Compare commits
No commits in common. "fedc15a1d7a8d19dee2b714a8cd4e80299835853" and "8a8216d78e72e8a8bd49ca52245dcf6458a08f84" have entirely different histories.
fedc15a1d7
...
8a8216d78e
6 changed files with 18 additions and 17 deletions
|
|
@ -38,6 +38,6 @@ all:
|
|||
services:
|
||||
hosts:
|
||||
service.bitlair.nl:
|
||||
wiki:
|
||||
www:
|
||||
hosts:
|
||||
wiki.bitlair.nl:
|
||||
cyber.bitlair.nl:
|
||||
|
|
|
|||
|
|
@ -76,18 +76,18 @@
|
|||
insertafter: '^PATH'
|
||||
line: 'MAILTO={{ notify_email }}'
|
||||
|
||||
- name: Configure SSH
|
||||
- name: Turn off SSH password auth
|
||||
lineinfile:
|
||||
path: /etc/ssh/sshd_config
|
||||
regexp: "{{ item.regexp }}"
|
||||
line: "{{ item.line }}"
|
||||
with_items:
|
||||
- regexp: '^#?Port'
|
||||
line: 'Port {{ ssh_port }}'
|
||||
- regexp: '^#?PasswordAuthentication'
|
||||
regexp: '^#?PasswordAuthentication'
|
||||
line: 'PasswordAuthentication no'
|
||||
- regexp: '^#?DebianBanner'
|
||||
line: 'DebianBanner no'
|
||||
notify: reload sshd
|
||||
|
||||
- name: Configure SSH port
|
||||
lineinfile:
|
||||
path: /etc/ssh/sshd_config
|
||||
regexp: '^#?Port'
|
||||
line: 'Port {{ ssh_port }}'
|
||||
notify: reload sshd
|
||||
|
||||
- name: Allow SSH
|
||||
|
|
|
|||
|
|
@ -13,6 +13,7 @@ server {
|
|||
{% endif %}
|
||||
|
||||
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload";
|
||||
add_header X-Frame-Options DENY;
|
||||
add_header X-Content-Type-Options nosniff;
|
||||
|
||||
location / {
|
||||
|
|
|
|||
|
|
@ -69,7 +69,7 @@
|
|||
"allowUnknownFileEnds": true,
|
||||
"requireAuthentication": false,
|
||||
"requireAuthorization": false,
|
||||
"trustProxy": true,
|
||||
"trustProxy": false,
|
||||
"cookie": {
|
||||
"sameSite": "Lax"
|
||||
},
|
||||
|
|
|
|||
|
|
@ -3,10 +3,10 @@
|
|||
import_tasks: calendar.yaml
|
||||
|
||||
- tags: www_mediawiki
|
||||
import_tasks: mediawiki.yaml
|
||||
include_tasks: mediawiki.yaml
|
||||
|
||||
- tags: www_mqtt
|
||||
import_tasks: mqtt.yaml
|
||||
include_tasks: mqtt.yaml
|
||||
|
||||
- tags: www_spaceapi
|
||||
import_tasks: spaceapi.yaml
|
||||
include_tasks: spaceapi.yaml
|
||||
|
|
|
|||
|
|
@ -2,7 +2,7 @@
|
|||
- name: Clone spaceapi source
|
||||
git:
|
||||
repo: https://github.com/bitlair/spaceapi.git
|
||||
version: main
|
||||
version: master
|
||||
dest: /opt/spaceapi
|
||||
accept_hostkey: yes
|
||||
notify: restart spaceapi
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue