dest: /etc/apache2/sites-enabled/iiab-info.conf
|
|
state: absent
|
|
when: is_debuntu
|
|
|
|
# SEE https://github.com/iiab/iiab/issues/1143 as the old roles/osm playbook is rarely used as of late 2018 (if anybody still uses roles/osm, they can overwrite osm.conf using the original osm playbook, or in other ways)
|
|
- name: Copy osm.conf for http://box/maps (all OS's)
|
|
copy:
|
|
src: osm.conf
|
|
dest: "/etc/{{ apache_config_dir }}"
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
backup: yes
|
|
|
|
- name: Create link from sites-enabled to sites-available (debuntu)
|
|
file:
|
|
src: "/etc/{{ apache_config_dir }}/osm.conf"
|
|
dest: /etc/apache2/sites-enabled/osm.conf
|
|
state: link
|
|
when: is_debuntu
|
|
|
|
- include_tasks: html.yml
|
|
tags:
|
|
- base
|
|
|
|
# Fixes search @ http://box/modules/es-wikihow - see https://github.com/iiab/iiab/issues/829
|
|
- include_tasks: php-stem.yml
|
|
tags:
|
|
- base
|
|
|
|
- name: Install /usr/bin/iiab-refresh-wiki-docs (scraper script) to create http://box/info offline documentation (will be run at the end of Stage 4 = roles/4-server-options/tasks/main.yml)
|
|
template:
|
|
src: refresh-wiki-docs.sh
|
|
dest: /usr/bin/iiab-refresh-wiki-docs
|
|
mode: 0755
|
|
|
|
- name: Give apache_user permission to poweroff
|
|
template:
|
|
src: 020_apache_poweroff.j2
|
|
dest: /etc/sudoers.d/020_apache_poweroff
|
|
mode: 0755
|
|
when: apache_allow_sudo
|
|
|
|
- name: Remove apache_user permission to poweroff
|
|
file:
|
|
dest: /etc/sudoers.d/020_apache_poweroff
|
|
state: absent
|
|
when: not apache_allow_sudo
|