From 642c7970d08301b5412b958820e3e58392fe613a Mon Sep 17 00:00:00 2001
From: "tino.dalle" <vpis@tztrzt>
Date: Fri, 11 Feb 2022 15:00:42 +0100
Subject: [PATCH] commit glpi

---
 glpi/ansible/glpi.yml                      |   5 +
 glpi/ansible/roles/glpi/defaults/main.yml  |  10 ++
 glpi/ansible/roles/glpi/files/glpi.conf    |  12 ++
 glpi/ansible/roles/glpi/files/my.cnf       |   3 +
 glpi/ansible/roles/glpi/handlers/main.yml  |  18 +++
 glpi/ansible/roles/glpi/tasks/main.yml     | 132 +++++++++++++++++++++
 glpi/ansible/roles/glpi/templates/block.j2 |  23 ++++
 7 files changed, 203 insertions(+)
 create mode 100644 glpi/ansible/glpi.yml
 create mode 100644 glpi/ansible/roles/glpi/defaults/main.yml
 create mode 100644 glpi/ansible/roles/glpi/files/glpi.conf
 create mode 100644 glpi/ansible/roles/glpi/files/my.cnf
 create mode 100644 glpi/ansible/roles/glpi/handlers/main.yml
 create mode 100644 glpi/ansible/roles/glpi/tasks/main.yml
 create mode 100644 glpi/ansible/roles/glpi/templates/block.j2

diff --git a/glpi/ansible/glpi.yml b/glpi/ansible/glpi.yml
new file mode 100644
index 0000000..38b484d
--- /dev/null
+++ b/glpi/ansible/glpi.yml
@@ -0,0 +1,5 @@
+---
+- hosts: localhost
+  connection: local
+  roles:
+    - glpi
diff --git a/glpi/ansible/roles/glpi/defaults/main.yml b/glpi/ansible/roles/glpi/defaults/main.yml
new file mode 100644
index 0000000..2ee0591
--- /dev/null
+++ b/glpi/ansible/roles/glpi/defaults/main.yml
@@ -0,0 +1,10 @@
+depl_url: "http://depl/store"
+glpi_tgz: "glpi-9.5.7.tgz"
+fusion: "fusioninventory-9.5+3.0.tar.bz2"
+fusion64: "fusioninventory-agent_windows-x64_2.6.exe"
+glpi_dir: "/var/www/html/glpi"
+glpi_dbhost: "127.0.0.1"
+glpi_dbname: "glpi"
+glpi_dbuser: "glpi"
+glpi_dbpasswd: "glpi"
+
diff --git a/glpi/ansible/roles/glpi/files/glpi.conf b/glpi/ansible/roles/glpi/files/glpi.conf
new file mode 100644
index 0000000..4c37222
--- /dev/null
+++ b/glpi/ansible/roles/glpi/files/glpi.conf
@@ -0,0 +1,12 @@
+DocumentRoot /var/www/glpi
+        <Directory /var/www/glpi>
+                Options Indexes FollowSymLinks MultiViews
+                AllowOverride All
+                Order allow,deny
+                allow from all
+                AuthType Basic
+        </Directory>
+
+        LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" combined
+        CustomLog ${APACHE_LOG_DIR}/glpi_access.log combined
+        ErrorLog  ${APACHE_LOG_DIR}/glpi_error.log
diff --git a/glpi/ansible/roles/glpi/files/my.cnf b/glpi/ansible/roles/glpi/files/my.cnf
new file mode 100644
index 0000000..34d0e25
--- /dev/null
+++ b/glpi/ansible/roles/glpi/files/my.cnf
@@ -0,0 +1,3 @@
+[client]
+user=root
+password=root
diff --git a/glpi/ansible/roles/glpi/handlers/main.yml b/glpi/ansible/roles/glpi/handlers/main.yml
new file mode 100644
index 0000000..048e3d4
--- /dev/null
+++ b/glpi/ansible/roles/glpi/handlers/main.yml
@@ -0,0 +1,18 @@
+---
+- name: restart php-fpm
+  service:
+    name: php-fpm
+    state: restarted
+    enabled: yes
+
+- name: restart nginx
+  service:
+    name: nginx
+    state : restarted
+    enabled: yes  
+
+- name: restart mariadb-server
+  service: 
+    name: mariadb-server
+    state: restarted
+    enabled: yes
diff --git a/glpi/ansible/roles/glpi/tasks/main.yml b/glpi/ansible/roles/glpi/tasks/main.yml
new file mode 100644
index 0000000..32bb16a
--- /dev/null
+++ b/glpi/ansible/roles/glpi/tasks/main.yml
@@ -0,0 +1,132 @@
+---
+  - name: Installation des paquets
+    apt:
+      name:
+        - nginx
+        - php-fpm
+        - php-mbstring
+        - php-mysql
+        - php-gd
+        - php-curl
+        - php-xml
+        - php-apcu
+        - php-ldap
+        - php-imap
+        - php-xmlrpc
+        - php-cas
+        - python3-mysqldb
+        - mariadb-server
+        - python3-pymysql
+        - php-intl
