maj

sio2/AP/apbase.yml

@@ -1,14 +1,25 @@
 ---
 - name: apbase
   hosts: web
+  become: yes
+  tasks:
+  - name: 1. Installer les paquets apache2 php et adminer
+    apt:
+      name:
+        - apache2 
+        - php
+        - adminer
+        - php-mbstring
+      state: present
+        #notify: 2. redémarrer apache et activer adminer
+  
+  - name: 2. redémarrer apache et activer adminer
+    shell: sudo a2enconf adminer
+
+  - name: 3. redémarrer apache et activer adminer
+    shell: sudo systemctl reload apache2    
+
+
 
-- name: Installer les paquets apache2 php adminer
-  apt:
-    name:
-     - apache2 
-     - php
-     - adminer
-     - php-mbstring
-- state: present
 
 

sio2/AP/apdb.yml

@@ -1,49 +1,52 @@
 ---
-- name: apbase
+- name: apdb
   hosts: web
-  become: yes 
+  become: yes
+  tasks:
 
-- name: Installer mariadb
-  apt:
-    name:
-     - mariadb-server
-     - python3-PyMySQL
-    state: present
+    - name: 1. Installer mariadb
+      apt:
+        name:
+          - mariadb-server
+          - python3-pymysql
+        state: present
 
-- name: s'assurer que mariadb est en fonctionnement
-    service:
-      name: mariadb-server
-      state: started
+    - name: 2. s'assurer que mariadb est en fonctionnement
+      service:
+        name: mariadb
+        state: started
 
-- name: Creer un utilisateur 'admin' lui attribuer tous les droits 
-  community.mysql.mysql_user:
-    name: admin
-    password: admin
-    priv: '*.*:ALL'
-    state: present
+    - name: 3. Creer un utilisateur et  lui attribuer tous les droits
+      community.mysql.mysql_user:
+        name: admin
+        password: admin
+        priv: '*.*:ALL,GRANT'
+        state: present
+        login_unix_socket: /var/run/mysqld/mysqld.sock
 
-- name: Creation de la base de donnee  'sdis2023'
-  mysql_db:
-    name: sdis2023
-    state: present
+    - name: 4. Creation de la base de donnee  'sdis2023'
+      community.mysql.mysql_db:
+        name: sdis2023
+        state: present
+        login_unix_socket: /var/run/mysqld/mysqld.sock
 
-# Copy database dump file to remote host and restore it to database 'sdis2023'
-- name: Copie du dump de la BDD 
-  copy:
-    src: sdis2023.sql
-    dest: /tmp/
+    - name: 5. copier la base de donnée sur l'hôte distant
+      copy:
+        src: sdis2023.sql
+        dest: /tmp/sdis2023.sql
 
-- name: Restore database
-  community.mysql.mysql_db:
-    name: sdis2023
-    state: import
-    target: /tmp/sdis2023
-
-      #- name: Restore d
-      #community.mysql.mysql_db:
-      #name: my_db
-      #state: import
-      #target: /tmp/dump.sql.bz2
-      #force: true
+    - name: 6. Restore la base de donnée
+      community.mysql.mysql_db:
+        name: sdis2023
+        state: import
+        target: /tmp/sdis2023.sql
+        login_unix_socket: /var/run/mysqld/mysqld.sock
 
+          # - name: 5. Dump multiple databases
+          #community.mysql.mysql_db:
+          #state: dump
+          #name:
+          #- sdis2023
+          #target: sdis2023.sql
+          #login_unix_socket: /var/run/mysqld/mysqld.sock
 

sio2/AP/apdbdump.yml

@@ -1,10 +1,20 @@
 ---
 - name: apdbdump
   hosts: web
+  become: yes
+  tasks:
 
-- name: 1. recuperation de sdis2023.sql avec fetch
-      ansible.builtin.fetch:
-        src: /tmp/sdis2023.sql
-        dest: ~/ansible/backup/
-        flat: yes
+    
+  - name: 1. Dump multiple databases
+    community.mysql.mysql_db:
+      state: dump
+      name: sdis2023
+      target: /tmp/sdis2023.sql
+      login_unix_socket: /var/run/mysqld/mysqld.sock
+
+  - name: 2. recuperation de sdis2023.sql avec fetch
+    ansible.builtin.fetch:
+      src: /tmp/sdis2023.sql
+      dest: sdis2023-dump.sql
+      flat: yes
 

sio2/AP/drop.yml

@@ -0,0 +1,12 @@
+---
+- name: apdb
+  hosts: web
+  become: yes
+  tasks:
+    - name: 1. Suppression de la base de donnee  'sdis2023'
+      community.mysql.mysql_db:
+        name: sdis2023
+        state: absent
+        login_unix_socket: /var/run/mysqld/mysqld.sock
+
+

sio2/CYBER/Wireguard/wg0-a.conf

@@ -1,15 +1,10 @@
-# local settings for Endpoint A
 [Interface]
-PrivateKey = aLihTWpe3bt3XwNPGOVS0mB9vfr4JqeZPyzhlgQ052k=
-Address = 10.0.0.1/32
-ListenPort = 51820
+PrivateKey = iGPtDYyKYCoQVPofdo7KQXfC4OGCGOBXonF44nKUSFw=
+Address = 10.0.0.2/32 # Adresses autorisées dans le VPN
+Listenport = 51820
 
-# IP forwarding
-PreUp = sysctl -w net.ipv4.ip_forward=1
-
-# remote settings for Endpoint B
 [Peer]
-PublicKey = 8bEwgf4jUaIvZslBNwQSP3sNrJPZg1YDiFqyMCvJszo=
-Endpoint = 192.168.3.2:51820
-AllowedIPs = 10.0.0.2/32, 192.168.2.0/24
+PublicKey = sAJc6fITMHs9Entb5upqGMN+4M+fnhIIpcWbQiqW50g= # de machine B
+AllowedIPs = 10.0.0.0/24 # le peer peut acceder au serveur
+Endpoint = 192.168.0.45:51820
 

sio2/CYBER/Wireguard/wg0-b.conf

@@ -0,0 +1,10 @@
+[Interface]
+Address = 10.0.0.1/32 # Adresses autorisées dans le VPN
+Listenport = 51820
+PrivateKey = YH3oUGyt8hXlqRINQIANWsqf7Bd+SJcyLhMLGPwbvHk=
+
+[Peer]
+PublicKey = k2Yzmoz+7e1TT+n2+zK9AHjssgQLp7DW0T3Zi+AtPV0= # de machine B
+AllowedIPs = 10.0.0.0/24 # le peer peut acceder au serveur
+Endpoint = 192.168.0.26:51820
+

sio2/CYBER/wg0-b.conf

@@ -1,15 +0,0 @@
-# local settings for Endpoint B
-[Interface]
-PrivateKey = eLqg4jQCId97MOdcP5k0FIlxnaMBArlPPEaTVmRPWFk=
-Address = 10.0.0.2/32
-ListenPort = 51820
-
-# IP forwarding
-PreUp = sysctl -w net.ipv4.ip_forward=1
-
-# remote settings for Endpoint A
-[Peer]
-PublicKey = 5UQzcels7MqDXWdt2oDvfbjykISpYl4i8uYFytHijUc=
-Endpoint = 192.168.3.2:51820
-AllowedIPs = 10.0.0.1/32, 192.168.1.0/24
-