changed pass backend port
This commit is contained in:
Actaeus Curabitur
parent
701b84dbac
commit
859ad41131
10 changed files with 2047 additions and 3 deletions
5
pillars/roles/aurpkgs/pass.sls.old
Normal file
5
pillars/roles/aurpkgs/pass.sls.old
Normal file
|
|
@ -0,0 +1,5 @@
|
||||||
|
#note: teampass package is currently broken due to mysql being a required dependency
|
||||||
|
#will readd if/when the teampass AUR package is fixed
|
||||||
|
#aur:
|
||||||
|
# pkgs:
|
||||||
|
# teampass: []
|
||||||
10
pillars/roles/backup/pass.sls.old
Normal file
10
pillars/roles/backup/pass.sls.old
Normal file
|
|
@ -0,0 +1,10 @@
|
||||||
|
backup:
|
||||||
|
pass:
|
||||||
|
location: /teampass
|
||||||
|
rsync_user: backups
|
||||||
|
key: backups_key
|
||||||
|
host: host.actcur.com
|
||||||
|
user: http
|
||||||
|
group: http
|
||||||
|
fmode: 644
|
||||||
|
dmode: 700
|
||||||
9
pillars/roles/database/pass.sls.old
Normal file
9
pillars/roles/database/pass.sls.old
Normal file
|
|
@ -0,0 +1,9 @@
|
||||||
|
database:
|
||||||
|
users:
|
||||||
|
teampass:
|
||||||
|
host: pass.actcur.com
|
||||||
|
databases:
|
||||||
|
teampass:
|
||||||
|
teampass:
|
||||||
|
host: pass.actcur.com
|
||||||
|
grant: all privileges
|
||||||
|
|
@ -2,7 +2,7 @@ nginx:
|
||||||
pass:
|
pass:
|
||||||
auth: 2fa
|
auth: 2fa
|
||||||
https:
|
https:
|
||||||
port: 8080
|
port: 8000
|
||||||
prot: http
|
prot: http
|
||||||
|
|
||||||
portal:
|
portal:
|
||||||
|
|
|
||||||
3
pillars/roles/services/pass.sls.old
Normal file
3
pillars/roles/services/pass.sls.old
Normal file
|
|
@ -0,0 +1,3 @@
|
||||||
|
services:
|
||||||
|
pass:
|
||||||
|
php-fpm: []
|
||||||
|
|
@ -22,8 +22,8 @@ server {
|
||||||
listen 443;
|
listen 443;
|
||||||
server_name {{server}}.actcur.com {{wildcard}};
|
server_name {{server}}.actcur.com {{wildcard}};
|
||||||
|
|
||||||
resolver {{ resolver }};
|
# resolver {{ resolver }};
|
||||||
set $backend "{{prot}}://$server_name{%- if port is defined -%}:{{port}}{%- endif -%}";
|
set $backend "{{prot}}://127.0.0.1{%- if port is defined -%}:{{port}}{%- endif -%}";
|
||||||
|
|
||||||
ssl on;
|
ssl on;
|
||||||
ssl_certificate /etc/nginx/certs/{{server}}.actcur.com/fullchain.pem;
|
ssl_certificate /etc/nginx/certs/{{server}}.actcur.com/fullchain.pem;
|
||||||
|
|
|
||||||
63
states/roles/maintain/pass.old/init.sls
Normal file
63
states/roles/maintain/pass.old/init.sls
Normal file
|
|
@ -0,0 +1,63 @@
|
||||||
|
#install teampass - needs to be changed to being built in the aurrepo as soon as Marcin updates the dependencies to not include mysql
|
||||||
|
teampass_/etc/pacman.conf:
|
||||||
|
file.append:
|
||||||
|
- name: /etc/pacman.conf
|
||||||
|
- source: salt://roles/maintain/pass/temp-repo.conf
|
||||||
|
|
||||||
|
install_teampass:
|
||||||
|
pkg.installed:
|
||||||
|
- name: teampass
|
||||||
|
|
||||||
|
teampass_php-gd:
|
||||||
|
pkg.installed:
|
||||||
