diff options
| author | Lasse Haugen <haugen.lasse@gmail.com> | 2020-02-01 12:12:29 +0100 | 
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-02-01 12:12:29 +0100 | 
| commit | dcf832a28b042687f1d0c742c0804c8eeb747df5 (patch) | |
| tree | e32323270400e57172a773a7450f999f6a317e67 /ansible | |
| parent | 4dece982e5630dd57d49a10bd043b1e21da1b669 (diff) | |
| parent | 5bc0bad679cce9ec697e74fc2539e4a7af0cb707 (diff) | |
Merge pull request #213 from gathering/ansible-ubuntu
Add Ubuntu 18.04 support in Ansible
Diffstat (limited to 'ansible')
| -rw-r--r-- | ansible/roles/influx/tasks/main.yml | 2 | ||||
| -rw-r--r-- | ansible/roles/postgres/files/postgresql.conf | 616 | ||||
| -rw-r--r-- | ansible/roles/postgres/files/schema-backup.sql | 610 | ||||
| -rw-r--r-- | ansible/roles/postgres/tasks/main.yml | 4 | ||||
| -rw-r--r-- | ansible/roles/web/files/varnish.service | 2 | ||||
| -rw-r--r-- | ansible/roles/web/tasks/main.yml | 51 | 
6 files changed, 27 insertions, 1258 deletions
| diff --git a/ansible/roles/influx/tasks/main.yml b/ansible/roles/influx/tasks/main.yml index cb3a784..2f31b85 100644 --- a/ansible/roles/influx/tasks/main.yml +++ b/ansible/roles/influx/tasks/main.yml @@ -7,7 +7,7 @@    apt_key: url=https://repos.influxdata.com/influxdb.key state=present  - name: Add InfluxDB repository -  apt_repository: repo='deb https://repos.influxdata.com/debian jessie stable' state=present +  apt_repository: repo='deb https://repos.influxdata.com/{{ ansible_distribution | lower }} {{ ansible_distribution_release | lower }} stable' state=present  - name: Install InfluxDB packages    apt: name=influxdb state=present update_cache=yes diff --git a/ansible/roles/postgres/files/postgresql.conf b/ansible/roles/postgres/files/postgresql.conf deleted file mode 100644 index 7c45ea4..0000000 --- a/ansible/roles/postgres/files/postgresql.conf +++ /dev/null @@ -1,616 +0,0 @@ -# ----------------------------- -# PostgreSQL configuration file -# ----------------------------- -# -# This file consists of lines of the form: -# -#   name = value -# -# (The "=" is optional.)  Whitespace may be used.  Comments are introduced with -# "#" anywhere on a line.  The complete list of parameter names and allowed -# values can be found in the PostgreSQL documentation. -# -# The commented-out settings shown in this file represent the default values. -# Re-commenting a setting is NOT sufficient to revert it to the default value; -# you need to reload the server. -# -# This file is read on server startup and when the server receives a SIGHUP -# signal.  If you edit the file on a running system, you have to SIGHUP the -# server for the changes to take effect, or use "pg_ctl reload".  Some -# parameters, which are marked below, require a server shutdown and restart to -# take effect. -# -# Any parameter can also be given as a command-line option to the server, e.g., -# "postgres -c log_connections=on".  Some parameters can be changed at run time -# with the "SET" SQL command. -# -# Memory units:  kB = kilobytes        Time units:  ms  = milliseconds -#                MB = megabytes                     s   = seconds -#                GB = gigabytes                     min = minutes -#                TB = terabytes                     h   = hours -#                                                   d   = days - - -#------------------------------------------------------------------------------ -# FILE LOCATIONS -#------------------------------------------------------------------------------ - -# The default values of these variables are driven from the -D command-line -# option or PGDATA environment variable, represented here as ConfigDir. - -data_directory = '/var/lib/postgresql/9.6/main'		# use data in another directory -					# (change requires restart) -hba_file = '/etc/postgresql/9.6/main/pg_hba.conf'	# host-based authentication file -					# (change requires restart) -ident_file = '/etc/postgresql/9.6/main/pg_ident.conf'	# ident configuration file -					# (change requires restart) - -# If external_pid_file is not explicitly set, no extra PID file is written. -external_pid_file = '/var/run/postgresql/9.6-main.pid'			# write an extra PID file -					# (change requires restart) - - -#------------------------------------------------------------------------------ -# CONNECTIONS AND AUTHENTICATION -#------------------------------------------------------------------------------ - -# - Connection Settings - - -#listen_addresses = 'localhost'		# what IP address(es) to listen on; -					# comma-separated list of addresses; -					# defaults to 'localhost'; use '*' for all -					# (change requires restart) -port = 5432				# (change requires restart) -max_connections = 100			# (change requires restart) -# Note:  Increasing max_connections costs ~400 bytes of shared memory per -# connection slot, plus lock space (see max_locks_per_transaction). -#superuser_reserved_connections = 3	# (change requires restart) -unix_socket_directories = '/var/run/postgresql'	# comma-separated