repo: "{{ fsit_smgt_kivi_customer_repo }}"
version: "{{ fsit_smgt_kivi_customer_version }}"
+- name: Copy over Kivitendo.conf.
+ ansible.builtin.copy:
+ src: files/kivitendo.conf
+ dest: /var/www/kivitendo-erp/config/kivitendo.conf
+ owner: www-data
+ mode: 'u=rw,g=rw,o='
+ notify: Restart apache
+
+- name: Make webdav directory.
+ ansible.builtin.file:
+ path: /var/www/kivitendo-erp/webdav
+ state: directory
+ mode: 'u=Xrw,g=Xrw,o='
+
+- name: Make kivi_documents directory.
+ ansible.builtin.file:
+ path: /var/www/kivitendo-erp/kivi_documents
+ state: directory
+ mode: 'u=Xrw,g=Xrw,o='
+
+- name: Change permissions.
+ ansible.builtin.file:
+ owner: www-data
+ path: "/var/www/kivitendo-erp/{{ item }}"
+ mode: 'u=Xrw,g=Xrw,o='
+ recurse: true
+ loop:
+ - kivi_documents
+ - users
+ - spool
+ - templates
+ - webdav
+
+# postrgesql for kivi
+- name: Remove existing rules to ensure correct ordering of the rules
+ ansible.builtin.postgresql_pg_hba:
+ dest: /etc/postgresql/17/main/pg_hba.conf
+ overwrite: true
+ contype: local
+ users: all
+ databases: all
+ method: peer
+
+- name: Allow access from localhost to Postgresql.
+ ansible.builtin.postgresql_pg_hba:
+ dest: /etc/postgresql/17/main/pg_hba.conf
+ contype: host
+ users: postgres
+ databases: all
+ address: 127.0.0.1/32
+ method: trust
+ notify: Restart postgresql
+
+# apache server for kivi
+- name: Activate apache fastcgi, headers and ssl modules.
+ community.general.apache2_module:
+ state: present
+ name: "{{ item }}"
+ loop:
+ - fcgid
+ - headers
+ - ssl
+ - rewrite
+ - socache_shmcb
+# notify: Enable SSL
+
# Anleitung adaptiert
# https://github.com/kivitendo/kivitendo-ansible/blob/master/main.yml
#
projects / fsit_smgt.git / blobdiff