diff --git a/README.md b/README.md old mode 100644 new mode 100755 diff --git a/ansible.cfg b/ansible.cfg old mode 100644 new mode 100755 diff --git a/collections/requirements.yml b/collections/requirements.yml old mode 100644 new mode 100755 diff --git a/hosts b/hosts old mode 100644 new mode 100755 diff --git a/hosts.yml b/hosts.yml old mode 100644 new mode 100755 diff --git a/hosts_init.yml b/hosts_init.yml old mode 100644 new mode 100755 diff --git a/hosts_kestra copy.yml b/hosts_kestra copy.yml old mode 100644 new mode 100755 diff --git a/hosts_roles.yml b/hosts_roles.yml old mode 100644 new mode 100755 diff --git a/jaydee.yml b/jaydee.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_apt_upgrade.yml b/playbooks/00_apt_upgrade.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_check_for_reboot.yml b/playbooks/00_check_for_reboot.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_clone_git_repo.yml b/playbooks/00_clone_git_repo.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_distribute_ssh_keys.yml b/playbooks/00_distribute_ssh_keys.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_getmac.yml b/playbooks/00_getmac.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_initial_adjustments.yml b/playbooks/00_initial_adjustments.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_install_ldap_client.yml b/playbooks/00_install_ldap_client.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_install_omv.yml b/playbooks/00_install_omv.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_install_zabbix_agent.yml b/playbooks/00_install_zabbix_agent.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_install_zabbix_agent1.yml b/playbooks/00_install_zabbix_agent1.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_install_zabbix_agent2.yml b/playbooks/00_install_zabbix_agent2.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_install_zabbix_server.yml b/playbooks/00_install_zabbix_server.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_install_zabbix_server_cert.yml b/playbooks/00_install_zabbix_server_cert.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_local.yml b/playbooks/00_local.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_poweroff.yml b/playbooks/00_poweroff.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_set_hostname.yml b/playbooks/00_set_hostname.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_setup_display.yml b/playbooks/00_setup_display.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_tst.yml b/playbooks/00_tst.yml old mode 100644 new mode 100755 diff --git a/playbooks/00_win.yml b/playbooks/00_win.yml old mode 100644 new mode 100755 diff --git a/playbooks/05_install_autofs.yml b/playbooks/05_install_autofs.yml old mode 100644 new mode 100755 diff --git a/playbooks/05_install_docker.yml b/playbooks/05_install_docker.yml old mode 100644 new mode 100755 diff --git a/playbooks/05_install_rhasspy.yml b/playbooks/05_install_rhasspy.yml old mode 100644 new mode 100755 diff --git a/playbooks/05_pullimage.yml b/playbooks/05_pullimage.yml old mode 100644 new mode 100755 diff --git a/playbooks/06_remove_docker.yml b/playbooks/06_remove_docker.yml old mode 100644 new mode 100755 diff --git a/playbooks/10_install_apparmor.yml b/playbooks/10_install_apparmor.yml old mode 100644 new mode 100755 diff --git a/playbooks/11_reboot.yml b/playbooks/11_reboot.yml old mode 100644 new mode 100755 diff --git a/playbooks/70_create_cluster.yml b/playbooks/70_create_cluster.yml old mode 100644 new mode 100755 diff --git a/playbooks/70_get_k3s_token.yml b/playbooks/70_get_k3s_token.yml old mode 100644 new mode 100755 diff --git a/playbooks/70_install_k3s.yml b/playbooks/70_install_k3s.yml old mode 100644 new mode 100755 diff --git a/playbooks/71_uninstall_k3s.yml b/playbooks/71_uninstall_k3s.yml old mode 100644 new mode 100755 diff --git