list of directories -					# (change requires restart) -#unix_socket_group = ''			# (change requires restart) -#unix_socket_permissions = 0777		# begin with 0 to use octal notation -					# (change requires restart) -#bonjour = off				# advertise server via Bonjour -					# (change requires restart) -#bonjour_name = ''			# defaults to the computer name -					# (change requires restart) - -# - Security and Authentication - - -#authentication_timeout = 1min		# 1s-600s -ssl = true				# (change requires restart) -#ssl_ciphers = 'HIGH:MEDIUM:+3DES:!aNULL' # allowed SSL ciphers -					# (change requires restart) -#ssl_prefer_server_ciphers = on		# (change requires restart) -#ssl_ecdh_curve = 'prime256v1'		# (change requires restart) -#ssl_renegotiation_limit = 0		# amount of data between renegotiations -ssl_cert_file = '/etc/ssl/certs/ssl-cert-snakeoil.pem'		# (change requires restart) -ssl_key_file = '/etc/ssl/private/ssl-cert-snakeoil.key'		# (change requires restart) -#ssl_ca_file = ''			# (change requires restart) -#ssl_crl_file = ''			# (change requires restart) -#password_encryption = on -#db_user_namespace = off - -# GSSAPI using Kerberos -#krb_server_keyfile = '' -#krb_caseins_users = off - -# - TCP Keepalives - -# see "man 7 tcp" for details - -#tcp_keepalives_idle = 0		# TCP_KEEPIDLE, in seconds; -					# 0 selects the system default -#tcp_keepalives_interval = 0		# TCP_KEEPINTVL, in seconds; -					# 0 selects the system default -#tcp_keepalives_count = 0		# TCP_KEEPCNT; -					# 0 selects the system default - - -#------------------------------------------------------------------------------ -# RESOURCE USAGE (except WAL) -#------------------------------------------------------------------------------ - -# - Memory - - -shared_buffers = 1024MB			# min 128kB -					# (change requires restart) -#huge_pages = try			# on, off, or try -					# (change requires restart) -temp_buffers = 64MB			# min 800kB -#max_prepared_transactions = 0		# zero disables the feature -					# (change requires restart) -# Note:  Increasing max_prepared_transactions costs ~600 bytes of shared memory -# per transaction slot, plus lock space (see max_locks_per_transaction). -# It is not advisable to set max_prepared_transactions nonzero unless you -# actively intend to use prepared transactions. -work_mem = 16MB				# min 64kB -#maintenance_work_mem = 64MB		# min 1MB -#autovacuum_work_mem = -1		# min 1MB, or -1 to use maintenance_work_mem -#max_stack_depth = 2MB			# min 100kB -dynamic_shared_memory_type = posix	# the default is the first option -					# supported by the operating system: -					#   posix -					#   sysv -					#   windows -					#   mmap -					# use none to disable dynamic shared memory - -# - Disk - - -#temp_file_limit = -1			# limits per-session temp file space -					# in kB, or -1 for no limit - -# - Kernel Resource Usage - - -#max_files_per_process = 1000		# min 25 -					# (change requires restart) -#shared_preload_libraries = ''		# (change requires restart) - -# - Cost-Based Vacuum Delay - - -#vacuum_cost_delay = 0			# 0-100 milliseconds -#vacuum_cost_page_hit = 1		# 0-10000 credits -#vacuum_cost_page_miss = 10		# 0-10000 credits -#vacuum_cost_page_dirty = 20		# 0-10000 credits -#vacuum_cost_limit = 200		# 1-10000 credits - -# - Background Writer - - -bgwriter_delay = 1000ms			# 10-10000ms between rounds -#bgwriter_lru_maxpages = 100		# 0-1000 max buffers written/round -#bgwriter_lru_multiplier = 2.0		# 0-10.0 multipler on buffers scanned/round - -# - Asynchronous Behavior - - -#effective_io_concurrency = 1		# 1-1000; 0 disables prefetching -#max_worker_processes = 8 - - -#------------------------------------------------------------------------------ -# WRITE AHEAD LOG -#------------------------------------------------------------------------------ - -# - Settings - - -#wal_level = minimal			# minimal, archive, hot_standby, or logical -					# (change requires restart) -#fsync = off				# turns forced synchronization on or off -#synchronous_commit = off		# synchronization level; -					# off, local, remote_write, or on -#wal_sync_method = fsync		# the default is the first option -					# supported by the operating system: -					#   open_datasync -					#   fdatasync (default on Linux) -					#   fsync -					#   fsync_writethrough -					#   open_sync -#full_page_writes = on			# recover from partial page writes -#wal_log_hints = off			# also do full page writes of non-critical updates -					# (change requires restart) -#wal_buffers = -1			# min 32kB, -1 sets based on shared_buffers -					# (change requires restart) -wal_writer_delay = 1000ms		# 1-10000 milliseconds - -commit_delay = 10000			# range 0-100000, in microseconds -commit_siblings = 50			# range 1-1000 - -# - Checkpoints - - -#checkpoint_segments = 3		# in logfile segments, min 1, 16MB each -#checkpoint_timeout = 5min		# range 30s-1h -#checkpoint_completion_target = 0.5	# checkpoint target duration, 0.0 - 1.0 -#checkpoint_warning = 30s		# 0 disables - -# - Archiving - - -#archive_mode = off		# allows archiving to be done -				# (change requires restart) -#archive_command = ''		# command to use to archive a logfile segment -				# placeholders: %p = path of file to archive -				#               %f = file name only -				# e.g. 