Commit graph

272 commits

Author SHA1 Message Date
Matt Willsher
7b5e905a20 Use become not sudo 2019-05-23 20:34:28 +01:00
Matt Willsher
a141241d1a
Merge pull request #109 from yurihs/master
Resolve lint errors
2019-05-23 20:28:35 +01:00
yurihs
efc868edc2 Ignore ansible-lint E303, usage of systemctl command is unavoidable 2019-05-23 14:50:24 -03:00
yurihs
53218db597 Use bool filter instead of bare variables or comparison to literal True (ansible-lint E601, ansible/ansible#51030) 2019-05-23 14:50:24 -03:00
yurihs
775264a8b8 Make tags lowercase (ansible-lint E702) 2019-05-23 14:32:21 -03:00
yurihs
43d65fb63a Add names to all tasks (ansible-lint E502) 2019-05-23 14:31:30 -03:00
Matt Willsher
7f6344b508
Merge pull request #106 from BenGig/master
Backup of sshd_config dependent on variable
2019-04-29 17:51:18 +01:00
Matt Willsher
95964bda34
Merge pull request #107 from kpfleming/patch-1
Remove 'UsePrivilegeSeparation' from Fedora defaults
2019-04-29 17:50:42 +01:00
Kevin P. Fleming
e000716443
Remove 'UsePrivilegeSeparation' from Fedora defaults
This option has been deprecated in OpenSSH for nearly two years, was the default for five years before that, and is not part of the current Fedora default configuration. It should not be included in sshd_config on Fedora systems.
2019-04-28 21:12:06 -04:00
BenGig
7a84821b8f
Backup of sshd_config dependent on variable
Propagates setting sshd_backup to template installation task
2019-03-22 11:51:39 +01:00
Matt Willsher
a84bc84c22
Merge pull request #104 from pillarsdotnet/fix-vars
Fix variable loading.
2019-03-03 09:31:07 +00:00
Robert A Vincent II
4a0f7d935a Specify search path for os vars; support odd-numbered Ubuntu releases. 2019-02-25 16:10:34 -05:00
Matt Willsher
81bd585e8f
Merge pull request #103 from mfredholm/patch-1: Ubuntu 18 defaults
Remove deprecated options for Ubuntu 18
2019-02-20 21:17:24 +00:00
mfredholm
a3ca915dbd
Update Ubuntu_18.yml
Minimal vars using defaults.
2019-01-31 10:33:01 +01:00
mfredholm
03172b3c07
Remove deprecated options 2019-01-28 13:30:19 +01:00
Matt Willsher
6f43191418
Merge pull request #95 from AaltoScienceIT/chroot
Make role work with chroot connections on EL 7.
2018-09-22 19:14:28 +01:00
Janne Blomqvist
d438f096a7 Make role work with chroot connections on EL 7.
For chroot connection (e.g. when building images instead of working on
live hosts) one cannot restart services etc.