a/playbooks/71_uninstall_k3s_agent.yml b/playbooks/71_uninstall_k3s_agent.yml old mode 100644 new mode 100755 diff --git a/playbooks/72_install_k3s_worker.yml b/playbooks/72_install_k3s_worker.yml old mode 100644 new mode 100755 diff --git a/playbooks/72_register_k3s_worker.yml b/playbooks/72_register_k3s_worker.yml old mode 100644 new mode 100755 diff --git a/playbooks/80_change_logo.yml b/playbooks/80_change_logo.yml old mode 100644 new mode 100755 diff --git a/playbooks/96_test_register.yml b/playbooks/96_test_register.yml old mode 100644 new mode 100755 diff --git a/playbooks/97_test.yml b/playbooks/97_test.yml old mode 100644 new mode 100755 diff --git a/playbooks/97_test_uninstall.yml b/playbooks/97_test_uninstall.yml old mode 100644 new mode 100755 diff --git a/playbooks/98_complete_install.yml b/playbooks/98_complete_install.yml old mode 100644 new mode 100755 diff --git a/playbooks/99_complete_install.yml b/playbooks/99_complete_install.yml old mode 100644 new mode 100755 diff --git a/playbooks/99_complete_install_rhasspy.yml b/playbooks/99_complete_install_rhasspy.yml old mode 100644 new mode 100755 diff --git a/playbooks/apt_upgrade.yml b/playbooks/apt_upgrade.yml old mode 100644 new mode 100755 diff --git a/playbooks/backup_docker.yml b/playbooks/backup_docker.yml old mode 100644 new mode 100755 diff --git a/playbooks/build_tasmota.yml b/playbooks/build_tasmota.yml old mode 100644 new mode 100755 diff --git a/playbooks/build_tasmota_v2.yml b/playbooks/build_tasmota_v2.yml old mode 100644 new mode 100755 diff --git a/playbooks/distrib_ssh_keys.yml b/playbooks/distrib_ssh_keys.yml old mode 100644 new mode 100755 diff --git a/playbooks/files/conf/rhasspy/profile.json b/playbooks/files/conf/rhasspy/profile.json old mode 100644 new mode 100755 diff --git a/playbooks/files/conf/router/dnsmasq.conf.add b/playbooks/files/conf/router/dnsmasq.conf.add old mode 100644 new mode 100755 diff --git a/playbooks/files/packages/zabbix-release_6.4-1+ubuntu22.04_all.deb b/playbooks/files/packages/zabbix-release_6.4-1+ubuntu22.04_all.deb old mode 100644 new mode 100755 diff --git a/playbooks/files/scripts/initial_changes.sh b/playbooks/files/scripts/initial_changes.sh old mode 100644 new mode 100755 diff --git a/playbooks/files/scripts/lcd_control.py b/playbooks/files/scripts/lcd_control.py old mode 100644 new mode 100755 diff --git a/playbooks/files/scripts/lcd_control_restart.py b/playbooks/files/scripts/lcd_control_restart.py old mode 100644 new mode 100755 diff --git a/playbooks/files/scripts/lcd_control_start.py b/playbooks/files/scripts/lcd_control_start.py old mode 100644 new mode 100755 diff --git a/playbooks/files/services/lcd_control.service b/playbooks/files/services/lcd_control.service old mode 100644 new mode 100755 diff --git a/playbooks/files/services/lcd_control_restart.service b/playbooks/files/services/lcd_control_restart.service old mode 100644 new mode 100755 diff --git a/playbooks/files/services/lcd_control_start.service b/playbooks/files/services/lcd_control_start.service old mode 100644 new mode 100755 diff --git a/playbooks/files/services/mqtt_srv.service b/playbooks/files/services/mqtt_srv.service old mode 100644 new mode 100755 diff --git a/playbooks/files/services/rhasspy.service b/playbooks/files/services/rhasspy.service old mode 100644 new mode 100755 diff --git a/playbooks/import_media.yml b/playbooks/import_media.yml old mode 100644 new mode 100755 diff --git a/playbooks/install_morefine.yaml b/playbooks/install_morefine.yaml old mode 100644 new mode 100755 diff --git a/playbooks/install_mqtt_srv.yml b/playbooks/install_mqtt_srv.yml old mode 100644 new mode 100755 diff --git a/playbooks/mailu_switch_to_primary.yaml b/playbooks/mailu_switch_to_primary.yaml old mode 100644 new mode 100755 diff --git a/playbooks/mailu_switch_to_second.yaml b/playbooks/mailu_switch_to_second.yaml