|
- name: php-gd
|
||||||
|
|
||||||
|
teampass_php-fpm:
|
||||||
|
pkg.installed:
|
||||||
|
- name: php-fpm
|
||||||
|
service.running:
|
||||||
|
- name: php-fpm
|
||||||
|
- enable: true
|
||||||
|
- watch:
|
||||||
|
- file: /etc/php/php.ini
|
||||||
|
|
||||||
|
/etc/php/php.ini:
|
||||||
|
file.managed:
|
||||||
|
- source: salt://roles/maintain/pass/php.ini
|
||||||
|
|
||||||
|
/etc/nginx/conf.d/teampass.conf:
|
||||||
|
file.managed:
|
||||||
|
- source: salt://roles/maintain/pass/nginx.conf
|
||||||
|
|
||||||
|
#change ownership on directories
|
||||||
|
"/usr/share/webapps/teampass/includes/config/":
|
||||||
|
file.directory:
|
||||||
|
- user: http
|
||||||
|
- group: http
|
||||||
|
"/usr/share/webapps/teampass/includes/avatars/":
|
||||||
|
file.directory:
|
||||||
|
- user: http
|
||||||
|
- group: http
|
||||||
|
"/usr/share/webapps/teampass/includes/libraries/csrfp/libs/":
|
||||||
|
file.directory:
|
||||||
|
- user: http
|
||||||
|
- group: http
|
||||||
|
"/usr/share/webapps/teampass/includes/libraries/csrfp/js/":
|
||||||
|
file.directory:
|
||||||
|
- user: http
|
||||||
|
- group: http
|
||||||
|
"/usr/share/webapps/teampass/includes/libraries/csrfp/log/":
|
||||||
|
file.directory:
|
||||||
|
- user: http
|
||||||
|
- group: http
|
||||||
|
|
||||||
|
"/teampass":
|
||||||
|
file.directory:
|
||||||
|
- user: http
|
||||||
|
- group: http
|
||||||
|
- dir_mode: 700
|
||||||
|
- file_mode: 600
|
||||||
|
- recurse:
|
||||||
|
- user
|
||||||
|
- group
|
||||||
|
- mode
|
||||||
21
states/roles/maintain/pass.old/nginx.conf
Normal file
21
states/roles/maintain/pass.old/nginx.conf
Normal file
|
|
@ -0,0 +1,21 @@
|
||||||
|
server {
|
||||||
|
server_name domain.tld www.domain.tld;
|
||||||
|
root /usr/share/webapps/teampass;
|
||||||
|
listen 8080;
|
||||||
|
|
||||||
|
location / {
|
||||||
|
# try to serve file directly, fallback to front controller
|
||||||
|
try_files $uri /index.php$is_args$args;
|
||||||
|
}
|
||||||
|
|
||||||
|
location ~ \.php$ {
|
||||||
|
try_files $uri $document_root$fastcgi_script_name =404;
|
||||||
|
fastcgi_pass unix:/run/php-fpm/php-fpm.sock;
|
||||||
|
fastcgi_index index.php;
|
||||||
|
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
|
||||||
|
include fastcgi.conf;
|
||||||
|
}
|
||||||
|
|
||||||
|
error_log /var/log/nginx/teampass_error.log;
|
||||||
|
access_log /var/log/nginx/teampass_access.log;
|
||||||
|
}
|
||||||
1930
states/roles/maintain/pass.old/php.ini
Normal file
1930
states/roles/maintain/pass.old/php.ini
Normal file
File diff suppressed because it is too large
Load diff
3
states/roles/maintain/pass.old/temp-repo.conf
Normal file
3
states/roles/maintain/pass.old/temp-repo.conf
Normal file
|
|
@ -0,0 +1,3 @@
|
||||||
|
[teampass-temp]
|
||||||
|
SigLevel = Never
|
||||||
|
Server = http://pkg.actcur.com/$repo/os/$arch
|
||||||
Loading…
Add table
Reference in a new issue