projet AP4 ansible glpi

sio2/AP/apdbdump.yml

@@ -3,9 +3,18 @@
   hosts: web
   become: yes
   tasks:
-    - name: 1. recuperation de sdis2023.sql avec fetch
+
-      ansible.builtin.fetch:
+    
-        src: /tmp/sdis2023.sql
+  - name: 1. Dump multiple databases
-        dest: /tmp/sdis2023.sql
+    community.mysql.mysql_db:
-        flat: yes
+      state: dump
+      name: sdis2023
+      target: /tmp/sdis2023.sql
+      login_unix_socket: /var/run/mysqld/mysqld.sock
+
+  - name: 2. recuperation de sdis2023.sql avec fetch
+    ansible.builtin.fetch:
+      src: /tmp/sdis2023.sql
+      dest: sdis2023-dump.sql
+      flat: yes
 

sio2/AP4/Vagrantfile

@@ -0,0 +1,22 @@
+# -*- mode: ruby -*-
+# vi: set ft=ruby :
+
+Vagrant.configure("2") do |config|
+  config.vm.provision "shell", inline: <<-SHELL
+#     export http_proxy=http://10.121.38.1:8080
+#     export https_proxy=http://10.121.38.1:8080
+     timedatectl set-timezone Europe/Paris
+     apt-get -y update
+     apt-get -y upgrade 
+  SHELL
+
+  config.vm.define "glpi" do |glpi| # VM No'1
+    glpi.vm.box = "debian/bookworm64" # Type de la machine 
+    glpi.vm.hostname = "glpi" # Nom de la machine
+    glpi.vm.network "public_network" #, ip: "192.168.0.111"# Set static IP
+    glpi.vm.provision "ansible" do |ansible|
+      ansible.playbook = "glpi.yml" # Lance le playbook glpi.yml
+    end
+  end
+end
+

sio2/AP4/glpi.yml

@@ -0,0 +1,44 @@
+---
+- name: glpi.yml
+  hosts: glpi
+  become: yes
+  tasks:
+  - name: 1. Installer apache php 
+    apt:
+      name:
+        - apache2 
+        - php
+      state: present
+        #notify: 2. redémarrer apache et activer adminer
+ 
+  - name: 2. Installation des extensions php de GLPI
+    apt:
+      name:
+        - php-xml 
+        - php-common
+        - php-mysql
+        - php-mbstring
+        - php-curl
+        - php-imap
+        - php-zip
+        - php-int1
+        - php-ldap
+        - php-xmlrpc
+        - php-imap
+        - php-bz2
+      state: present
+    notify: 3. redemarrer php
+  - name: 4. redémarrer apache et activer adminer
+    shell: sudo systemctl reload apache2
+
+  handlers:
+    - name: 3. redemarrer php
+      service:
+        name: php
+        state: restarted
+
+
+
+
+
+

sio2/AP4/glpidb.yml

@@ -0,0 +1,30 @@
+---
+- name: glpidb.yml
+  hosts: glpi
+  become: yes
+  tasks:
+  - name: 1. Installer mariadb
+    apt:
+      name:
+        - mariadb-server 
+        - python3-pymysql
+      state: present
+
+  - name: 2. s'assurer que mariadb est en fonctionnement
+    service:
+      name: mariadb
+      state: started
+
+  - name: 3. Creer un utilisateur et  lui attribuer tous les droits
+    community.mysql.mysql_user:
+      name: glpi
+      password: glpi
+      priv: '*.*:ALL,GRANT'
+      state: present
+      login_unix_socket: /var/run/mysqld/mysqld.sock
+
+  - name: 4. Creation de la base de donnee  'db_glpi'
+    community.mysql.mysql_db:
+      name: db_glpi
+      state: present
+      login_unix_socket: /var/run/mysqld/mysqld.sock

sio2/AP4/install.yml

@@ -0,0 +1,31 @@
+---
+- name: install.yml
+  hosts: glpi
+  become: yes
+  tasks:
+  - name: 1. Telechargement de l'archive de glpi 10.0.10
+    get_url:
+      url: http://depl.sio.lan/store/glpi-10.0.10.tgz
+      dest: /tmp
+
+  - name: 2.  Extraire glpi 10.0.10.tgz vers /tmp/
+    ansible.builtin.unarchive:
+      src: /tmp/glpi-10.0.10.tgz
+      dest: /var/www/html/
+
+  - name: 3. Changer propritaire group et permissions
+    file:
+      path: /var/www/html/doku
+      owner: www-data
+      group: www-data
+      mode: '0755'
+      recurse: yes
+    notify: 4. redemarrer apache2
+
+    handlers: 
+    - name: 4. redemarrer apache2
+      service:
+        name: apache2
+        state: restarted
+
+