old mode 100644 new mode 100755 diff --git a/playbooks/mailu_switch_to_second2.yaml b/playbooks/mailu_switch_to_second2.yaml old mode 100644 new mode 100755 diff --git a/playbooks/modify_espresense copy.yml b/playbooks/modify_espresense copy.yml old mode 100644 new mode 100755 diff --git a/playbooks/modify_espresense.yml b/playbooks/modify_espresense.yml old mode 100644 new mode 100755 diff --git a/playbooks/modify_tasmotas.yml b/playbooks/modify_tasmotas.yml old mode 100644 new mode 100755 diff --git a/playbooks/raspberrypi5_setup.yaml b/playbooks/raspberrypi5_setup.yaml old mode 100644 new mode 100755 diff --git a/playbooks/reconfigure_heimdall.yaml b/playbooks/reconfigure_heimdall.yaml old mode 100644 new mode 100755 diff --git a/playbooks/reconfigure_nginx.yaml b/playbooks/reconfigure_nginx.yaml old mode 100644 new mode 100755 diff --git a/playbooks/reconfigure_router.yml b/playbooks/reconfigure_router.yml old mode 100644 new mode 100755 diff --git a/playbooks/repair_nextcloud.yml b/playbooks/repair_nextcloud.yml old mode 100644 new mode 100755 diff --git a/playbooks/restore_container.yaml b/playbooks/restore_container.yaml old mode 100644 new mode 100755 diff --git a/playbooks/restore_docker.yml b/playbooks/restore_docker.yml old mode 100644 new mode 100755 diff --git a/playbooks/router_setup.yml b/playbooks/router_setup.yml old mode 100644 new mode 100755 diff --git a/playbooks/setup_fog_nfs.yml b/playbooks/setup_fog_nfs.yml old mode 100644 new mode 100755 diff --git a/playbooks/setup_ldap_ssh.yaml b/playbooks/setup_ldap_ssh.yaml old mode 100644 new mode 100755 diff --git a/playbooks/start_containers.yaml b/playbooks/start_containers.yaml old mode 100644 new mode 100755 diff --git a/playbooks/stop_containers.yaml b/playbooks/stop_containers.yaml old mode 100644 new mode 100755 diff --git a/playbooks/switch_destination copy.yaml b/playbooks/switch_destination copy.yaml old mode 100644 new mode 100755 diff --git a/playbooks/switch_destination.yaml b/playbooks/switch_destination.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync.yaml b/playbooks/sync.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_all.yaml b/playbooks/sync_all.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_all_test.yaml b/playbooks/sync_all_test.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_container_data.yaml b/playbooks/sync_container_data.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_ha.yaml b/playbooks/sync_ha.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_mailu.yaml b/playbooks/sync_mailu.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_mailu2.yaml b/playbooks/sync_mailu2.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_mailu2_data.yaml b/playbooks/sync_mailu2_data.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_part1-2.yaml b/playbooks/sync_part1-2.yaml old mode 100644 new mode 100755 diff --git a/playbooks/sync_part1.yaml b/playbooks/sync_part1.yaml old mode 100644 new mode 100755 diff --git a/playbooks/test.yaml b/playbooks/test.yaml old mode 100644 new mode 100755 diff --git a/playbooks/test_replace.yml b/playbooks/test_replace.yml old mode 100644 new mode 100755 diff --git a/playbooks/update_ssh_keys.yml b/playbooks/update_ssh_keys.yml old mode 100644 new mode 100755 diff --git a/playbooks/wol_enable.yml b/playbooks/wol_enable.yml old mode 100644 new mode 100755 diff --git a/roles/autofs-client/tasks/main.yml b/roles/autofs-client/tasks/main.yml deleted file mode 100644 index 5591a85..0000000 --- a/roles/autofs-client/tasks/main.yml +++ /dev/null @@ -1,42 +0,0 @@ -- block: - - name: include vault - ansible.builtin.include_vars: - file: jaydee.yml - - name: Install autofs - ansible.builtin.apt: - name: - - autofs - - cifs-utils - state: present - - - name: Creating a file with content - copy: - dest: "/etc/auto.auth" - content: | - username={{ samba_user }} - password={{ samba_password }} - - - name: Creating a file with content - copy: - dest: "/etc/auto.nas" - content: | - nas-data -fstype=cifs,credentials=/etc/auto.auth,dir_mode=0755,file_mode=0755,uid=jd,rw ://nas.home.lan/Data - nas-docker-data -fstype=cifs,credentials=/etc/auto.auth,dir_mode=0755,file_mode=0755,uid=jd,rw ://nas.home.lan/docker_data - nas-photo -fstype=cifs,credentials=/etc/auto.auth,dir_mode=0755,file_mode=0755,uid=jd,rw ://nas.home.lan/Photo - nas-public -fstype=cifs,credentials=/etc/auto.auth,dir_mode=0755,file_mode=0755,uid=jd,rw ://nas.home.lan/Public - nas-install -fstype=cifs,credentials=/etc/auto.auth,dir_mode=0755,file_mode=0755,uid=jd,rw ://nas.home.lan/install - nas-media -fstype=cifs,credentials=/etc/auto.auth,dir_mode=0755,file_mode=0755,uid=jd,rw ://nas.home.lan/Media - nas-downloads -fstype=cifs,credentials=/etc/auto.auth,dir_mode=0755,file_mode=0755,uid=jd,rw ://nas.home.lan/downloads - - - name: Reconfigure zabbix agent Server - ansible.builtin.lineinfile: - path: /etc/auto.master - regexp: "^/media/nas.*" - insertafter: '^/media/nas' - line: "/media/nas /etc/auto.nas --timeout 360 --ghost" - - - name: Restart docker service - ansible.builtin.service: - name: autofs - state: restarted - become: true \ No newline at end of file diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/docker/handlers/main.yml b/roles/docker/handlers/main.yml old mode 100644 new mode 100755 diff --git a/roles/docker/tasks/main.yml b/roles/docker/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/ldap-client/tasks/main.yml b/roles/ldap-client/tasks/main.yml deleted file mode 100644 index a1451b5..0000000 --- a/roles/ldap-client/tasks/main.yml +++ /dev/null @@ -1,149 +0,0 @@ -- block: - - name: Install ldap packages - ansible.builtin.apt: - name: - - libpam-ldapd - - ldap-utils - - libnss-ldapd - # - name: Reconfigure ldap base - # ansible.builtin.lineinfile: - # path: /etc/ldap.conf - # regexp: "^base " - # line: "base dc=sectorq,dc=eu" - - # - name: Reconfigure ldap uri - # ansible.builtin.lineinfile: - # path: /etc/ldap.conf - # regexp: "^uri ldap.*" - # line: "uri ldaps://ldap-server.loc/" - # - name: Reconfigure ldap version - # ansible.builtin.lineinfile: - # path: /etc/ldap.conf - # regexp: "^ldap_version.*" - # line: "ldap_version 3" - - # - name: Reconfigure ldap rootbinddn - # ansible.builtin.lineinfile: - # path: /etc/ldap.conf - # regexp: "^rootbinddn.*" - # line: "rootbinddn cn=admin,dc=sectorq,dc=eu" - - name: Reconfigure common-session - ansible.builtin.lineinfile: - path: /etc/pam.d/common-session - regexp: "^session optional pam_mkhomedir.so.*" - line: "session optional pam_mkhomedir.so skel=/etc/skel umask=077" - - name: Reconfigure common-session - ansible.builtin.lineinfile: - path: /etc/pam.d/common-session - regexp: "^session.*pam_ldap.so.*" - line: "session [success=ok default=ignore] pam_ldap.so minimum_uid=1000" - - name: Reconfigure common-password - ansible.builtin.lineinfile: - path: /etc/pam.d/common-password - regexp: "^password.*success=1 user_unknown=ignore default=die.*" - line: "password [success=1 default=ignore] pam_ldap.so minimum_uid=1000 try_first_pass" - - name: Reconfigure nsswitch passwd - ansible.builtin.lineinfile: - path: /etc/nsswitch.conf - regexp: "^passwd:.*" - line: "passwd: compat systemd ldap" - - name: Reconfigure nsswitch group - ansible.builtin.lineinfile: - path: /etc/nsswitch.conf - regexp: "^group:.*" - line: "group: compat systemd ldap" - - name: Reconfigure nsswitch shadow - ansible.builtin.lineinfile: - path: /etc/nsswitch.conf - regexp: "^shadow:.*" - line: "shadow: compat ldap" - - - name: Reconfigure nslcd uri - ansible.builtin.lineinfile: - path: /etc/nslcd.conf - regexp: "^uri ldap.