Skip to content
Snippets Groups Projects
Commit 0ba3437c authored by Jörg Sachse's avatar Jörg Sachse
Browse files

style: include linter suggestions

parent 62fac23b
No related branches found
No related tags found
1 merge request!1Feature: GitLab-CI
--- ---
- name: Ordner für iptables-Config erstellen - name: Ordner für iptables-Config erstellen
file: ansible.builtin.file:
path: "/etc/iptables" path: "/etc/iptables"
state: directory state: directory
owner: "root" owner: "root"
...@@ -9,16 +9,16 @@ ...@@ -9,16 +9,16 @@
listen: "save iptables rules" listen: "save iptables rules"
- name: install netfilter-persistent to be able to save iptables rules - name: install netfilter-persistent to be able to save iptables rules
apt: ansible.builtin.apt:
name: "netfilter-persistent" name: "netfilter-persistent"
state: present state: present
listen: "save iptables rules" listen: "save iptables rules"
- name: save iptables rules - name: save iptables rules
command: 'netfilter-persistent save' ansible.builtin.command: 'netfilter-persistent save'
listen: "save iptables rules" listen: "save iptables rules"
- name: restart squid proxy - name: restart squid proxy
systemd: ansible.builtin.systemd:
name: "squid.service" name: "squid.service"
state: restarted state: restarted
...@@ -19,8 +19,7 @@ galaxy_info: ...@@ -19,8 +19,7 @@ galaxy_info:
platforms: platforms:
- name: Debian - name: Debian
versions: versions:
- 9 - all
- 10
galaxy_tags: [] galaxy_tags: []
# List tags for your role here, one per line. A tag is a keyword that describes and categorizes the role. Users find roles by searching for tags. Be sure to remove the '[]' above, if you # List tags for your role here, one per line. A tag is a keyword that describes and categorizes the role. Users find roles by searching for tags. Be sure to remove the '[]' above, if you
# add tags to this list. # add tags to this list.
......
--- ---
- name: iptables-Regeln setzen (HTTP) - name: iptables-Regeln setzen (HTTP)
iptables: ansible.builtin.iptables:
action: append action: append
chain: INPUT chain: INPUT
comment: "{{ item.comment }}" comment: "{{ item.comment }}"
...@@ -20,7 +20,7 @@ ...@@ -20,7 +20,7 @@
- save iptables rules - save iptables rules
- name: iptables-Regeln setzen (HTTPS) - name: iptables-Regeln setzen (HTTPS)
iptables: ansible.builtin.iptables:
action: append action: append
chain: INPUT chain: INPUT
comment: "{{ item.comment }}" comment: "{{ item.comment }}"
......
--- ---
### NFS-MOUNTS ### ### NFS-MOUNTS ###
- name: Mountpoint fuer Logging anlegen - name: Mountpoint fuer Logging anlegen
file: ansible.builtin.file:
path: "{{ vault_nfs_mounts.log.mountpoint }}" path: "{{ vault_nfs_mounts.log.mountpoint }}"
state: directory state: directory
owner: "proxy" owner: "proxy"
...@@ -9,7 +9,7 @@ ...@@ -9,7 +9,7 @@
mode: 0755 mode: 0755
- name: NFS-Shares für Logging mounten - name: NFS-Shares für Logging mounten
mount: ansible.builtin.mount:
name: "{{ vault_nfs_mounts.log.mountpoint }}" name: "{{ vault_nfs_mounts.log.mountpoint }}"
src: "{{ vault_nfs_mounts.log.share }}/{{ ansible_hostname }}" src: "{{ vault_nfs_mounts.log.share }}/{{ ansible_hostname }}"
state: mounted state: mounted
......
--- ---
### SQUID-PROXY KONFIGURIEREN & NEU STARTEN ### ### SQUID-PROXY KONFIGURIEREN & NEU STARTEN ###
- name: Konfigurationsdateien einspielen - squid.conf - name: Konfigurationsdateien einspielen - squid.conf
copy: ansible.builtin.copy:
src: "{{ role_path }}/../ansible_vaults/{{ role_name }}/files/etc/squid3/squid.conf.vault" src: "{{ role_path }}/../ansible_vaults/{{ role_name }}/files/etc/squid3/squid.conf.vault"
dest: "/etc/squid/squid.conf" dest: "/etc/squid/squid.conf"
mode: "0644"
notify: notify:
- restart squid proxy - restart squid proxy
- name: Konfigurationsdateien einspielen - logrotate - name: Konfigurationsdateien einspielen - logrotate
copy: ansible.builtin.copy:
src: "etc/logrotate.d/squid3" src: "etc/logrotate.d/squid3"
dest: "/etc/logrotate.d/squid3" dest: "/etc/logrotate.d/squid3"
mode: "0644"
notify: notify:
- restart squid proxy - restart squid proxy
--- ---
- name: install packages (rsync, sarg, squid3, tar, unzip) - name: install packages (rsync, sarg, squid3, tar, unzip)
apt: ansible.builtin.apt:
state: present state: present
name: [ name: [
'rsync', 'rsync',
......
--- ---
- name: include Ansible Vaults - name: include Ansible Vaults
include_vars: "{{ role_path }}/../ansible_vaults/{{ role_name }}/{{ item }}" ansible.builtin.include_vars: "{{ role_path }}/../ansible_vaults/{{ role_name }}/{{ item }}"
loop: loop:
- "proxy.vault" - "proxy.vault"
tags: [always] tags: [always]
- name: install Proxy packages - name: install Proxy packages
import_tasks: install-packages.yml ansible.builtin.import_tasks: "install-packages.yml"
tags: [apt] tags: [apt]
- name: configure Squid Proxy - name: configure Squid Proxy
import_tasks: configure-squid-proxy.yml ansible.builtin.import_tasks: "configure-squid-proxy.yml"
tags: [proxy] tags: [proxy]
- name: configure NFS mounts - name: configure NFS mounts
import_tasks: configure-nfs-mounts.yml ansible.builtin.import_tasks: "configure-nfs-mounts.yml"
tags: [nfs] tags: [nfs]
- name: configure iptables firewall - name: configure iptables firewall
import_tasks: configure-iptables.yml ansible.builtin.import_tasks: "configure-iptables.yml"
tags: [iptables] tags: [iptables]
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment