-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathmain.yml
151 lines (136 loc) · 4.07 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
---
- hosts: static-www
tasks:
- add_host: hostname={{inventory_hostname}} groupname=tag_role_www
- hosts: tag_role_www
sudo: true
serial: 1
gather_facts: false
user: fedora
vars:
mediawiki_branch: "synhak-1.22.0"
mw_git: "https://gerrit.wikimedia.org/r/p/mediawiki/extensions"
vars_files:
- private/spiff-settings.yml
- private/mediawiki-settings.yml
pre_tasks:
- name: Collect EC2 facts
action: ec2_facts
- name: Remove from ELB
connection: local
sudo: false
local_action:
module: ec2_elb
region: "{{ansible_ec2_placement_region}}"
ec2_elbs:
- www-vpc
state: 'absent'
instance_id: "{{ansible_ec2_instance_id}}"
- name: Install libselinux-python
action: yum pkg=libselinux-python state=present
- name: Configure selinux
action: selinux state=permissive policy=targeted
post_tasks:
- name: Add to ELB
connection: local
sudo: false
local_action:
module: ec2_elb
region: "{{ansible_ec2_placement_region}}"
ec2_elbs:
- www-vpc
instance_id: "{{ansible_ec2_instance_id}}"
state: 'present'
roles:
- role: managed-host
sysadmins:
- name: tdfischer
key: "{{ lookup('file', 'sysadmin-keys/tdfischer.pub') }}"
- name: phuzion
key: "{{ lookup('file', 'sysadmin-keys/phuzion.pub') }}"
- name: gsvolt
key: "{{ lookup('file', 'sysadmin-keys/gsvolt.pub') }}"
extra_packages:
- php-pecl-apc
- php-xml
- php-mysql
- mysql-devel
- mysql
- librsvg2
- ImageMagick
- role: django-app
name: spiff
git: git://github.com/SYNHAK/spiff.git
vcs_version: master
uwsgi_mount: auth
uwsgi_config:
src: templates/spiff-settings.py
dest: "{{uwsgi_app_path}}/local_settings.py"
uwsgi_extra_packages:
- MySQL-python
nginx_config: "add_header Access-Control-Allow-Credentials true;add_header Access-Control-Allow-Headers 'Origin,Content-Type,Accept';"
uwsgi_logger: "syslog:spiff"
nginx_log: "/dev/null"
- role: uwsgi-app
name: mediawiki
git: git://github.com/SYNHAK/mediawiki.git
vcs_version: synhak-1.22.0
plugin: php
uwsgi_mount: wiki
uwsgi_nginx_config: templates/mediawiki-nginx.conf
uwsgi_buffer_size: 8192
uwsgi_config:
src: templates/LocalSettings.php
dest: "{{uwsgi_app_path}}/LocalSettings.php"
uwsgi_logger: "syslog:mediawiki"
nginx_log: "/dev/null"
- role: mediawiki-extension
name: ConfirmEdit
git: "{{mw_git}}/ConfirmEdit.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: ParserFunctions
git: "{{mw_git}}/ParserFunctions.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: Nuke
git: "{{mw_git}}/Nuke.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: Gadgets
git: "{{mw_git}}/Gadgets.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: googleAnalytics
git: "git://github.com/SYNHAK/googleAnalytics.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: secured_html
srcFile: "scripts/Secured_HTML.php"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: RSS
git: "{{mw_git}}/RSS.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: Nuke
git: "{{mw_git}}/Nuke.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: ExternalData
git: "{{mw_git}}/ExternalData.git"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: googleAgenda
srcFile: "scripts/googleAgenda.php"
destFile: "googleAgenda.php"
uwsgi_name: mediawiki
- role: mediawiki-extension
name: LocalS3Repo
git: "https://github.com/SYNHAK/LocalS3Repo.git"
uwsgi_name: mediawiki
- role: uwsgi-server
- role: nginx-uwsgi
name: synhak.org
nginx_append:
- templates/synhak-nginx.conf