diff options
author | Matthieu Saulnier <fantom@fedoraproject.org> | 2018-11-22 18:37:21 +0100 |
---|---|---|
committer | Matthieu Saulnier <fantom@fedoraproject.org> | 2018-11-22 18:37:21 +0100 |
commit | 7518e1e6cdce302b21214b432e1a61556a301f91 (patch) | |
tree | 9cb72db03136a012145175031e256c7bb0906574 /roles/proxy/tasks/config.yml | |
parent | 8cabe0913bba08da5b7b2aa5c196e1ea76de4b2a (diff) | |
download | playbooks-ansible-7518e1e6cdce302b21214b432e1a61556a301f91.tar.gz playbooks-ansible-7518e1e6cdce302b21214b432e1a61556a301f91.tar.xz playbooks-ansible-7518e1e6cdce302b21214b432e1a61556a301f91.zip |
Init proxy role
Diffstat (limited to 'roles/proxy/tasks/config.yml')
-rw-r--r-- | roles/proxy/tasks/config.yml | 38 |
1 files changed, 38 insertions, 0 deletions
diff --git a/roles/proxy/tasks/config.yml b/roles/proxy/tasks/config.yml new file mode 100644 index 0000000..09d3767 --- /dev/null +++ b/roles/proxy/tasks/config.yml @@ -0,0 +1,38 @@ +- name: Configuration de squid + template: src=squid.conf.j2 dest=/etc/squid/squid.conf + owner=root + group=squid + mode=640 + notify: restart squid + +- name: Installation de l'unité systemd + copy: + src: squid.service + dest: /etc/systemd/system/ + owner: root + group: root + mode: 0644 + notify: reload systemd + +# à voir pour restarter tous les services impactés si un changement +# est détecté +# ou bien mettre des tâches d'update de cert LE dans les rôles correspondants +# aux services impactés (get file non-fatal) +- name: Installation des fichiers certificat + copy: + src: "certs/{{ item }}" + dest: /etc/pki/tls/certs/ + owner: root + group: root + mode: 0644 + with_items: + - "casperlefantom.{{ crtversion }}.crt" + - dhparam-4096.pem + +- name: Installation des fichiers clé + copy: + src: "certs/casperlefantom.{{ crtversion }}.key" + dest: /etc/pki/tls/private/ + owner: 0990 + group: root + mode: 0440 |