-
Notifications
You must be signed in to change notification settings - Fork 1
/
ojs.yml
127 lines (106 loc) · 2.89 KB
/
ojs.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
- name: OJS common configuration
remote_user: ulsprovision
hosts: ojs
become: yes
tasks:
- name: provide maintenance message for default vhost
copy:
src: resources/ojs/html/index.php
dest: /var/www/html/
- name: vhosts (www) is group writable
file:
path: /var/www/vhosts
state: directory
mode: '0775'
owner: root
group: ulssysdev
- name: vhosts (conf) is group writable
file:
path: /etc/httpd/conf.d/vhosts
state: directory
mode: '0775'
owner: root
group: ulssysdev
- name: OJS files dir is r/w to apache
sefcontext:
target: '/var/www/vhosts/[^/]+/files(/.*)?'
setype: httpd_sys_script_rw_t
state: present
- name: OJS public files dir is r/w to apache
sefcontext:
target: '/var/www/vhosts/[^/]+/html/(ojs/)?public(/.*)?'
setype: httpd_sys_script_rw_t
state: present
- name: OJS cache dir is r/w to apache
sefcontext:
target: '/var/www/vhosts/[^/]+/html/(ojs/)?cache(/.*)?'
setype: httpd_sys_script_rw_t
state: present
- name: selinux httpd_can_sendmail
seboolean:
name: httpd_can_sendmail
state: yes
persistent: yes
- name: selinux httpd_can_network_connect
seboolean:
name: httpd_can_network_connect
state: yes
persistent: yes
- name: add unzip (used in config.inc.php)
yum:
name: unzip
state: latest
- name: add patch (used in ojs-upgrade.sh)
yum:
name: patch
state: latest
- name: deploy local OJS scripts
copy:
src: resources/ojs/local-scripts/
dest: /usr/local/bin/
mode: preserve
owner: root
group: ulssysdev
- name: run local OJS scheduled tasks
cron:
name: Run OJS scheduled tasks frequently throughout the day
minute: 36
hour: 6,8,10,12,14,16,18,20
user: apache
job: "/usr/local/bin/cronic /usr/local/bin/runScheduledTasks.sh"
- name: Default apache vhost
copy:
src: resources/ojs/http-conf.d/00_default.conf
dest: /etc/httpd/conf.d/
- name: Include OJS vhosts
copy:
src: resources/ojs/http-conf.d/vhosts.conf
dest: /etc/httpd/conf.d/
- name: Template OJS vhosts
copy:
src: resources/ojs/http-conf.d/vhosts/
dest: /etc/httpd/conf.d/vhosts/
directory_mode: true
- name: Add backup user
user:
name: backup
comment: Mysql Backup
shell: /sbin/nologin
- name: Add ojs backup directory parent
file:
path: /var/local/backup
state: directory
- name: Add ojs backup directory
file:
path: /var/local/backup/ojs
state: directory
owner: backup
group: backup
- name: Repermission ojs-backup script
file:
path: /usr/local/bin/ojs-backup.sh
group: backup
- name: Repermission ojs-restore script
file:
path: /usr/local/bin/ojs-restore.sh
group: backup