source: darkpeak-services/ @ cbe76706

Last change on this file since cbe76706 was cbe76706, checked in by Mat Booth <mat.booth@…>, 3 years ago

git: Add cron job to regenerate cgit's project list every 5 mins

If your new public repo does not show immediately in cgit, just
wait longer...

  • Property mode set to 100644
File size: 1.3 KB
1- Create users and groups as part of each web service's role rather than having php-fpm role create them indirectly.
2- Shorten the merry dance of simlinks involved in the location of mediawiki's LocalSettings.php file (which involves allowing the execution of php code in several directories that might otherwise be sensible to keep out of php-fpm's path, like /etc/mediawiki)
3- Have each role create its own webroot directory, or at least pass owner, group and mode as variables to the nginx role's "configure-nginx-website.yml" playbook. This would avoid having to fix webroot permissions for roles that use php-fpm(e.g. ttrss, mediawiki).
4- Move mastodon's webroot from /home/mastodon/live to /var/www/mastodon for consistency.
5- Fix the "include" deprecation warnings.
6- Ensure all users of LDAP are talking over TLS and actually verify certs
7- Replace the "darkpeak" LDAP user with a proper system user for services such as SSSD to bind with
8- We'll probably end up with random logos and other kinds of branding in a bunch of places -- this should be consolidated somehow (maybe submodule the design repo?)
9- Finish implementing git hosting:
10  - Static site hosting (missing hook)
11  - Deal gracefully with gitolite setup failure if user has no ssh pub keys in the LDAP (can we send back a meaningful error?)
Note: See TracBrowser for help on using the repository browser.