sr2/ansible-collection-core
4
0
Fork 0
Code Issues 5 Pull requests Projects Releases Packages Wiki Activity Actions
25 commits 1 branch 0 tags 114 KiB
Commit graph

25 commits

This branch
This branch
All branches
Author SHA1 Message Date
irl
5c98a76889 feat(node_exporter): initial role for node_exporter on host 2025-12-22 11:09:12 +00:00
irl
aa2fe2ddc6 feat(podman_nginx): allow nginx to bind to additional ports 2025-12-22 11:07:42 +00:00
irl
0d9e5052ab feat(services): rename playbook to just services 2025-12-22 11:07:42 +00:00
irl
84e83df428 fix(podman_host): restart systemd-logind if needed before enabling linger 2025-12-22 11:07:42 +00:00
irl
d1d38d672a feat(baseline): rotate auditd logs until a plan is in place to archive them 2025-12-22 11:04:08 +00:00
irl
c3a5cb1f54 feat(baseline): add handler to reload firewalld 2025-12-22 11:03:26 +00:00
irl
3a09fb1351 fix(cloudns_monitor): correct delete notification endpoint 2025-12-22 11:02:44 +00:00
irl
d5a6ef3461 feat(cloudns): prototype module for handling monitoring checks
All checks were successful
Ansible Lint Check / lint (push) Successful in 55s
Details
2025-12-20 17:14:16 +00:00
irl
8825c6d024 lint: ansible-lint suggested updates
All checks were successful
Ansible Lint Check / lint (push) Successful in 56s
Details
2025-12-20 13:22:40 +00:00
irl
d188a70ff5 docs: add note on become convention
Some checks failed
Ansible Lint Check / lint (push) Failing after 56s
Details
2025-12-20 13:16:09 +00:00
irl
cd7e824890 feat(podman_host): add XDG_RUNTIME_DIR to .bashrc too 2025-12-20 13:15:44 +00:00
irl
7eb6119137 feat(generic): add a simple playbook for manually deployed apps 2025-12-20 13:15:10 +00:00
irl
6933aad1fa feat(baseline): do not expect global become true 2025-12-20 13:14:35 +00:00
irl
c793b470b0 feat(baseline): enable sssd faillock, pwhistory and disable nullok 2025-12-20 13:12:43 +00:00
irl
366f6c036a feat(baseline): enable project quotas for /home
Some checks failed
Ansible Lint Check / lint (push) Failing after 58s
Details
2025-12-04 17:30:11 +00:00
irl
e098840fab feat(podman_keycloak): nginx enhancements (buffering + DNS)
Some checks failed
Ansible Lint Check / lint (push) Failing after 57s
Details 
* lookup of the keycloak container is at runtime to allow for
  the keycloak container being restarted while nginx is running
* increased buffer sizes to permit for larger signed SAML exchanges
  (was required for Google Workspace)
 2025-11-30 15:02:54 +00:00
irl
57c58eb26a fix(podman_keycloak): allow override of podman username 2025-11-30 15:02:16 +00:00
irl
f65ad3fce2 fix(podman_nginx): modifying firewall requires become 2025-11-30 15:00:16 +00:00
irl
78aad663e6 feat(baseline): move freeipa related lockdown overrides to role from playbook
Some checks failed
Ansible Lint Check / lint (push) Failing after 57s
Details
2025-11-08 21:00:18 +00:00
irl
ec972f9470 feat(baseline): enable with-subid feature for sssd 2025-11-08 20:59:45 +00:00
irl
7792cac0c7 feat(podman_host): do not create local users and assume a user exists 
For SR2's usage, these users will exist because they have been created
in FreeIPA along with their subids.
 2025-11-08 20:57:45 +00:00
irl
b471a034a4 feat(podman_nginx): configure firewalld 2025-11-08 20:56:53 +00:00
irl
b360d0e861 docs: bump version for RHEL9-CIS role
All checks were successful
Ansible Lint Check / lint (push) Successful in 59s
Details
2025-11-01 15:21:36 +00:00
irl
1d5d39d1c2 lint: ansible-lint suggested updates 2025-11-01 15:21:36 +00:00
irl
2ba6c6691b Initial import; migrate some roles from irl.wip 2025-10-31 22:36:32 +00:00