+        - php-bz2
+        - php-zip
+        - postfix
+        - mailutils
+      state: present
+
+  - name: Changement listen dans le fichier conf de php
+    replace:
+      dest: /etc/php/7.4/fpm/pool.d/www.conf
+      regexp: 'listen = /run/php/php7.4-fpm.sock'
+      replace: 'listen = 127.0.0.1:9000'
+      backup: yes
+
+  - name: Effacement block nginx default
+    file:
+      path: /etc/nginx/sites-enabled/default 
+      state: absent
+
+  - name: Creation fichier block nginx
+    template: 
+      src: block.j2 
+      dest: /etc/nginx/sites-enabled/glpi
+
+  - name: Remplacement dans le fichier de conf php du timeout
+    replace:
+      dest: /etc/php/7.4/fpm/php.ini
+      regexp: 'max_execution_time = 30'
+      replace: 'max_execution_time = 600'
+      backup: yes
+
+    notify:
+      - restart nginx
+
+  - name: Creation de la base de donnee mysql
+    mysql_db:
+      name: "{{ glpi_dbname }}"
+      check_implicit_admin: yes
+      state: present
+      login_unix_socket: /var/run/mysqld/mysqld.sock
+
+  - name: Creation de l'utilisateur mysql avec tous les privileges
+    mysql_user:
+      user: "{{ glpi_dbuser }}"
+      password: "{{ glpi_dbpasswd }}"
+      priv: "*.*:ALL,GRANT"
+      login_unix_socket: /var/run/mysqld/mysqld.sock
+      state: present
+
+  - name: Creation du repertoire {{ glpi_dir }}
+    file: 
+      path: "{{ glpi_dir }}"
+      state: directory
+      owner: www-data
+      group: www-data
+
+  - name: Installation de GLPI
+    unarchive:
+      src: http://depl/store/glpi-9.5.7.tgz
+      dest: /var/www/html
+      remote_src: yes
+      owner: www-data
+      group: www-data
+
+  - name: Changement des attributs {{ glpi_dir }}
+    file: 
+      path: "{{ glpi_dir }}" 
+      owner: www-data 
+      group: www-data 
+      mode: 0755 
+      recurse: yes
+
+  - name: Changement des attributs {{ glpi_dir }}/plugins
+    file:
+      path: "{{ glpi_dir }}/plugins"
+      mode: 0777
+      owner: www-data
+      group: www-data
+      recurse: yes
+
+  - name: Installation de Fusioninventory pour Linux
+    unarchive:
+      src: "{{ depl_url }}/{{ fusion }}"
+      dest: "/var/www/html/glpi/plugins"
+      remote_src: yes
+
+  - name: Creation de ficlient
+    file:
+      path: /var/www/html/ficlients
+      state: directory
+      owner: www-data
+      group: www-data
+      mode: 0775
+
+  - name: Attribution des droits nginx.index
+    file:
+      path: /var/www/html/index.nginx-debian.html
+      owner: www-data
+      group: www-data
+      mode: 0775
+
+  - name: Installation de FusionInventory windows x64
+    get_url:
+      url: "{{ depl_url }}/{{ fusion64 }}"
+      dest: "/var/www/html/ficlients"
+
+  - name: Attribution des permissions sur repertoire /plugins/fusioninventory
+    file:
+      path: /var/www/html/glpi/plugins/fusioninventory
+      owner: www-data
+      group: www-data
+      recurse: yes
+      state: directory
diff --git a/glpi/ansible/roles/glpi/templates/block.j2 b/glpi/ansible/roles/glpi/templates/block.j2
new file mode 100644
index 0000000..0cec4f7
--- /dev/null
+++ b/glpi/ansible/roles/glpi/templates/block.j2
@@ -0,0 +1,23 @@
+server {
+        listen   80 default_server;
+        root {{ glpi_dir }};
+        index index.php;
+        server_name localhost;
+
+        location / {try_files $uri $uri/ index.php;}
+
+        #prise en charge PHP
+        location ~ \.php$ {
+                fastcgi_pass 127.0.0.1:9000;
+                fastcgi_index index.php;
+                include /etc/nginx/fastcgi_params;
+                fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
+                include fastcgi_params;
+                fastcgi_param SERVER_NAME $host;
+  	 }
+
+	location /ficlients {
+		root /var/www/html;
+		autoindex on;
+	}
+}