29 lines
676 B
YAML
29 lines
676 B
YAML
---
|
|
- name: Packages
|
|
ansible.builtin.include_tasks: install.yml
|
|
tags: install
|
|
|
|
- name: Install config to enable reverse proxy
|
|
ansible.builtin.template:
|
|
src: templates/cockpit.conf
|
|
dest: /etc/cockpit/cockpit.conf
|
|
mode: 0644
|
|
owner: root
|
|
group: root
|
|
when: cockpit_has_reverse_proxy
|
|
|
|
- name: Require 2FA for logging into the Cockpit
|
|
ansible.builtin.lineinfile:
|
|
line: auth required pam_google_authenticator.so nullok
|
|
path: /etc/pam.d/cockpit
|
|
create: true
|
|
mode: 0644
|
|
owner: root
|
|
group: root
|
|
when: cockpit_2fa
|
|
|
|
- name: Enable cockpit
|
|
ansible.builtin.service:
|
|
name: "cockpit.socket"
|
|
enabled: true
|
|
state: restarted
|