Skip to content

Commit

Permalink
Merge pull request #111 from cisagov/feature/disable-trace-and-enable…
Browse files Browse the repository at this point in the history 
…-hsts

Disable trace functionality and enable HSTS headers in Apache
  • Loading branch information
@jsf9k
jsf9k authored Oct 31, 2023
2 parents ba92e46 + 74d7e30 commit e794265
Show file tree
Hide file tree
Showing 3 changed files with 14 additions and 7 deletions.
17 changes: 12 additions & 5 deletions src/freeipa.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,16 +6,23 @@
tasks:
- name: Install FreeIPA server
ansible.builtin.include_role:
name: freeipa_server
name: freeipa
vars:
freeipa_disable_trace: true
freeipa_enable_hsts: true

# boto3 will be needed to pull certificates from S3, and dig is
# needed to perform some DNS lookups. Both are used in cloud-init
# scripts.
#
- name: Install dependencies for cloud-init scripts
ansible.builtin.package:
name:
- bind-utils
- python3-boto3

# expect is used in the FreeIPA cluster update script that
# @bra1ncramp created in cisagov/cool-users#421.
- name: Install boto3 and dig
- name: Install dependencies for FreeIPA cluster update script
ansible.builtin.package:
name:
- bind-utils
- expect
- python3-boto3
2 changes: 1 addition & 1 deletion src/requirements.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@ roles:
src: https://github.com/cisagov/ansible-role-cloudwatch-agent
- name: crowdstrike
src: https://github.com/cisagov/ansible-role-crowdstrike
- name: freeipa_server
- name: freeipa
src: https://github.com/cisagov/ansible-role-freeipa-server
- name: harden
src: https://github.com/cisagov/ansible-role-hardening
Expand Down
2 changes: 1 addition & 1 deletion src/version.txt
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
__version__ = "0.7.3"
__version__ = "0.7.4"

0 comments on commit e794265

Please sign in to comment.