'test ! -f /mnt/server/archivedir/%f && cp %p /mnt/server/archivedir/%f' -#archive_timeout = 0		# force a logfile segment switch after this -				# number of seconds; 0 disables - - -#------------------------------------------------------------------------------ -# REPLICATION -#------------------------------------------------------------------------------ - -# - Sending Server(s) - - -# Set these on the master and on any standby that will send replication data. - -#max_wal_senders = 0		# max number of walsender processes -				# (change requires restart) -#wal_keep_segments = 0		# in logfile segments, 16MB each; 0 disables -#wal_sender_timeout = 60s	# in milliseconds; 0 disables - -#max_replication_slots = 0	# max number of replication slots -				# (change requires restart) - -# - Master Server - - -# These settings are ignored on a standby server. - -#synchronous_standby_names = ''	# standby servers that provide sync rep -				# comma-separated list of application_name -				# from standby(s); '*' = all -#vacuum_defer_cleanup_age = 0	# number of xacts by which cleanup is delayed - -# - Standby Servers - - -# These settings are ignored on a master server. - -#hot_standby = off			# "on" allows queries during recovery -					# (change requires restart) -#max_standby_archive_delay = 30s	# max delay before canceling queries -					# when reading WAL from archive; -					# -1 allows indefinite delay -#max_standby_streaming_delay = 30s	# max delay before canceling queries -					# when reading streaming WAL; -					# -1 allows indefinite delay -#wal_receiver_status_interval = 10s	# send replies at least this often -					# 0 disables -#hot_standby_feedback = off		# send info from standby to prevent -					# query conflicts -#wal_receiver_timeout = 60s		# time that receiver waits for -					# communication from master -					# in milliseconds; 0 disables - - -#------------------------------------------------------------------------------ -# QUERY TUNING -#------------------------------------------------------------------------------ - -# - Planner Method Configuration - - -#enable_bitmapscan = on -#enable_hashagg = on -#enable_hashjoin = on -#enable_indexscan = on -#enable_indexonlyscan = on -#enable_material = on -#enable_mergejoin = on -#enable_nestloop = on -#enable_seqscan = on -#enable_sort = on -#enable_tidscan = on - -# - Planner Cost Constants - - -#seq_page_cost = 1.0			# measured on an arbitrary scale -#random_page_cost = 4.0			# same scale as above -#cpu_tuple_cost = 0.01			# same scale as above -#cpu_index_tuple_cost = 0.005		# same scale as above -#cpu_operator_cost = 0.0025		# same scale as above -#effective_cache_size = 4GB - -# - Genetic Query Optimizer - - -#geqo = on -#geqo_threshold = 12 -#geqo_effort = 5			# range 1-10 -#geqo_pool_size = 0			# selects default based on effort -#geqo_generations = 0			# selects default based on effort -#geqo_selection_bias = 2.0		# range 1.5-2.0 -#geqo_seed = 0.0			# range 0.0-1.0 - -# - Other Planner Options - - -#default_statistics_target = 100	# range 1-10000 -#constraint_exclusion = partition	# on, off, or partition -#cursor_tuple_fraction = 0.1		# range 0.0-1.0 -#from_collapse_limit = 8 -#join_collapse_limit = 8		# 1 disables collapsing of explicit -					# JOIN clauses - - -#------------------------------------------------------------------------------ -# ERROR REPORTING AND LOGGING -#------------------------------------------------------------------------------ - -# - Where to Log - - -#log_destination = 'stderr'		# Valid values are combinations of -					# stderr, csvlog, syslog, and eventlog, -					# depending on platform.  csvlog -					# requires logging_collector to be on. - -# This is used when logging to stderr: -#logging_collector = off		# Enable capturing of stderr and csvlog -					# into log files. Required to be on for -					# csvlogs. -					# (change requires restart) - -# These are only used if logging_collector is on: -#log_directory = 'pg_log'		# directory where log files are written, -					# can be absolute or relative to PGDATA -#log_filename = 'postgresql-%Y-%m-%d_%H%M%S.log'	# log file name pattern, -					# can include strftime() escapes -#log_file_mode = 0600			# creation mode for log files, -					# begin with 0 to use octal notation -#log_truncate_on_rotation = off		# If on, an existing log file with the -					# same name as the new log file will be -					# truncated rather than appended to. -					# But such truncation only occurs on -					# time-driven rotation, not on restarts -					# or size-driven rotation.  Default is -					# off, meaning append to existing files -					# in all cases. -#log_rotation_age = 1d			# Automatic rotation of logfiles will -					# happen after that time.  0 disables. -#log_rotation_size = 10MB		# Automatic rotation of logfiles will -					# happen after that much log output. -					# 0 disables. - -# These are relevant when logging to syslog: -#syslog_facility = 'LOCAL0' -#syslog_ident = 'postgres' - -# This is only relevant when logging to eventlog (win32): -#event_source = 'PostgreSQL' - -# - When to Log - - -#client_min_messages = notice		# values in order of decreasing detail: -					#   debug5 -					#   debug4 -					#   debug3 -					#   debug2 -					#   debug1 -					#   log -					#   notice -					#   warning -					#   error - -#log_min_messages = warning		# values in order of decreasing detail: -					#   debug5 -					#   debug4 -					#   debug3 -					#   debug2 -					#   debug1 -					#   info -					#   notice -					#   warning -					#   error -					#   log -					#   fatal -					#   panic - -#log_min_error_statement = error	# values in order of decreasing detail: -					#   debug5 -					#   debug4 -					#   debug3 -					#   debug2 -					#   debug1 -					#   info -					#   notice -					#   warning -					#   error -					#   log -					#   fatal -					#   panic (effectively off) - -#log_min_duration_statement = -1	# -1 is disabled, 0 logs all statements -					# and their durations, > 0 logs only -					# statements running at least this number -					# of milliseconds - - -# - What to Log - - -#debug_print_parse = off -#debug_print_rewritten = off -#debug_print_plan = off -#debug_pretty_print = on -#log_checkpoints = off -#log_connections = off -#log_disconnections = off -#log_duration = off -#log_error_verbosity = default		# terse, default, or verbose messages -#log_hostname = off -log_line_prefix = '%t [%p-%l] %q%u@%d '			# special values: -					#   %a = application name -					#   %u = user name -					#   %d = database name -					#   %r = remote host and port -					#   %h = remote host -					#   %p = process ID -					#   %t = timestamp without milliseconds -					#   %m = timestamp with milliseconds -					#   %i = command tag -					#   %e = SQL state -					#   %c = session ID -					#   %l = session line number -					#   %s = session start timestamp -					#   %v = virtual transaction ID -					#   %x = transaction ID (0 if none) -					#   %q = stop here in non-session -					#        processes -					#   %% = '%' -					# e.g. '<%u%%%d> ' -#log_lock_waits = off			# log lock waits >= deadlock_timeout -#log_statement = 'none'			# none, ddl, mod, all -#log_temp_files = -1			# log temporary files equal or larger -					# than the specified size in kilobytes; -					# -1 disables, 0 logs all temp files -log_timezone = 'UTC' - - -#------------------------------------------------------------------------------ -# RUNTIME STATISTICS -#------------------------------------------------------------------------------ - -# - Query/Index Statistics Collector - - -#track_activities = on -#track_counts = on -#track_io_timing = off -#track_functions = none			# none, pl, all -#track_activity_query_size = 1024	# (change requires restart) -#update_process_title = on -stats_temp_directory = '/var/run/postgresql/9.6-main.pg_stat_tmp' - - -# - Statistics Monitoring - - -#log_parser_stats = off -#log_planner_stats = off -#log_executor_stats = off -#log_statement_stats = off - - -#------------------------------------------------------------------------------ -# AUTOVACUUM PARAMETERS -#------------------------------------------------------------------------------ - -#autovacuum = on			# Enable autovacuum subprocess?  'on' -					# requires track_counts to also be on. -#log_autovacuum_min_duration = -1	# -1 disables, 0 logs all actions and -					# their durations, > 0 logs only -					# actions running at least this number -					# of milliseconds. -#autovacuum_max_workers = 3		# max number of autovacuum subprocesses -					# (change requires restart) -#autovacuum_naptime = 1min		# time between autovacuum runs -#autovacuum_vacuum_threshold = 50	# min number of row updates before -					# vacuum -#autovacuum_analyze_threshold = 50	# min number of row updates before -					# analyze -#autovacuum_vacuum_scale_factor = 0.2	# fraction of table size before vacuum -#autovacuum_analyze_scale_factor = 0.1	# fraction of table size before analyze -#autovacuum_freeze_max_age = 200000000	# maximum XID age before forced vacuum -					# (change requires restart) -#autovacuum_multixact_freeze_max_age = 400000000	# maximum multixact age -					# before forced vacuum -					# (change requires restart) -#autovacuum_vacuum_cost_delay = 20ms	# default vacuum cost delay for -					# autovacuum, in milliseconds; -					# -1 means use vacuum_cost_delay -#autovacuum_vacuum_cost_limit = -1	# default vacuum cost limit for -					# autovacuum, -1 means use -					# vacuum_cost_limit - - -#------------------------------------------------------------------------------ -# CLIENT CONNECTION DEFAULTS -#------------------------------------------------------------------------------ - -# - Statement Behavior - - -#search_path = '"$user",public'		# schema names -#default_tablespace = ''		