Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Tag up the bodhi/base role.

Browse source
This commit is contained in:
Ralph Bean 2014-12-05 18:32:51 +00:00
parent dd37302f59
commit 9947226759
1 changed files with 18 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

18
roles/bodhi/base/tasks/main.yml
View file

@ -8,11 +8,13 @@
- bodhi-server - bodhi-server
tags: tags:
- packages - packages
- bodhi
- name: setup /etc/bodhi/ directory - name: setup /etc/bodhi/ directory
file: path=/etc/bodhi owner=root group=root mode=0755 state=directory file: path=/etc/bodhi owner=root group=root mode=0755 state=directory
tags: tags:
- config - config
- bodhi
- name: setup basic /etc/bodhi/ contents - name: setup basic /etc/bodhi/ contents
template: > template: >
@ -25,6 +27,7 @@
- restart httpd - restart httpd
tags: tags:
- config - config
- bodhi
- name: setup basic /etc/httpd/conf.d/ bodhi contents - name: setup basic /etc/httpd/conf.d/ bodhi contents
copy: > copy: >
@ -37,11 +40,13 @@
- restart httpd - restart httpd
tags: tags:
- config - config
- bodhi
- name: setup /etc/pki/bodhi directory - name: setup /etc/pki/bodhi directory
file: path=/etc/pki/bodhi owner=root group=root mode=0755 state=directory file: path=/etc/pki/bodhi owner=root group=root mode=0755 state=directory
tags: tags:
- config - config
- bodhi
- name: install bodhi.pem file - name: install bodhi.pem file
copy: > copy: >
@ -52,6 +57,7 @@
mode=0400 mode=0400
tags: tags:
- config - config
- bodhi
- name: install bodhi certificates - name: install bodhi certificates
copy: > copy: >
@ -65,11 +71,13 @@
- fedora-upload-ca.cert - fedora-upload-ca.cert
tags: tags:
- config - config
- bodhi
- name: setup /var/log/bodhi directory - name: setup /var/log/bodhi directory
file: path=/var/log/bodhi owner=bodhi group=bodhi mode=0755 state=directory file: path=/var/log/bodhi owner=bodhi group=bodhi mode=0755 state=directory
tags: tags:
- config - config
- bodhi
- name: check the selinux context of the bugzilla cookie - name: check the selinux context of the bugzilla cookie
command: matchpathcon /var/tmp/bodhi-bz.cookie command: matchpathcon /var/tmp/bodhi-bz.cookie
@ -78,24 +86,34 @@
changed_when: "1 != 1" changed_when: "1 != 1"
tags: tags:
- config - config
- bodhi
- selinux
- name: set the SELinux policy for the bugzilla cookie - name: set the SELinux policy for the bugzilla cookie
command: semanage fcontext -a -t httpd_tmp_t "/var/tmp/bodhi-bz.cookie" command: semanage fcontext -a -t httpd_tmp_t "/var/tmp/bodhi-bz.cookie"
when: cookiecontext.stdout.find('httpd_tmp_t') == -1 when: cookiecontext.stdout.find('httpd_tmp_t') == -1
tags: tags:
- config - config
- bodhi
- selinux
- name: enable httpd_tmp_exec SELinux boolean - name: enable httpd_tmp_exec SELinux boolean
seboolean: name=httpd_tmp_exec state=yes persistent=yes seboolean: name=httpd_tmp_exec state=yes persistent=yes
tags: tags:
- config - config
- bodhi
- selinux
- name: enable httpd_can_network_connect_db SELinux boolean - name: enable httpd_can_network_connect_db SELinux boolean
seboolean: name=httpd_can_network_connect_db state=yes persistent=yes seboolean: name=httpd_can_network_connect_db state=yes persistent=yes
tags: tags:
- config - config
- bodhi
- selinux
- name: enable httpd_can_network_connect SELinux boolean - name: enable httpd_can_network_connect SELinux boolean
seboolean: name=httpd_can_network_connect state=yes persistent=yes seboolean: name=httpd_can_network_connect state=yes persistent=yes
tags: tags:
- config - config
- bodhi
- selinux