ansible-role-apache/tasks/configuration.yml

---
- name: "configuration | Deaktiviere Server-Tokens"
  ansible.builtin.lineinfile:
    path: /etc/apache2/conf-enabled/security.conf
    regexp: '^ServerTokens OS'
    line: ServerTokens Prod
  notify: reload apache2

- name: "configuration | Deaktiviere access-Logs"
  ansible.builtin.command:
    cmd: a2disconf other-vhosts-access-log
    removes: /etc/apache2/conf-enabled/other-vhosts-access-log.conf
  notify: reload apache2

- name: "apache | Generiere Diffie-Hellman-Parameter"
  openssl_dhparam:
    path: "{{ dhparams_path }}"
  when: "'extern_hosts' in group_names"

- name: "configuration | Kopiere Dateien"
  ansible.builtin.copy:
    src: "{{ item }}"
    dest: "/etc/apache2/conf-available/{{ item }}"
    mode: 0644
  loop:
    - add-headers.conf
    - letsencrypt.conf
    - sao-cache.conf

- name: "configuration | Kopiere SSL-Konfiguration"
  ansible.builtin.template:
    src: ssl.conf
    dest: /etc/apache2/conf-available/ssl.conf
    mode: 0644

- name: "configuration | Aktiviere Module"
  ansible.builtin.apache2_module:
    name: "{{ item }}"
    state: present
  notify: reload apache2
  when: "'extern_hosts' in group_names"
  loop:
    - headers
    - mpm_event
    - ssl

- name: "configuration | Aktiviere Konfiguration"
  ansible.builtin.command:
    cmd: "a2enconf {{ item }}"
    creates: "/etc/apache2/conf-enabled/{{ item }}"
  notify: reload apache2
  when: "'extern_hosts' in group_names"
  loop:
    - add-headers.conf
    - letsencrypt.conf
    - sao-cache.conf
    - ssl.conf
apache2: Aktiviere Konfiguration für externe hosts 2022-12-27 12:01:38 +01:00			`---`
			`- name: "configuration \| Deaktiviere Server-Tokens"`
			`ansible.builtin.lineinfile:`
Apache2-Rolle 2021-07-28 03:11:08 +02:00			`path: /etc/apache2/conf-enabled/security.conf`
			`regexp: '^ServerTokens OS'`
			`line: ServerTokens Prod`
			`notify: reload apache2`

apache2: Aktiviere Konfiguration für externe hosts 2022-12-27 12:01:38 +01:00			`- name: "configuration \| Deaktiviere access-Logs"`
			`ansible.builtin.command:`
			`cmd: a2disconf other-vhosts-access-log`
			`removes: /etc/apache2/conf-enabled/other-vhosts-access-log.conf`
Apache2-Rolle 2021-07-28 03:11:08 +02:00			`notify: reload apache2`
Erweitere Apache-Konfiguration 2021-07-28 09:56:47 +02:00
apache2: Aktiviere Konfiguration für externe hosts 2022-12-27 12:01:38 +01:00			`- name: "apache \| Generiere Diffie-Hellman-Parameter"`
			`openssl_dhparam:`
			`path: "{{ dhparams_path }}"`
apache2: Erzeuge dhparams nur bei externen hosts 2023-01-02 19:38:11 +01:00			`when: "'extern_hosts' in group_names"`
apache2: Aktiviere Konfiguration für externe hosts 2022-12-27 12:01:38 +01:00
			`- name: "configuration \| Kopiere Dateien"`
			`ansible.builtin.copy:`
Erweitere Apache-Konfiguration 2021-07-28 09:56:47 +02:00			`src: "{{ item }}"`
			`dest: "/etc/apache2/conf-available/{{ item }}"`
apache2: Aktiviere Konfiguration für externe hosts 2022-12-27 12:01:38 +01:00			`mode: 0644`
			`loop:`
			`- add-headers.conf`
			`- letsencrypt.conf`
			`- sao-cache.conf`

			`- name: "configuration \| Kopiere SSL-Konfiguration"`
			`ansible.builtin.template:`
			`src: ssl.conf`
			`dest: /etc/apache2/conf-available/ssl.conf`
			`mode: 0644`

apache2: Aktiviere notwendige Module auf externen Hosts 2022-12-28 16:07:32 +01:00			`- name: "configuration \| Aktiviere Module"`
			`ansible.builtin.apache2_module:`
			`name: "{{ item }}"`
			`state: present`
			`notify: reload apache2`
			`when: "'extern_hosts' in group_names"`
			`loop:`
			`- headers`
			`- mpm_event`
			`- ssl`

apache2: Aktiviere Konfiguration für externe hosts 2022-12-27 12:01:38 +01:00			`- name: "configuration \| Aktiviere Konfiguration"`
			`ansible.builtin.command:`
apache2: Aktiviere notwendige Module auf externen Hosts 2022-12-28 16:07:32 +01:00			`cmd: "a2enconf {{ item }}"`
apache2: Aktiviere Konfiguration für externe hosts 2022-12-27 12:01:38 +01:00			`creates: "/etc/apache2/conf-enabled/{{ item }}"`
			`notify: reload apache2`
			`when: "'extern_hosts' in group_names"`
Erweitere Apache-Konfiguration 2021-07-28 09:56:47 +02:00			`loop:`
			`- add-headers.conf`
Fixes 2021-07-28 11:24:28 +02:00			`- letsencrypt.conf`
apache2: Kopiere Cache-Konfiguration 2022-07-26 17:45:32 +02:00			`- sao-cache.conf`
Erweitere Apache-Konfiguration 2021-07-28 09:56:47 +02:00			`- ssl.conf`