# a tablespace name, '' uses the default -#temp_tablespaces = ''			# a list of tablespace names, '' uses -					# only default tablespace -#check_function_bodies = on -#default_transaction_isolation = 'read committed' -#default_transaction_read_only = off -#default_transaction_deferrable = off -#session_replication_role = 'origin' -#statement_timeout = 0			# in milliseconds, 0 is disabled -#lock_timeout = 0			# in milliseconds, 0 is disabled -#vacuum_freeze_min_age = 50000000 -#vacuum_freeze_table_age = 150000000 -#vacuum_multixact_freeze_min_age = 5000000 -#vacuum_multixact_freeze_table_age = 150000000 -#bytea_output = 'hex'			# hex, escape -#xmlbinary = 'base64' -#xmloption = 'content' -#gin_fuzzy_search_limit = 0 - -# - Locale and Formatting - - -datestyle = 'iso, mdy' -#intervalstyle = 'postgres' -timezone = 'UTC' -#timezone_abbreviations = 'Default'     # Select the set of available time zone -					# abbreviations.  Currently, there are -					#   Default -					#   Australia (historical usage) -					#   India -					# You can create your own file in -					# share/timezonesets/. -#extra_float_digits = 0			# min -15, max 3 -#client_encoding = sql_ascii		# actually, defaults to database -					# encoding - -# These settings are initialized by initdb, but they can be changed. -lc_messages = 'C'			# locale for system error message -					# strings -lc_monetary = 'C'			# locale for monetary formatting -lc_numeric = 'C'			# locale for number formatting -lc_time = 'C'				# locale for time formatting - -# default configuration for text search -default_text_search_config = 'pg_catalog.english' - -# - Other Defaults - - -#dynamic_library_path = '$libdir' -#local_preload_libraries = '' -#session_preload_libraries = '' - - -#------------------------------------------------------------------------------ -# LOCK MANAGEMENT -#------------------------------------------------------------------------------ - -#deadlock_timeout = 1s -#max_locks_per_transaction = 64		# min 10 -					# (change requires restart) -# Note:  Each lock table slot uses ~270 bytes of shared memory, and there are -# max_locks_per_transaction * (max_connections + max_prepared_transactions) -# lock table slots. -#max_pred_locks_per_transaction = 64	# min 10 -					# (change requires restart) - - -#------------------------------------------------------------------------------ -# VERSION/PLATFORM COMPATIBILITY -#------------------------------------------------------------------------------ - -# - Previous PostgreSQL Versions - - -#array_nulls = on -#backslash_quote = safe_encoding	# on, off, or safe_encoding -#default_with_oids = off -#escape_string_warning = on -#lo_compat_privileges = off -#quote_all_identifiers = off -#sql_inheritance = on -#standard_conforming_strings = on -#synchronize_seqscans = on - -# - Other Platforms and Clients - - -#transform_null_equals = off - - -#------------------------------------------------------------------------------ -# ERROR HANDLING -#------------------------------------------------------------------------------ - -#exit_on_error = off			# terminate session on any error? -#restart_after_crash = on		# reinitialize after backend crash? - - -#------------------------------------------------------------------------------ -# CONFIG FILE INCLUDES -#------------------------------------------------------------------------------ - -# These options allow settings to be loaded from files other than the -# default postgresql.conf. - -#include_dir = 'conf.d'			# include files ending in '.conf' from -					# directory 'conf.d' -#include_if_exists = 'exists.conf'	# include file only if it exists -#include = 'special.conf'		# include file - - -#------------------------------------------------------------------------------ -# CUSTOMIZED OPTIONS -#------------------------------------------------------------------------------ - -# Add settings for extensions here -listen_addresses = '*' diff --git a/ansible/roles/postgres/files/schema-backup.sql b/ansible/roles/postgres/files/schema-backup.sql deleted file mode 100644 index ed94e80..0000000 --- a/ansible/roles/postgres/files/schema-backup.sql +++ /dev/null @@ -1,610 +0,0 @@ --- --- PostgreSQL database dump --- - -SET statement_timeout = 0; -SET lock_timeout = 0; -SET client_encoding = 'UTF8'; -SET standard_conforming_strings = on; -SET check_function_bodies = false; -SET client_min_messages = warning; - --- --- Name: plpgsql; Type: EXTENSION; Schema: -; Owner: --- - -CREATE EXTENSION IF NOT EXISTS plpgsql WITH SCHEMA pg_catalog; - - --- --- Name: EXTENSION plpgsql; Type: COMMENT; Schema: -; Owner: --- - -COMMENT ON EXTENSION plpgsql IS 'PL/pgSQL procedural language'; - - -SET search_path = public, pg_catalog; - --- --- Name: comment_state; Type: TYPE; Schema: public; Owner: nms --- - -CREATE TYPE comment_state AS ENUM ( -    'active', -    'inactive', -    'persist', -    'delete' -); - - -ALTER TYPE comment_state OWNER TO nms; - -SET default_tablespace = ''; - -SET default_with_oids = false; - --- --- Name: config; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE config ( -    id integer NOT NULL, -    publicvhost character varying, -    shortname character varying, -    data jsonb -); - - -ALTER TABLE config OWNER TO nms; - --- --- Name: config_id_seq; Type: SEQUENCE; Schema: public; Owner: nms --- - -CREATE SEQUENCE config_id_seq -    START WITH 1 -    INCREMENT BY 1 -    NO MINVALUE -    NO MAXVALUE -    CACHE 1; - - -ALTER TABLE config_id_seq OWNER TO nms; - --- --- Name: config_id_seq; Type: SEQUENCE OWNED BY; Schema: public; Owner: nms --- - -ALTER SEQUENCE config_id_seq OWNED BY config.id; - - --- --- Name: dhcp; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE dhcp ( -    switch integer, -    "time" timestamp with time zone, -    mac macaddr, -    ip inet, -    dhcp_server integer -); - - -ALTER TABLE dhcp OWNER TO nms; - --- --- Name: linknet_ping; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE linknet_ping ( -    linknet integer NOT NULL, -    "time" timestamp with time zone DEFAULT now() NOT NULL, -    latency1_ms double precision, -    latency2_ms double precision -); - - -ALTER TABLE linknet_ping OWNER TO nms; - --- --- Name: linknets; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE linknets ( -    linknet integer NOT NULL, -    switch1 integer NOT NULL, -    addr1 inet, -    switch2 integer NOT NULL, -    addr2 inet, -    port1 character varying(10), -    port2 character varying(10) -); - - -ALTER TABLE linknets OWNER TO nms; - --- --- Name: linknets_linknet_seq; Type: SEQUENCE; Schema: public; Owner: nms --- - -CREATE SEQUENCE linknets_linknet_seq -    START WITH 1 -    INCREMENT BY 1 -    NO MINVALUE -    NO MAXVALUE -    CACHE 1; - - -ALTER TABLE linknets_linknet_seq OWNER TO nms; - --- --- Name: linknets_linknet_seq; Type: SEQUENCE OWNED BY; Schema: public; Owner: nms --- - -ALTER SEQUENCE linknets_linknet_seq OWNED BY linknets.linknet; - - --- --- Name: oplog; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE oplog ( -    id integer NOT NULL, -    "time" timestamp with time zone DEFAULT now(), -    systems character varying, -    username character varying, -    log text -); - - -ALTER TABLE oplog OWNER TO nms; - --- --- Name: oplog_id_seq; Type: SEQUENCE; Schema: public; Owner: nms --- - -CREATE SEQUENCE oplog_id_seq -    START WITH 1 -    INCREMENT BY 1 -    NO MINVALUE -    NO MAXVALUE -    CACHE 1; - - -ALTER TABLE oplog_id_seq OWNER TO nms; - --- --- Name: oplog_id_seq; Type: SEQUENCE OWNED BY; Schema: public; Owner: nms --- - -ALTER SEQUENCE oplog_id_seq OWNED BY oplog.id; - - --- --- Name: ping; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE ping ( -    switch integer NOT NULL, -    "time" timestamp with time zone DEFAULT now() NOT NULL, -    latency_ms double precision -); - - -ALTER TABLE ping OWNER TO nms; - --- --- Name: ping_secondary_ip; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE ping_secondary_ip ( -    switch integer NOT NULL, -    "time" timestamp with time zone DEFAULT now() NOT NULL, -    latency_ms double precision -); - - -ALTER TABLE ping_secondary_ip OWNER TO nms; - --- --- Name: seen_mac; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE seen_mac ( -    mac macaddr NOT NULL, -    address inet NOT NULL, -    seen timestamp with time zone DEFAULT now() NOT NULL -); - - -ALTER TABLE seen_mac OWNER TO nms; - --- --- Name: snmp; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE snmp ( -    "time" timestamp without time zone DEFAULT now() NOT NULL, -    switch integer NOT NULL, -    data jsonb, -    id integer NOT NULL -); - - -ALTER TABLE snmp OWNER TO nms; - --- --- Name: snmp_id_seq; Type: SEQUENCE; Schema: public; Owner: nms --- - -CREATE SEQUENCE snmp_id_seq -    START WITH 1 -    INCREMENT BY 1 -    NO MINVALUE -    NO MAXVALUE -    CACHE 1; - - -ALTER TABLE snmp_id_seq OWNER TO nms; - --- --- Name: snmp_id_seq; Type: SEQUENCE OWNED BY; Schema: public; Owner: nms --- - -ALTER SEQUENCE snmp_id_seq OWNED BY snmp.id; - - --- --- Name: switches; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE switches ( -    switch integer DEFAULT nextval(('"switches_switch_seq"'::text)::regclass) NOT NULL, -    mgmt_v4_addr inet, -    mgmt_v6_addr inet, -    mgmt_vlan character varying, -    sysname character varying NOT NULL, -    last_updated timestamp with time zone, -    locked boolean DEFAULT false NOT NULL, -    poll_frequency interval DEFAULT '00:01:00'::interval NOT NULL, -    community character varying DEFAULT 'FullPuppTilNMS'::character varying NOT NULL, -    placement box, -    distro_name character varying, -    distro_phy_port character varying(100), -    traffic_vlan character varying, -    tags jsonb DEFAULT '[]'::jsonb -); - - -ALTER TABLE switches OWNER TO nms; - --- --- Name: switches_switch_seq; Type: SEQUENCE; Schema: public; Owner: nms --- - -CREATE SEQUENCE switches_switch_seq -    START WITH 1 -    INCREMENT BY 1 -    NO MINVALUE -    NO MAXVALUE -    CACHE 1; - - -ALTER TABLE switches_switch_seq OWNER