*" - line: "uri ldap://192.168.77.101:2389/" - - - - name: Reconfigure ldap base - ansible.builtin.lineinfile: - path: /etc/nslcd.conf - regexp: "^base " - line: "base dc=sectorq,dc=eu" - - - - name: Reconfigure nslcd binddn - ansible.builtin.lineinfile: - path: /etc/nslcd.conf - regexp: "^binddn" - line: "binddn cn=jaydee,dc=users,dc=sectorq,dc=eu" - - - name: Reconfigure nslcd bindpw - ansible.builtin.lineinfile: - path: /etc/nslcd.conf - regexp: "^bindpw" - line: "bindpw {{ ldap_admin_password }}" - # - name: Reconfigure ldap base - # ansible.builtin.lineinfile: - # path: /etc/nslcd.conf - # regexp: "^#ssl" - # line: "ssl start_tls" - - name: Reconfigure nslcd tls_reqcert - ansible.builtin.lineinfile: - path: /etc/nslcd.conf - regexp: "^tls_reqcert" - line: "tls_reqcert allow" - - name: Restart nslcd service - ansible.builtin.service: - name: nslcd.service - state: restarted - - - name: Creating a file with content - copy: - dest: "/usr/local/bin/fetchSSHKeysFromLDAP" - content: | - #!/usr/bin/bash - ldapsearch -x '(&(objectClass=ldapPublicKey)(cn='"$1"'))' 'sshPublicKey' | sed -n '/^ /{H;d};/sshPublicKey:/x;$g;s/\n *//g;s/sshPublicKey: //gp' - mode: '0755' - - name: Reconfigure sshd - ansible.builtin.lineinfile: - path: /etc/ssh/sshd_config - regexp: "^#AuthorizedKeysCommand *" - line: "AuthorizedKeysCommand /usr/local/bin/fetchSSHKeysFromLDAP" - - - name: Reconfigure sshd - ansible.builtin.lineinfile: - path: /etc/ssh/sshd_config - regexp: "^#AuthorizedKeysCommandUser *" - line: "AuthorizedKeysCommandUser root" - - name: Create a directory LDAP if it does not exist - ansible.builtin.file: - path: /etc/ldap/ - state: directory - mode: '0755' - - name: Creating a file with content - copy: - dest: "/etc/ldap/ldap.conf" - content: | - # - # LDAP Defaults - # - - # See ldap.conf(5) for details - # This file should be world readable but not world writable. - - BASE dc=sectorq,dc=eu - URI ldap://192.168.77.101:2389 - - #SIZELIMIT 12 - #TIMELIMIT 15 - #DEREF never - - # TLS certificates (needed for GnuTLS) - TLS_CACERT /etc/ssl/certs/ca-certificates.crt - - - name: Restart sshd service - ansible.builtin.service: - name: sshd.service - state: restarted - become: true \ No newline at end of file diff --git a/roles/matter-server/handlers/main.yml b/roles/matter-server/handlers/main.yml old mode 100644 new mode 100755 diff --git a/roles/matter-server/tasks/main.yml b/roles/matter-server/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/monitoring/tasks/main.yml b/roles/monitoring/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/monitoring/vars/main.yml b/roles/monitoring/vars/main.yml old mode 100644 new mode 100755 diff --git a/roles/mqtt-srv/tasks/main.yml b/roles/mqtt-srv/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/mqtt-srv/vars/main.yml b/roles/mqtt-srv/vars/main.yml old mode 100644 new mode 100755 diff --git a/roles/requirements.yml b/roles/requirements.yml old mode 100644 new mode 100755 diff --git a/roles/timeshift/tasks/main.yml b/roles/timeshift/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/update_flatpack/tasks/main.yml b/roles/update_flatpack/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/wake_on_lan/tasks/main.yml b/roles/wake_on_lan/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/zabbix-agent/tasks/main.yml b/roles/zabbix-agent/tasks/main.yml old mode 100644 new mode 100755 diff --git a/roles/zabbix-agent/vars/main.yml b/roles/zabbix-agent/vars/main.yml old mode 100644 new mode 100755 diff --git a/secret_file.enc b/secret_file.enc old mode 100644 new mode 100755 diff --git a/servers.yml b/servers.yml old mode 100644 new mode 100755 index 35016d9..bd83562 --- a/servers.yml +++ b/servers.yml @@ -8,5 +8,5 @@ - timeshift - monitoring - zabbix-agent - - autofs-client - - ldap-client \ No newline at end of file + - autofs_client + - ldap_client \ No newline at end of file diff --git a/update_hosts.yml b/update_hosts.yml old mode 100644 new mode 100755