AFPy/infra
AFPy
/
infra
9
0
Fork 2
Code Issues 5 Pull Requests Projects Releases Wiki Activity

Make nginx listen on IPv6 (duplicate listen should not be usefull, but happen they are).

This commit is contained in:
Julien Palard 2021-12-30 21:33:48 +01:00
parent 8b4e6d7843
commit 75c76b16a4
Signed by: mdk
GPG Key ID: 0EFC1AC1006886F8
11 changed files with 40 additions and 50 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
README.md
View File

@ -2,7 +2,6 @@
On découpe nos *playbooks* Ansible par rôles :
- `site.yml`: Inclu tous les autres, pratique pour tout exécuter.
- `pycon.yml`: Pour les pycon.fr
- `backup.yml`: Configure rsnapshot pour sauvegarder nos serveurs.
- ...
@ -12,11 +11,11 @@ En partant de là, on peut utiliser les commandes suivantes:
Après avoir cloné ce repo, installé Ansible dans un venv, installez
les roles nécessaires via :
- ansible-galaxy install -r requirements.yml
- ansible-galaxy install julienpalard.nginx tschifftner.exim4_sendonly
Puis pour jouer les *playbooks* :
- Pour tout relancer : `ansible-playbook site.yml`
- Pour tout relancer : `ansible-parallel *.yml`
- Pour configurer les PyCons : `ansible-playbook pycons.yml`

14
afpy.org.yml
View File

@ -40,7 +40,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name www.afpy.org afpy.org;
access_log /var/log/nginx/afpy.org-access.log;
error_log /var/log/nginx/afpy.org-error.log;
@ -49,7 +49,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name afpy.org;
access_log /var/log/nginx/afpy.org-access.log;
error_log /var/log/nginx/afpy.org-error.log;
@ -59,7 +59,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name www.afpy.org;
access_log /var/log/nginx/afpy.org-access.log;
error_log /var/log/nginx/afpy.org-error.log;
@ -190,7 +190,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name planet.afpy.org;
access_log /var/log/nginx/planet.afpy.org-access.log;
error_log /var/log/nginx/planet.afpy.org-error.log;
@ -199,7 +199,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name planet.afpy.org;
access_log /var/log/nginx/planet.afpy.org-access.log;
error_log /var/log/nginx/planet.afpy.org-error.log;
@ -233,7 +233,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name lists.afpy.org;
access_log /var/log/nginx/lists.afpy.org-access.log;
error_log /var/log/nginx/lists.afpy.org-error.log;
@ -242,7 +242,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name lists.afpy.org;
access_log /var/log/nginx/lists.afpy.org-access.log;
error_log /var/log/nginx/lists.afpy.org-error.log;

4
afpyro.afpy.org.yml
View File

@ -16,7 +16,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name afpyro.afpy.org;
access_log /var/log/nginx/afpyro.afpy.org-access.log;
error_log /var/log/nginx/afpyro.afpy.org-error.log;
@ -25,7 +25,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name afpyro.afpy.org;
access_log /var/log/nginx/afpyro.afpy.org-access.log;
error_log /var/log/nginx/afpyro.afpy.org-error.log;

4
autoconfig.yml
View File

@ -17,7 +17,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name autoconfig.afpy.org autoconfig.pycon.fr;
access_log /var/log/nginx/autoconfig.afpy.org-access.log;
error_log /var/log/nginx/autoconfig.afpy.org-error.log;
@ -26,7 +26,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name autoconfig.afpy.org autoconfig.pycon.fr;
access_log /var/log/nginx/autoconfig.afpy.org-access.log;
error_log /var/log/nginx/autoconfig.afpy.org-error.log;

8
dl.yml
View File

@ -68,7 +68,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name dl.afpy.org;
access_log /var/log/nginx/http-access.log;
error_log /var/log/nginx/http-error.log;
@ -77,7 +77,7 @@
server
{
listen 80;
listen [::]:80; listen 80;
server_name videos-2015.pycon.fr;
access_log /var/log/nginx/http-access.log;
error_log /var/log/nginx/http-error.log;
@ -86,7 +86,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name videos-2015.pycon.fr;
access_log /var/log/nginx/videos-2015.pycon.fr-access.log;
error_log /var/log/nginx/videos-2015.pycon.fr-error.log;
@ -96,7 +96,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name dl.afpy.org;
access_log /var/log/nginx/dl.afpy.org-access.log;
error_log /var/log/nginx/dl.afpy.org-error.log;

4
logs.afpy.org.yml
View File

@ -15,7 +15,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name logs.afpy.org;
access_log /var/log/nginx/logs.afpy.org-access.log;
error_log /var/log/nginx/logs.afpy.org-error.log;
@ -24,7 +24,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name logs.afpy.org;
access_log /var/log/nginx/logs.afpy.org-access.log;
error_log /var/log/nginx/logs.afpy.org-error.log;