TO nms; - --- --- Name: networks; Type: TABLE; Schema: public; Owner: nms; Tablespace: --- - -CREATE TABLE networks ( -    network integer DEFAULT nextval(('"networks_network_seq"'::text)::regclass) NOT NULL, -    name character varying NOT NULL, -    last_updated timestamp with time zone, -    placement box, -    subnet4 cidr, -    subnet6 cidr, -    gw4 inet, -    gw6 inet, -    routing_point character varying, -    vlan integer, -    tags jsonb DEFAULT '[]'::jsonb -); - -ALTER TABLE networks OWNER TO nms; - -CREATE SEQUENCE networks_network_seq -    START WITH 1 -    INCREMENT BY 1 -    NO MINVALUE -    NO MAXVALUE -    CACHE 1; - -ALTER TABLE networks_network_seq OWNER TO nms; - --- --- Name: id; Type: DEFAULT; Schema: public; Owner: nms --- - -ALTER TABLE ONLY config ALTER COLUMN id SET DEFAULT nextval('config_id_seq'::regclass); - - --- --- Name: linknet; Type: DEFAULT; Schema: public; Owner: nms --- - -ALTER TABLE ONLY linknets ALTER COLUMN linknet SET DEFAULT nextval('linknets_linknet_seq'::regclass); - - --- --- Name: id; Type: DEFAULT; Schema: public; Owner: nms --- - -ALTER TABLE ONLY oplog ALTER COLUMN id SET DEFAULT nextval('oplog_id_seq'::regclass); - - --- --- Name: id; Type: DEFAULT; Schema: public; Owner: nms --- - -ALTER TABLE ONLY snmp ALTER COLUMN id SET DEFAULT nextval('snmp_id_seq'::regclass); - - --- --- Name: seen_mac_pkey; Type: CONSTRAINT; Schema: public; Owner: nms; Tablespace: --- - -ALTER TABLE ONLY seen_mac -    ADD CONSTRAINT seen_mac_pkey PRIMARY KEY (mac, address, seen); - - --- --- Name: switches_pkey; Type: CONSTRAINT; Schema: public; Owner: nms; Tablespace: --- - -ALTER TABLE ONLY switches -    ADD CONSTRAINT switches_pkey PRIMARY KEY (switch); - - --- --- Name: switches_sysname_key; Type: CONSTRAINT; Schema: public; Owner: nms; Tablespace: --- - -ALTER TABLE ONLY switches -    ADD CONSTRAINT switches_sysname_key UNIQUE (sysname); - - --- --- Name: switches_sysname_key1; Type: CONSTRAINT; Schema: public; Owner: nms; Tablespace: --- - -ALTER TABLE ONLY switches -    ADD CONSTRAINT switches_sysname_key1 UNIQUE (sysname); - - --- --- Name: dhcp_ip; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX dhcp_ip ON dhcp USING btree (ip); - - --- --- Name: dhcp_mac; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX dhcp_mac ON dhcp USING btree (mac); - - --- --- Name: dhcp_switch; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX dhcp_switch ON dhcp USING btree (switch); - - --- --- Name: dhcp_time; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX dhcp_time ON dhcp USING btree ("time"); - - --- --- Name: ping_index; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX ping_index ON ping USING btree ("time"); - - --- --- Name: ping_secondary_index; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX ping_secondary_index ON ping_secondary_ip USING btree ("time"); - - --- --- Name: seen_mac_addr_family; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX seen_mac_addr_family ON seen_mac USING btree (family(address)); - - --- --- Name: seen_mac_seen; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX seen_mac_seen ON seen_mac USING btree (seen); - - --- --- Name: snmp_time; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX snmp_time ON snmp USING btree ("time"); - - --- --- Name: snmp_time15; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX snmp_time15 ON snmp USING btree (id, switch); - - --- --- Name: snmp_time6; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX snmp_time6 ON snmp USING btree ("time" DESC, switch); - - --- --- Name: switches_switch; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX switches_switch ON switches USING hash (switch); - - --- --- Name: updated_index2; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX updated_index2 ON linknet_ping USING btree ("time"); - - --- --- Name: updated_index3; Type: INDEX; Schema: public; Owner: nms; Tablespace: --- - -CREATE INDEX updated_index3 ON ping_secondary_ip USING btree ("time"); - - --- --- Name: dhcp_switch_fkey; Type: FK CONSTRAINT; Schema: public; Owner: nms --- - -ALTER TABLE ONLY dhcp -    ADD CONSTRAINT dhcp_switch_fkey FOREIGN KEY (switch) REFERENCES switches(switch); - - --- --- Name: snmp_switch_fkey; Type: FK CONSTRAINT; Schema: public; Owner: nms --- - -ALTER TABLE ONLY snmp -    ADD CONSTRAINT snmp_switch_fkey FOREIGN KEY (switch) REFERENCES switches(switch); - - --- --- Name: switchname; Type: FK CONSTRAINT; Schema: public; Owner: nms --- - -ALTER TABLE ONLY ping -    ADD CONSTRAINT switchname FOREIGN KEY (switch) REFERENCES switches(switch); - - --- --- Name: public; Type: ACL; Schema: -; Owner: postgres --- - -REVOKE ALL ON SCHEMA public FROM PUBLIC; -REVOKE ALL ON SCHEMA public FROM postgres; -GRANT ALL ON SCHEMA public TO postgres; -GRANT ALL ON SCHEMA public TO PUBLIC; - - --- --- Name: config; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE config FROM PUBLIC; -REVOKE ALL ON TABLE config FROM nms; -GRANT ALL ON TABLE config TO nms; - - --- --- Name: