diff options
author | Matthieu Saulnier <fantom@fedoraproject.org> | 2018-12-02 02:21:38 +0100 |
---|---|---|
committer | Matthieu Saulnier <fantom@fedoraproject.org> | 2018-12-02 02:21:38 +0100 |
commit | 2c5927e9692f771eda8ba29e2a310fc2974485b0 (patch) | |
tree | 323b7710e1b230d1476e89189127289d94ba5585 /roles | |
parent | b0ca31564360bd11dfe1e8a30e01f1ba34705623 (diff) | |
download | playbooks-ansible-2c5927e9692f771eda8ba29e2a310fc2974485b0.tar.gz playbooks-ansible-2c5927e9692f771eda8ba29e2a310fc2974485b0.tar.xz playbooks-ansible-2c5927e9692f771eda8ba29e2a310fc2974485b0.zip |
Use host variables in tor config file template
Diffstat (limited to 'roles')
-rw-r--r-- | roles/torrelay/tasks/config.yml | 2 | ||||
-rw-r--r-- | roles/torrelay/tasks/main.yml | 6 | ||||
-rw-r--r-- | roles/torrelay/templates/torrc.j2 | 37 | ||||
-rw-r--r-- | roles/torrelay/vars/main.yml | 1 |
4 files changed, 16 insertions, 30 deletions
diff --git a/roles/torrelay/tasks/config.yml b/roles/torrelay/tasks/config.yml index 39f215a..88eb01c 100644 --- a/roles/torrelay/tasks/config.yml +++ b/roles/torrelay/tasks/config.yml @@ -18,7 +18,7 @@ - name: Configuration du service template: - src: keys.j2 + src: torrc.j2 dest: /etc/tor/torrc owner: root group: root diff --git a/roles/torrelay/tasks/main.yml b/roles/torrelay/tasks/main.yml index a1cde63..e95fb16 100644 --- a/roles/torrelay/tasks/main.yml +++ b/roles/torrelay/tasks/main.yml @@ -1,3 +1,9 @@ +- name: Loading hidden variables email + include_vars: email.yml + +- name: Loading hidden variables keys + include_vars: keys.yml + - name: Installation des paquets import_tasks: pkgs.yml diff --git a/roles/torrelay/templates/torrc.j2 b/roles/torrelay/templates/torrc.j2 index 6a0c1e0..482ee1f 100644 --- a/roles/torrelay/templates/torrc.j2 +++ b/roles/torrelay/templates/torrc.j2 @@ -1,22 +1,14 @@ Log notice file /var/log/tor/notices.log Log warn file /var/log/tor/warnings.log -# Here are ControlPort configuration imported from ansible template keys.j2 -# -# for exemple: -# ControlPort 9051 -# HashedControlPassword my-hashed-password-here -# -{% block keys %}{% endblock %} +ControlPort 9051 +HashedControlPassword {{ controlpasswd }} HiddenServiceDir /var/lib/tor/hidden_service1/ HiddenServicePort 22 127.0.0.1:22 HiddenServicePort 54444 127.0.0.1:54444 - - -{% if ansible_distribution == "Fedora" %} HiddenServicePort 9090 127.0.0.1:9090 -{% endif %} +HiddenServicePort 80 127.0.0.1:4433 {% if is_mtamaster is defined %} @@ -27,19 +19,11 @@ HiddenServicePort 587 127.0.0.1:587 {% endif %} -{% if is_tormaster is defined %} -HiddenServicePort 80 127.0.0.1:4433 -HiddenServiceDir /var/lib/tor/hidden_service2/ -HiddenServicePort 80 127.0.0.1:4433 -HiddenServiceDir /var/lib/tor/hidden_service3/ -HiddenServicePort 80 127.0.0.1:4433 -HiddenServiceDir /var/lib/tor/hidden_service4/ -HiddenServicePort 80 127.0.0.1:4434 -HiddenServicePort 443 127.0.0.1:4434 -HiddenServiceDir /var/lib/tor/hidden_service5/ -HiddenServicePort 80 127.0.0.1:4433 -HiddenServiceDir /var/lib/tor/hidden_service6/ -HiddenServicePort 80 127.0.0.1:4433 +{% if hiddenservices is defined %} +{% for service in hiddenservices %} +HiddenServiceDir /var/lib/tor/hidden_service{{ service.number }}/ +HiddenServicePort {{ service.port }} {{ service.host }} +{% endfor %} {% endif %} @@ -81,9 +65,6 @@ MyFamily {% for item in fingerprints %}${{ item }}, {% endfor %} {% if is_exit is defined %} ExitRelay 1 -{% endif %} - - -{% if is_exit is not defined %} +{% else %} ExitPolicy reject *:* {% endif %} diff --git a/roles/torrelay/vars/main.yml b/roles/torrelay/vars/main.yml index c77c9e5..9f5db23 100644 --- a/roles/torrelay/vars/main.yml +++ b/roles/torrelay/vars/main.yml @@ -1,5 +1,4 @@ orport: 9001 -contactinfo: '0x83288189 Casper <fantom AT fedoraproject dot org>' dirport: 9030 fingerprints: - 7350AB9ED7568F22745198359373C04AC783C37C |