72 Commits (71bf56e60ff6ecb950b122f9c2e0b84f9c2fc44e)

Author SHA1 Message Date
Felix Stupp 1748d00f8c
Fixup for dns/application: Add nsupdate.makefile for indempotent updates 4 years ago
Felix Stupp 13f3aceb00
dns/entries: Make "setting entries" be indempotent using makefile 4 years ago
Felix Stupp bd4d97d835
dns/entries: Block uploading dns entries in check mode
Must explicit block because otherwise Ansible tries to lookup the local
file, which may not be created in check mode
4 years ago
Felix Stupp 4f9cf49f6c
dns/handlers merged into dns/application 4 years ago
Felix Stupp b0cc2b8ca1
dns/master: Make backups of dynamic zone data 5 years ago
Felix Stupp ae42f963a2
dns: Transfered master zones from makefile approach to dynamic updates approach 5 years ago
Felix Stupp 0232319ccd
dns/master: Configured dnssec-policy for automatic KASP 5 years ago
Felix Stupp ae995dec67
dns/entries: Prefixed entries name with "server:" 5 years ago
Felix Stupp 3d274d9996
dns/application: Fixed indent 5 years ago
Felix Stupp b6d9b1deb5
dns/entries: Fixed reference to var dns_zone_domain 5 years ago
Felix Stupp 360172f8db
dns/master: Moved default tts var to global var 5 years ago
Felix Stupp 72ee42d539
dns/master: Allow configure default ttl 5 years ago
Felix Stupp 3008672ded
dns/master: Added section comments to zone.conf 5 years ago
Felix Stupp a41f4c1c3f
dns/master: Adapted generate-keys to inline-signing (only gen KSK) 5 years ago
Felix Stupp be6303576a
dns/application: Added configuration for session-key 5 years ago
Felix Stupp 49d53d0213
dns/application: Removed obsolete dnssec directives 5 years ago
Felix Stupp 0e96fcbe34
dns/application: Fixed defining role dependencies 5 years ago
Felix Stupp 0b7e2cb923
dns/application: Changed vars in makefile to support further dest files 5 years ago
Felix Stupp fbca70f81f
dns/master: Create keys directory writeable for bind
To apply KASP later
5 years ago
Felix Stupp d73e250b36
dns/master: Changed owner and adapted permissions of zone directory 5 years ago
Felix Stupp 22fde40ac5
dns/application: Changed bind9 source to official source 5 years ago
Felix Stupp a51225ccc8
dns/application: Allowed bind using AppArmor to write temporary journal files 5 years ago
Felix Stupp 646e6d5c75
dns: Configured service name using global variable 5 years ago
Felix Stupp 77d1e84117
dns: Fixed variable structure of var domain_environment_directory 5 years ago
Felix Stupp 6fbf62cddd
dns/application: Added zone.db.jnl files to allowed files for bind to write 5 years ago
Felix Stupp 55b27c041b
dns: Extracted role entries from server_entries 5 years ago
Felix Stupp 39771c907f
dns/server_entries: Renamed var all_entries to entries 5 years ago
Felix Stupp 9d23e12a16
dns/master: Now considered vars for nameserver and mail to be absolute
Meaning the var itself must not have a dot at the end of the name,
but an usage of the variable may need to append a dot.
5 years ago
Felix Stupp 40c6a3ab0f
dns/server_entries: Allow duplicate execution of role 5 years ago
Felix Stupp 1958c4df54
dns: Renamed role entries to server_entries
To distinguish between simple entries role (coming in the future) and
entries role bundled with server-related entries (A, AAAA, SSHFP)
5 years ago
Felix Stupp 08fafbf98f
dns/entries: Fixed SYNC comment to role dns/master 5 years ago
Felix Stupp 2158b2717d
dns/master: Added support for dname to root zone 5 years ago
Felix Stupp b3620fa3c8
dns/application: makefile combine: Sort files before combining
Ensures 0_main.db is before other files
5 years ago
Felix Stupp 979abba1aa
Added role dns/entries for configuring dns entries 5 years ago
Felix Stupp 748999d36d
dns: Moved var zones_environment_directory to global vars 5 years ago
Felix Stupp f8c01d46f6
dns/master: Fix permissions for dns env dir 5 years ago
Felix Stupp bf00dcb6dd
dns/application: Moved var configuration_directory to global vars 5 years ago
Felix Stupp eb632a8f2c
dns/master: Store mapping of domain to host in public_keys 5 years ago
Felix Stupp 025f77736a
dns: Changed approach for DNSSEC signing to inline-signing
- Moved keys into own directory
- Replaced makefile per zone by makefile for all zones
  - Only combining of zone files and setting serial number
  - signing now made by bind
- Added AppArmor profile extension for creating dynamic zone files
5 years ago
Felix Stupp e85ad8fed3
dns: Fixed applying permissions to directories 5 years ago
Felix Stupp c89ec27f6d
dns/master: Changed TODO for "Copy public key" to "Copy ZSK"
Only required and beneficial for ZSK
5 years ago
Felix Stupp 905a887b80
dns: Renamed zones_configuration_environment_ to zones_environment 5 years ago
Felix Stupp 7e2813928e
dns: Renamed variables, removed prefix dns_ on not essential variable names 5 years ago
Felix Stupp ab1a067cff
dns/master: Added flush_handlers before role ends 5 years ago
Felix Stupp 371b1d5751
dns/application: Fixed permissions for zone databases directories 5 years ago
Felix Stupp 64576c8ff5
dns/master: zone.makefile: Added cd to key signing 5 years ago
Felix Stupp ab61090340
dns/master: zone.makefile: Added check for directories not equal 5 years ago
Felix Stupp bb8a2759ec
dns/master: zone.makefile: Changed usage of var dest 5 years ago
Felix Stupp d052a08f0d
dns/master: zone.makefile: Fixed format 5 years ago
Felix Stupp ebbacdce0c
dns/master: Added dependency to role dns/master_handlers 5 years ago