dhcp; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE dhcp FROM PUBLIC; -REVOKE ALL ON TABLE dhcp FROM nms; -GRANT ALL ON TABLE dhcp TO nms; - - --- --- Name: linknet_ping; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE linknet_ping FROM PUBLIC; -REVOKE ALL ON TABLE linknet_ping FROM nms; -GRANT ALL ON TABLE linknet_ping TO nms; - - --- --- Name: linknets; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE linknets FROM PUBLIC; -REVOKE ALL ON TABLE linknets FROM nms; -GRANT ALL ON TABLE linknets TO nms; - - --- --- Name: ping; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE ping FROM PUBLIC; -REVOKE ALL ON TABLE ping FROM nms; -GRANT ALL ON TABLE ping TO nms; - - --- --- Name: ping_secondary_ip; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE ping_secondary_ip FROM PUBLIC; -REVOKE ALL ON TABLE ping_secondary_ip FROM nms; -GRANT ALL ON TABLE ping_secondary_ip TO nms; - - --- --- Name: seen_mac; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE seen_mac FROM PUBLIC; -REVOKE ALL ON TABLE seen_mac FROM nms; -GRANT ALL ON TABLE seen_mac TO nms; - - --- --- Name: snmp; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE snmp FROM PUBLIC; -REVOKE ALL ON TABLE snmp FROM nms; -GRANT ALL ON TABLE snmp TO nms; -GRANT ALL ON TABLE snmp TO postgres; - - --- --- Name: snmp_id_seq; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON SEQUENCE snmp_id_seq FROM PUBLIC; -REVOKE ALL ON SEQUENCE snmp_id_seq FROM nms; -GRANT ALL ON SEQUENCE snmp_id_seq TO nms; -GRANT ALL ON SEQUENCE snmp_id_seq TO postgres; - - --- --- Name: switches; Type: ACL; Schema: public; Owner: nms --- - -REVOKE ALL ON TABLE switches FROM PUBLIC; -REVOKE ALL ON TABLE switches FROM nms; -GRANT ALL ON TABLE switches TO nms; - - --- --- PostgreSQL database dump complete diff --git a/ansible/roles/postgres/tasks/main.yml b/ansible/roles/postgres/tasks/main.yml index 902eeb9..541a198 100644 --- a/ansible/roles/postgres/tasks/main.yml +++ b/ansible/roles/postgres/tasks/main.yml @@ -5,10 +5,6 @@    apt:        name: ['postgresql', 'python-psycopg2', 'sudo']        state: present -- name: Drop postgresql-config -  copy: -      dest: /etc/postgresql/9.6/main/postgresql.conf -      src: postgresql.conf  - name: Add db to hosts    lineinfile:      dest: /etc/hosts diff --git a/ansible/roles/web/files/varnish.service b/ansible/roles/web/files/varnish.service index 82b012f..41e311c 100644 --- a/ansible/roles/web/files/varnish.service +++ b/ansible/roles/web/files/varnish.service @@ -1,3 +1,3 @@  [Service]  ExecStart= -ExecStart=/usr/sbin/varnishd -a :80 -T localhost:6082 -f /etc/varnish/default.vcl -S /etc/varnish/secret -s malloc,256m +ExecStart=/usr/sbin/varnishd -a :80 -T localhost:6082 -f /etc/varnish/default.vcl -s default,256m diff --git a/ansible/roles/web/tasks/main.yml b/ansible/roles/web/tasks/main.yml index ddbf74d..3f80319 100644 --- a/ansible/roles/web/tasks/main.yml +++ b/ansible/roles/web/tasks/main.yml @@ -36,14 +36,37 @@            'python3-flask']        state: present +- name: Install InfluxDB module +  cpanm: +    name: AnyEvent::InfluxDB + +- name: Make apache listen on port 8080 +  lineinfile: dest=/etc/apache2/ports.conf regexp="^Listen 80" line="Listen 8080" state=present +  notify: restart apache + +- apache2_module: +    state: present +    name: cgid +  notify: restart apache + +- name: Enable gondul-config +  copy: +      dest: /etc/apache2/sites-enabled/gondul.conf +      src: apache-virtualhost.conf +  notify: restart apache + +- command: a2dissite 000-default +  ignore_errors: true +  notify: restart apache +  - name: Add packagecloud.io Varnish apt key.    apt_key: -    url: https://packagecloud.io/varnishcache/varnish5/gpgkey +    url: https://packagecloud.io/varnishcache/varnish63/gpgkey      state: present  - name: Add packagecloud.io Varnish apt repository.    apt_repository: -    repo: "deb https://packagecloud.io/varnishcache/varnish5/{{ ansible_distribution | lower }}/ {{ ansible_distribution_release }} main" +    repo: "deb https://packagecloud.io/varnishcache/varnish63/{{ ansible_distribution | lower }}/ {{ ansible_distribution_release }} main"      state: present  - name: Ensure Varnish is installed. @@ -73,32 +96,8 @@        src: varnish.vcl    notify: restart varnish -- name: Make apache listen on port 8080 -  lineinfile: dest=/etc/apache2/ports.conf regexp="^Listen 80" line="Listen 8080" state=present -  notify: restart apache - -- apache2_module: -    state: present -    name: cgid -  notify: restart apache - -- name: Enable gondul-config -  copy: -      dest: /etc/apache2/sites-enabled/gondul.conf -      src: apache-virtualhost.conf -  notify: restart apache - -- command: a2dissite 000-default -  ignore_errors: true -  notify: restart apache - -- name: Install InfluxDB module -  cpanm: -    name: AnyEvent::InfluxDB -  - name: add systemd service file for gondul-template    copy:      dest: /etc/systemd/system/gondul-template.service      src: gondul-template.service    notify: restart gondul-template - | 