Also due to Ansible bug 21026 one must run systemctl instead of using
the service module, limiting support to EL 7 for the time being.
2018-09-11 16:10:58 +03:00
Matt Willsher
5d6262a474
Merge pull request #93 from tterranigma/service_fix
Fixes bad option in systemd service file
2018-09-11 07:08:57 +01:00
Nikolaos Kakouros
d3d04cfdd7 Fixes bad option in systemd service file 2018-09-11 00:21:01 +02:00
Matt Willsher
96992e1a5d
Merge pull request #91 from tterranigma/onoff
Adds on/off toggle
2018-09-08 09:49:33 +01:00
Nikolaos Kakouros
da2c91d93a Adds forgotten conditional 2018-09-08 10:46:57 +02:00
Nikolaos Kakouros
10f94a1f05 Updates syntax to Ansible 2.7 era 2018-09-08 10:13:51 +02:00
Nikolaos Kakouros
a6a21a9565 Adds on/off toggle 2018-09-08 09:14:39 +02:00
Matt Willsher
b431459b45
Merge pull request #89 from tterranigma/systemd
Adds ability to install a systemd service
2018-09-07 20:09:42 +01:00
Nikolaos Kakouros
1c511219bf Updates README 2018-09-07 01:36:35 +02:00
Nikolaos Kakouros
133543cc1f Renames variables for all supported platforms 2018-09-03 00:23:58 +02:00
Nikolaos Kakouros
54715f9456 Fixes Ubuntu vars 2018-08-26 00:06:42 +02:00
Nikolaos Kakouros
f5c13ee90f Merge branch 'master' into systemd 2018-08-25 23:48:09 +02:00
Nikolaos Kakouros
5774f7f44f Adds ability to install a systemd service 2018-08-25 23:39:06 +02:00
Matt Willsher
9575d16dd4
Merge pull request #87 from pillarsdotnet/add-missing-options
Add missing sshd options, improve CI tests
2018-08-17 17:53:08 +01:00
Bob Vincent
3aa2d17876 Regenerate templates/sshd_config.j2 from meta files. 2018-08-17 11:54:45 -04:00
Bob Vincent
c52053b53e Add missing options_match entries. 2018-08-17 11:54:45 -04:00
Bob Vincent
9378cbd7cf Add missing options_body entries. 2018-08-17 11:54:45 -04:00
Matt Willsher
6b5f6b0f70
Merge pull request #88 from dduong42/master
Add Ubuntu_18.yml
2018-08-17 16:11:47 +01:00
Daniel Duong
20488a5edc Add Ubuntu_18.yml
I copied it from Ubuntu_16.yml
2018-08-15 12:24:41 +07:00
Bob Vincent
2973943f72 Ensure ansible version is 2.0 or greater. 2018-08-13 12:00:11 -04:00
Bob Vincent
275c9afcd4 Run tests in color. 2018-08-13 12:00:11 -04:00
Bob Vincent
8a2dbf0f41 Fix error in 30_bottom.j2 2018-08-13 12:00:11 -04:00
Matt Willsher
e1369653ab
Merge pull request #84 from easonand/sshd_config-backup
expose sshd_config template backup option with sshd_backup variable
2018-08-11 16:41:59 +01:00
Andrew Eason
814fa367d4 expose sshd_config template backup option with sshd_backup 2018-07-27 10:08:17 -04:00
Matt Willsher
d2ba81107a
Merge pull request #82 from beyondbill/coreos
Add CoreOS support
2018-06-16 16:41:55 +01:00
Bo Huang
80fdedca43 Add CoreOS support 2018-06-15 16:29:07 -07:00
Matt Willsher
e9c1db2bc8
Merge pull request #79 from beyondbill/amazon_sshd_defaults
Amazon var name should be sshd_defaults
2018-06-05 18:47:10 +01:00
Bo Huang
f7f1e466e9 Amazon Linux default sshd var name should be sshd_defaults 2018-05-21 23:41:09 -07:00
Matt Willsher
c7483f1294
Merge pull request #78 from D4N/master
Fix for ansible_virtualization_type not being defined in Ansible > 2.5
2018-04-24 11:25:13 +01:00
Dan Čermák
a257ae7317 Fix for ansible_virtualization_type not defined in Ansible > 2.5
ansible_virtualization_type is undefined in Ansible > 2.5 when no virtualization
is used. A jinja2 filter has been added that provides a default value (None) so
that the check does not fail
2018-04-24 11:32:55 +02:00
Matt Willsher
77768eb9f4
Merge pull request #76 from TimJDFletcher/RemoveDeprecatedOptions
Remove Deprecated options in default SSH config
2018-04-19 19:33:23 +01:00
Tim Fletcher
7afdd97726
Remove Deprecated options in default SSH config 2018-04-16 21:45:16 +02:00
Matt Willsher
ccafb5534e
Merge pull request #74 from TimJDFletcher/StreamLocalBindUnlink
Add StreamLocalBindUnlink option
2018-03-28 10:15:19 +01:00
Tim Fletcher
4f0be6f5e7
Add StreamLocalBindUnlink option
This option removes existing Unix-domain socket files before they are
used for forwarding targets.

Need to support gpg-agent forwarding with systemd
2018-03-17 15:44:58 +01:00