| Line | |
|---|
| 1 |
|
|---|
| 2 | A set of Ansible playbooks for:
|
|---|
| 3 |
|
|---|
| 4 | o installing a base Greenstone3 system where the tomcat server
|
|---|
| 5 | is accessed directly over http
|
|---|
| 6 |
|
|---|
| 7 | o hardening the installation to run over https through an Apache2
|
|---|
| 8 | web server using a certificate issued by Let's Encrypt.
|
|---|
| 9 |
|
|---|
| 10 |
|
|---|
| 11 | To install ansible, for example, on Debian systems:
|
|---|
| 12 |
|
|---|
| 13 | sudo apt update
|
|---|
| 14 | sudo apt install software-properties-common
|
|---|
| 15 | sudo add-apt-repository --yes --update ppa:ansible/ansible
|
|---|
| 16 | sudo apt install ansible
|
|---|
| 17 |
|
|---|
| 18 | Review and edit as needed the variables in:
|
|---|
| 19 |
|
|---|
| 20 | vars/default-core.xml
|
|---|
| 21 |
|
|---|
| 22 | Then run the Ansible playbooks in the following order:
|
|---|
| 23 |
|
|---|
| 24 | ./01-RUN-ANSIBLE-BASE-INSTALL.sh
|
|---|
| 25 |
|
|---|
| 26 | ./02-RUN-ANSIBLE-REVPROXY.sh
|
|---|
| 27 |
|
|---|
| 28 | ====
|
|---|
| 29 |
|
|---|
| 30 | Misc extra notes:
|
|---|
| 31 |
|
|---|
| 32 | This Ansible playbook installs an Apache2 web server and Let's
|
|---|
| 33 | Encrypt's certbot command-line tool (if not already present), and then
|
|---|
| 34 | proceeds to configure Apache2 so it acts as a reverse-proxy web server
|
|---|
| 35 | for a Greenston3 Tomcat installation.
|
|---|
| 36 |
|
|---|
| 37 |
|
|---|
| 38 | In developing these playbooks, the following resources were consulted:
|
|---|
| 39 |
|
|---|
| 40 | https://github.com/do-community/ansible-playbooks/tree/master
|
|---|
| 41 | https://github.com/mvarian/certbot-apache/tree/master
|
|---|
Note:
See
TracBrowser
for help on using the repository browser.
