sr2/ansible-collection-core
4
0
Fork 0
Code Issues 5 Pull requests Projects Releases Packages Wiki Activity Actions
26 commits 1 branch 0 tags 114 KiB
Commit graph

20 commits

Author SHA1 Message Date
irl
91390d7359 feat(podman_prometheus): initial role for running prometheus in podman
All checks were successful
Ansible Lint Check / lint (push) Successful in 57s
Details
2025-12-22 11:09:36 +00:00
irl
5c98a76889 feat(node_exporter): initial role for node_exporter on host 2025-12-22 11:09:12 +00:00
irl
aa2fe2ddc6 feat(podman_nginx): allow nginx to bind to additional ports 2025-12-22 11:07:42 +00:00
irl
84e83df428 fix(podman_host): restart systemd-logind if needed before enabling linger 2025-12-22 11:07:42 +00:00
irl
d1d38d672a feat(baseline): rotate auditd logs until a plan is in place to archive them 2025-12-22 11:04:08 +00:00
irl
c3a5cb1f54 feat(baseline): add handler to reload firewalld 2025-12-22 11:03:26 +00:00
irl
8825c6d024 lint: ansible-lint suggested updates
All checks were successful
Ansible Lint Check / lint (push) Successful in 56s
Details
2025-12-20 13:22:40 +00:00
irl
cd7e824890 feat(podman_host): add XDG_RUNTIME_DIR to .bashrc too 2025-12-20 13:15:44 +00:00
irl
6933aad1fa feat(baseline): do not expect global become true 2025-12-20 13:14:35 +00:00
irl
c793b470b0 feat(baseline): enable sssd faillock, pwhistory and disable nullok 2025-12-20 13:12:43 +00:00
irl
366f6c036a feat(baseline): enable project quotas for /home
Some checks failed
Ansible Lint Check / lint (push) Failing after 58s
Details
2025-12-04 17:30:11 +00:00
irl
e098840fab feat(podman_keycloak): nginx enhancements (buffering + DNS)
Some checks failed
Ansible Lint Check / lint (push) Failing after 57s
Details 
* lookup of the keycloak container is at runtime to allow for
  the keycloak container being restarted while nginx is running
* increased buffer sizes to permit for larger signed SAML exchanges
  (was required for Google Workspace)
 2025-11-30 15:02:54 +00:00
irl
57c58eb26a fix(podman_keycloak): allow override of podman username 2025-11-30 15:02:16 +00:00
irl
f65ad3fce2 fix(podman_nginx): modifying firewall requires become 2025-11-30 15:00:16 +00:00
irl
78aad663e6 feat(baseline): move freeipa related lockdown overrides to role from playbook
Some checks failed
Ansible Lint Check / lint (push) Failing after 57s
Details
2025-11-08 21:00:18 +00:00
irl
ec972f9470 feat(baseline): enable with-subid feature for sssd 2025-11-08 20:59:45 +00:00
irl
7792cac0c7 feat(podman_host): do not create local users and assume a user exists 
For SR2's usage, these users will exist because they have been created
in FreeIPA along with their subids.
 2025-11-08 20:57:45 +00:00
irl
b471a034a4 feat(podman_nginx): configure firewalld 2025-11-08 20:56:53 +00:00
irl
1d5d39d1c2 lint: ansible-lint suggested updates 2025-11-01 15:21:36 +00:00
irl
2ba6c6691b Initial import; migrate some roles from irl.wip 2025-10-31 22:36:32 +00:00