openstack/openstack-ansible
Code Issues Proposed changes
openstack-ansible/ansible-role-requirements.yml
Major Hayden 411c51c8d1 Add config option + docs for security hardening 
This patch adds a configurable option for deployers to apply security
hardening by adjusting apply_security_hardening to true within
the user_variables.yml file. In addition, security hardening is enabled
on AIO builds by default.

Documentation about the security role and how to enable it are also included
in this patch.

Implements: blueprint security-hardening

Change-Id: Ic05ab7eacd6a1966814764b8290817fb78732758
2016-01-26 08:30:52 -06:00

73 lines
2.2 KiB
YAML
Raw Blame History

# Potential method for globally resolving plugins and libs
# - name: plugins
# src: https://github.com/os-cloud/openstack-ansible-plugins
# scm: git
# path: /etc/ansible
# version: master
- src: evrardjp.keepalived
name: keepalived
version: '1.3'
- src: mattwillsher.sshd
name: sshd
- name: apt_package_pinning
src: https://git.openstack.org/openstack/openstack-ansible-apt_package_pinning
scm: git
version: master
- name: lxc_container_create
src: https://git.openstack.org/openstack/openstack-ansible-lxc_container_create
scm: git
version: master
- name: lxc_hosts
src: https://git.openstack.org/openstack/openstack-ansible-lxc_hosts
scm: git
version: master
- name: openstack_hosts
src: https://git.openstack.org/openstack/openstack-ansible-openstack_hosts
scm: git
version: master
- name: openstack-ansible-security
src: https://git.openstack.org/openstack/openstack-ansible-security
scm: git
version: master
- name: pip_install
src: https://git.openstack.org/openstack/openstack-ansible-pip_install
scm: git
version: master
- name: pip_lock_down
src: https://git.openstack.org/openstack/openstack-ansible-pip_lock_down
scm: git
version: master
- name: py_from_git
src: https://git.openstack.org/openstack/openstack-ansible-py_from_git
scm: git
version: master
- name: rsyslog_client
src: https://git.openstack.org/openstack/openstack-ansible-rsyslog_client
scm: git
version: master
- name: memcached_server
src: https://git.openstack.org/openstack/openstack-ansible-memcached_server
scm: git
version: master
- name: repo_server
src: https://git.openstack.org/openstack/openstack-ansible-repo_server
scm: git
version: master
- name: rabbitmq_server
src: https://git.openstack.org/openstack/openstack-ansible-rabbitmq_server
scm: git
version: master
- name: galera_client
src: https://git.openstack.org/openstack/openstack-ansible-galera_client
scm: git
version: master
- name: galera_server
src: https://git.openstack.org/openstack/openstack-ansible-galera_server
scm: git
version: master
- name: rsyslog_server
src: https://git.openstack.org/openstack/openstack-ansible-rsyslog_server
scm: git
version: master
View Git Blame Copy Permalink