sio2/AP4/role/bdd/tasks/main.yml

@@ -0,0 +1,30 @@
+---
+- name: glpidb.yml
+  hosts: glpi
+  become: yes
+  tasks:
+  - name: 1. Installer mariadb
+    apt:
+      name:
+        - mariadb-server 
+        - python3-pymysql
+      state: present
+
+  - name: 2. s'assurer que mariadb est en fonctionnement
+    service:
+      name: mariadb
+      state: started
+
+  - name: 3. Creer un utilisateur et  lui attribuer tous les droits
+    community.mysql.mysql_user:
+      name: glpi
+      password: glpi
+      priv: '*.*:ALL,GRANT'
+      state: present
+      login_unix_socket: /var/run/mysqld/mysqld.sock
+
+  - name: 4. Creation de la base de donnee  'db_glpi'
+    community.mysql.mysql_db:
+      name: db_glpi
+      state: present
+      login_unix_socket: /var/run/mysqld/mysqld.sock

sio2/AP4/role/web/tasks/main.yml

@@ -0,0 +1,44 @@
+---
+- name: glpi.yml
+  hosts: glpi
+  become: yes
+  tasks:
+  - name: 1. Installer apache php 
+    apt:
+      name:
+        - apache2 
+        - php
+      state: present
+        #notify: 2. redémarrer apache et activer adminer
+ 
+  - name: 2. Installation des extensions php de GLPI
+    apt:
+      name:
+        - php-xml 
+        - php-common
+        - php-mysql
+        - php-mbstring
+        - php-curl
+        - php-imap
+        - php-zip
+        - php-int1
+        - php-ldap
+        - php-xmlrpc
+        - php-imap
+        - php-bz2
+      state: present
+    notify: 3. redemarrer php
+  - name: 4. redémarrer apache et activer adminer
+    shell: sudo systemctl reload apache2
+
+  handlers:
+    - name: 3. redemarrer php
+      service:
+        name: php
+        state: restarted
+
+
+
+
+
+

sio2/AP4/rp

@@ -0,0 +1,44 @@
+---
+- name: glpi.yml
+  hosts: glpi
+  become: yes
+  tasks:
+  - name: 1. Installer apache php 
+    apt:
+      name:
+        - apache2 
+        - php
+      state: present
+        #notify: 2. redémarrer apache et activer adminer
+ 
+  - name: 2. Installation des extensions php de GLPI
+    apt:
+      name:
+        - php-xml 
+        - php-common
+        - php-mysql
+        - php-mbstring
+        - php-curl
+        - php-imap
+        - php-zip
+        - php-int1
+        - php-ldap
+        - php-xmlrpc
+        - php-imap
+        - php-bz2
+      state: present
+    notify: 3. redemarrer php
+  - name: 4. redémarrer apache et activer adminer
+    shell: sudo systemctl reload apache2
+
+  handlers:
+    - name: 3. redemarrer php
+      service:
+        name: php
+        state: restarted
+
+
+
+
+
+

sio2/CYBER/Wireguard/wg0-a.conf

@@ -1,15 +1,10 @@
-# local settings for Endpoint A
 [Interface]
-PrivateKey = aLihTWpe3bt3XwNPGOVS0mB9vfr4JqeZPyzhlgQ052k=
+PrivateKey = iGPtDYyKYCoQVPofdo7KQXfC4OGCGOBXonF44nKUSFw=
-Address = 10.0.0.1/32
+Address = 10.0.0.2/32 # Adresses autorisées dans le VPN
-ListenPort = 51820
+Listenport = 51820
 
-# IP forwarding
-PreUp = sysctl -w net.ipv4.ip_forward=1
-
-# remote settings for Endpoint B
 [Peer]
-PublicKey = 8bEwgf4jUaIvZslBNwQSP3sNrJPZg1YDiFqyMCvJszo=
+PublicKey = sAJc6fITMHs9Entb5upqGMN+4M+fnhIIpcWbQiqW50g= # de machine B
-Endpoint = 192.168.3.2:51820
+AllowedIPs = 10.0.0.0/24 # le peer peut acceder au serveur
-AllowedIPs = 10.0.0.2/32, 192.168.2.0/24
+Endpoint = 192.168.0.45:51820
 

sio2/CYBER/Wireguard/wg0-b.conf

@@ -0,0 +1,10 @@
+[Interface]
+Address = 10.0.0.1/32 # Adresses autorisées dans le VPN
+Listenport = 51820
+PrivateKey = YH3oUGyt8hXlqRINQIANWsqf7Bd+SJcyLhMLGPwbvHk=
+
+[Peer]
+PublicKey = k2Yzmoz+7e1TT+n2+zK9AHjssgQLp7DW0T3Zi+AtPV0= # de machine B
+AllowedIPs = 10.0.0.0/24 # le peer peut acceder au serveur
+Endpoint = 192.168.0.26:51820
+

sio2/CYBER/wg0-b.conf

@@ -1,15 +0,0 @@
-# local settings for Endpoint B
-[Interface]
-PrivateKey = eLqg4jQCId97MOdcP5k0FIlxnaMBArlPPEaTVmRPWFk=
-Address = 10.0.0.2/32
-ListenPort = 51820
-
-# IP forwarding
-PreUp = sysctl -w net.ipv4.ip_forward=1
-
-# remote settings for Endpoint A
-[Peer]
-PublicKey = 5UQzcels7MqDXWdt2oDvfbjykISpYl4i8uYFytHijUc=
-Endpoint = 192.168.3.2:51820
-AllowedIPs = 10.0.0.1/32, 192.168.1.0/24
-