wsh issueshttps://git.coop/webarch/wsh/-/issues2020-04-25T11:15:29Zhttps://git.coop/webarch/wsh/-/issues/23Ansible Galaxy2020-04-25T11:15:29ZChris Croomechris@webarchitects.co.ukAnsible GalaxyFully document all the roles and make them suitable for adding to Ansible Galaxy.Fully document all the roles and make them suitable for adding to Ansible Galaxy.WSH Version 2.0Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.ukhttps://git.coop/webarch/wsh/-/issues/22Debian Bullseye and Linux Containers2020-04-25T11:13:57ZChris Croomechris@webarchitects.co.ukDebian Bullseye and Linux ContainersCurrently strict user isolation is achieved using chroots, the next logical step would be to switch to using [Linux Containers](https://wiki.debian.org/LXC), since this would be a major rewrite it probably makes sense to look at doing th...Currently strict user isolation is achieved using chroots, the next logical step would be to switch to using [Linux Containers](https://wiki.debian.org/LXC), since this would be a major rewrite it probably makes sense to look at doing this for [Debian Bullseye](https://www.debian.org/releases/bullseye/), which is probably due in 2021.WSH Version 2.0Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.ukhttps://git.coop/webarch/wsh/-/issues/21Semantic Versioning2020-04-25T11:14:39ZChris Croomechris@webarchitects.co.ukSemantic VersioningRather then using branches for versions as has been done so far for version `1.0.0` upwards tags should be used and the [Semantic Versioning](https://semver.org/) spec should be followed, in addition there are other [things that should b...Rather then using branches for versions as has been done so far for version `1.0.0` upwards tags should be used and the [Semantic Versioning](https://semver.org/) spec should be followed, in addition there are other [things that should be done](https://galaxy.ansible.com/docs/contributing/creating_role.html) before these roles are suitable to be added to [Ansible Galaxy](https://galaxy.ansible.com/).WSH Version 1.0Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.ukhttps://git.coop/webarch/wsh/-/issues/15Make backups available to users2020-05-25T06:55:09ZChris Croomechris@webarchitects.co.ukMake backups available to users30 days worth of backups to be made available at `~/backups/` for users.30 days worth of backups to be made available at `~/backups/` for users.WSH Version 1.0Kate DawsonKate Dawsonhttps://git.coop/webarch/wsh/-/issues/14Generate Icinga monitoring YAML2019-10-23T06:42:47ZChris Croomechris@webarchitects.co.ukGenerate Icinga monitoring YAMLGenerate YAML for all sites for Icinga monitoringGenerate YAML for all sites for Icinga monitoringWSH Version 1.0Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.ukhttps://git.coop/webarch/wsh/-/issues/13Marking a user as "absent" can result in /bin/sh and other things being deleted2019-10-10T15:10:00ZChris Croomechris@webarchitects.co.ukMarking a user as "absent" can result in /bin/sh and other things being deletedIf a user is marked as absent in [host_vars/wsh.webarchitects.org.uk.yml](https://git.coop/webarch/wsh/blob/master/host_vars/wsh.webarchitects.org.uk.yml) like this (without deleting all the other variables):
```yml
blog2:
users_s...If a user is marked as absent in [host_vars/wsh.webarchitects.org.uk.yml](https://git.coop/webarch/wsh/blob/master/host_vars/wsh.webarchitects.org.uk.yml) like this (without deleting all the other variables):
```yml
blog2:
users_state: absent
users_name: Bloggy Mc Blog Face
users_email: chris@webarch.net
users_ssh_public_keys:
- https://git.coop/chris.keys
users_quota: 1G
users_notify_passwd: true
users_matomo_notify_passwd: true
users_mariadb_notify_passwd: true
users_mariadb_databases:
- blog2
users_phpfpm_pm: dynamic
users_phpfpm_max_children: 4
users_apache_virtual_hosts:
default:
users_apache_type: php
users_apache_robots: deny
users_apache_server_name: www.blog2.wsh.webarchitects.org.uk
users_apache_server_aliases:
- blog2.wsh.webarchitects.org.uk
users_daily_scripts:
- "wp-update {{ users_basedir }}/blog2/{{ users_sites_dir }}/default"
users_cms: wordpress
wordpress_dbname: blog2
users_apache_expires: medium
users_groups:
- chroot
- phpfpm
users_group_members:
- www-data
users_home_owner: root
users_home_mode: "0750"
users_skel: /usr/local/etc/skel.d/www
```
Then the task:
```
TASK [users : Users accounts absent]
```
Results in:
```
[WARNING]: Module invocation had junk after the JSON data: /bin/sh: 1: sleep: not found
[WARNING]: Error deleting remote temporary files (rc: 1, stderr: /bin/bash: No such file or directory })
```
And the server needing rebuilding :worried:.Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.ukhttps://git.coop/webarch/wsh/-/issues/12Checking users YAML settings2019-11-13T15:48:05ZChris Croomechris@webarchitects.co.ukChecking users YAML settingsIt is easy to break things with bad choices in the `host_vars/host.example.org.yml` file, can some Molcule test or some other tests be added to be run using CI, for example:
* Unique system usernames, `users`
* No duplicate database nam...It is easy to break things with bad choices in the `host_vars/host.example.org.yml` file, can some Molcule test or some other tests be added to be run using CI, for example:
* Unique system usernames, `users`
* No duplicate database names, `users_mariadb_databases`
* No duplicate `users_apache_server_name` or `users_apache_server_aliases`
* Make some variable compulsoryWSH Version 1.0Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.ukhttps://git.coop/webarch/wsh/-/issues/11File manager2019-10-23T06:47:09ZChris Croomechris@webarchitects.co.ukFile managerAdd support for installing a web file manager for users who would rather use one than a SFTP client, for example:
* https://github.com/prasathmani/tinyfilemanager
* https://github.com/kalcaddle/KodExplorerAdd support for installing a web file manager for users who would rather use one than a SFTP client, for example:
* https://github.com/prasathmani/tinyfilemanager
* https://github.com/kalcaddle/KodExplorerWSH Version 1.0Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.ukhttps://git.coop/webarch/wsh/-/issues/8Matomo determined site not automatically set correctly2019-10-26T16:40:39ZChris Croomechris@webarchitects.co.ukMatomo determined site not automatically set correctlyAfter a WordPress install the "Determined site" is not set and if there is aother site on the server with the same account email address then the wrong value is assigned, for example https://www.blog.wsh.webarchitects.org.uk/ has:
> Det...After a WordPress install the "Determined site" is not set and if there is aother site on the server with the same account email address then the wrong value is assigned, for example https://www.blog.wsh.webarchitects.org.uk/ has:
> Determined site: drupal.wsh.webarchitects.org.uk (http://drupal.wsh.webarchitects.org.uk)WSH Version 1.0Chris Croomechris@webarchitects.co.ukChris Croomechris@webarchitects.co.uk