30
pycon.fr.yml
View File

@ -23,7 +23,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name .pycon.fr;
access_log /var/log/nginx/pycon.fr-access.log;
error_log /var/log/nginx/pycon.fr-error.log;
@ -32,7 +32,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name pycon.fr;
access_log /var/log/nginx/pycon.fr-access.log;
error_log /var/log/nginx/pycon.fr-error.log;
@ -42,7 +42,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name www.pycon.fr;
access_log /var/log/nginx/pycon.fr-access.log;
error_log /var/log/nginx/pycon.fr-error.log;
@ -64,7 +64,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name 2016.pycon.fr;
access_log /var/log/nginx/2016.pycon.fr-access.log;
error_log /var/log/nginx/2016.pycon.fr-error.log;
@ -73,7 +73,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name 2016.pycon.fr;
access_log /var/log/nginx/2016.pycon.fr-access.log;
error_log /var/log/nginx/2016.pycon.fr-error.log;
@ -90,7 +90,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name 2012.pycon.fr;
access_log /var/log/nginx/2012.pycon.fr-access.log;
error_log /var/log/nginx/2012.pycon.fr-error.log;
@ -99,7 +99,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name 2012.pycon.fr;
access_log /var/log/nginx/2012.pycon.fr-access.log;
error_log /var/log/nginx/2012.pycon.fr-error.log;
@ -115,7 +115,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name 2011.pycon.fr;
access_log /var/log/nginx/2011.pycon.fr-access.log;
error_log /var/log/nginx/2011.pycon.fr-error.log;
@ -124,7 +124,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name 2011.pycon.fr;
access_log /var/log/nginx/2011.pycon.fr-access.log;
error_log /var/log/nginx/2011.pycon.fr-error.log;
@ -140,7 +140,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name 2010.pycon.fr;
access_log /var/log/nginx/2010.pycon.fr-access.log;
error_log /var/log/nginx/2010.pycon.fr-error.log;
@ -149,7 +149,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name 2010.pycon.fr;
access_log /var/log/nginx/2010.pycon.fr-access.log;
error_log /var/log/nginx/2010.pycon.fr-error.log;
@ -167,7 +167,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name paullaroid.pycon.fr;
access_log /var/log/nginx/paullaroid.pycon.fr-access.log;
error_log /var/log/nginx/paullaroid.pycon.fr-error.log;
@ -177,7 +177,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
charset utf-8;
server_name paullaroid.pycon.fr;
access_log /var/log/nginx/paullaroid.pycon.fr-access.log;
@ -196,7 +196,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name fr.pycon.org;
access_log /var/log/nginx/fr.pycon.org-access.log;
error_log /var/log/nginx/fr.pycon.org-error.log;
@ -205,7 +205,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name fr.pycon.org;
access_log /var/log/nginx/fr.pycon.org-access.log;
error_log /var/log/nginx/fr.pycon.org-error.log;

4
pydocteur.afpy.org.yml
View File

@ -20,7 +20,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name pydocteur.afpy.org;
access_log /var/log/nginx/pydocteur.afpy.org-access.log;
error_log /var/log/nginx/pydocteur.afpy.org-error.log;
@ -29,7 +29,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name pydocteur.afpy.org;
access_log /var/log/nginx/pydocteur.afpy.org-access.log;
error_log /var/log/nginx/pydocteur.afpy.org-error.log;

4
roles/discourse/tasks/main.yml
View File

@ -13,7 +13,7 @@
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name {{ discourse_domain }};
access_log /var/log/nginx/{{ discourse_domain }}-access.log;
error_log /var/log/nginx/{{ discourse_domain }}-error.log;
@ -22,7 +22,7 @@
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
server_name {{ discourse_domain }};
access_log /var/log/nginx/{{ discourse_domain }}-access.log;
error_log /var/log/nginx/{{ discourse_domain }}-error.log;

4
roles/nginx/defaults/main.yml
View File

@ -7,7 +7,7 @@ HSTS_header: 'Strict-Transport-Security "max-age=63072000; always"'
nginx_conf: |
server
{
listen 80;
listen [::]:80; listen 80;
server_name {{ nginx_domain }};
access_log /var/log/nginx/{{ nginx_domain }}-access.log;
error_log /var/log/nginx/{{ nginx_domain }}-error.log;
@ -17,7 +17,7 @@ nginx_conf: |
server
{
listen 443 ssl;
listen [::]:443 ssl; listen 443 ssl;
charset utf-8;
server_name {{ nginx_domain }};
access_log /var/log/nginx/{{ nginx_domain }}-access.log;

9
site.yml
View File

@ -1,9 +0,0 @@
---
- import_playbook: common.yml
- import_playbook: pycon.fr.yml
- import_playbook: afpy.org.yml
- import_playbook: logs.afpy.org.yml
- import_playbook: backup.yml
- import_playbook: autoconfig.yml
- import_playbook: alain.yml