WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-30 13:32:30 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
3782dad657e4e3f6a0263de4d8fec00a0669de4a
fedora-infra_ansible/roles/packages/web/tasks/main.yml
Patrick Uiterwijk 08568865fe Replace all restart httpd with reload httpd 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2015-11-04 23:40:01 +00:00

178 lines
3.8 KiB
YAML
Raw Blame History

---
# Configuration for the fedora-packages webapp
- name: install needed packages
yum: pkg={{ item }} state=present
with_items:
- fedora-packages
- python-psycopg2
- python-memcached
- python-sqlalchemy0.8
- redis
tags:
- packages
- packages/web
- name: Create some directories
file: path={{ item }} state=directory owner=apache group=apache mode=755
with_items:
- /etc/fedoracommunity
- /etc/fedoracommunity/yum_cache.repos.d
- /var/cache/fedoracommunity # the gluster role usually creates this one
- /var/log/fedoracommunity
tags:
- packages
- packages/web
- name: Create some more locked down directories
file: path={{ item }} state=directory owner=apache group=apache mode=700
with_items:
- /etc/pki/fedoracommunity
tags:
- packages
- packages/web
- name: Copy over the app config
template: >
src=packages-app.ini.j2
dest=/etc/fedoracommunity/production.ini
owner=apache group=apache mode=0600
notify:
- reload httpd
- restart fcomm-cache-worker
tags:
- packages
- packages/web
- name: Copy over the httpd config
copy: >
src=packages-httpd.conf
dest=/etc/httpd/conf.d/fedora-packages.conf
owner=root group=root mode=644
notify:
- reload httpd
tags:
- packages
- packages/web
- name: Copy over the yum config
copy: >
src=packages-yum.conf
dest=/etc/fedoracommunity/yum-repo.conf
owner=root group=root mode=0644
notify:
- reload httpd
- restart fcomm-cache-worker
tags:
- packages
- packages/web
- name: Copy over certs/public-keys, probably for talking with koji.
copy: >
src="{{private}}/files/packages/fedora-ca.cert"
dest="/etc/pki/fedoracommunity/{{item}}"
owner=apache
group=apache
mode=0644
with_items:
- fedora-server-ca.cert
- fedora-upload-ca.cert
tags:
- packages
- packages/web
- name: permanently hotfix the distmappings file
copy: >
src=distmappings.py
dest="{{pythonsitelib}}/fedoracommunity/search/distmappings.py"
owner=root group=root mode=0644
notify:
- reload httpd
- restart fcomm-cache-worker
tags:
- packages
- packages/web
- name: start some helper services
service: name="{{item}}" state=started enabled=yes
with_items:
- redis
- fcomm-cache-worker
tags:
- packages
- packages/web
# Here's the indexer stuff
- name: Create cache structure
file: >
dest="/var/cache/fedoracommunity/{{item}}"
state=directory
owner=apache
group=apache
mode=0755
with_items:
- packages
- rpm_cache
- git.fedoraproject.org
- packages/icons
- packages/xapian
- packages/xapian/search
- packages/xapian/versionmap
- packages/tmp
- packages/tmp/icons
- packages/tmp/rpms
- packages/tmp/search
- packages/tmp/versionmap
- packages/tmp/var
- packages/tmp/yum-cache
when: install_packages_indexer
tags:
- packages
- packages/web
- name: Copy over the default icon
copy: >
src=package_128x128.png
dest=/var/cache/fedoracommunity/packages/icons/package_128x128.png
owner=root mode=644 setype=fusefs_t
when: install_packages_indexer
tags:
- packages
- packages/web
- icon
- name: Copy some scripts for /usr/local
copy: src="{{item}}" dest="/usr/local/bin/{{item}}" mode=0755
with_items:
- sync-yum
when: install_packages_indexer
tags:
- packages
- packages/web
- name: Copy the indexer cronjobs
copy: src="{{item}}" dest="/etc/cron.d/{{item}}"
with_items:
- cron-sync-yum
- cron-sync-latest-builds
- cron-sync-package-index
- cron-flush-pkgs-cache
when: install_packages_indexer
tags:
- packages
- packages/web
# Lastly, here's some selinux stuff.
- name: set some selinux booleans
seboolean: name={{item}} persistent=yes state=yes
with_items:
- httpd_tmp_exec
- httpd_can_network_memcache
- httpd_can_network_connect
- httpd_use_fusefs
tags:
- packages
- packages/web
- selinux
Reference in New Issue View Git Blame Copy Permalink