|
|
e200774c8e
|
fix(validation): add CIDR prefix range check and Ubuntu version validation
|
2026-02-21 00:38:57 +01:00 |
|
|
|
6e0c289226
|
refactor(cis): remove redundant AllowUsers/AllowGroups/DenyUsers/DenyGroups from sshd
|
2026-02-21 00:38:52 +01:00 |
|
|
|
3be725633e
|
fix(cis): skip squashfs blacklist on Ubuntu to preserve snap functionality
|
2026-02-21 00:38:47 +01:00 |
|
|
|
6c02eab159
|
fix(partitioning): correct changed_when on btrfs quota and qgroup commands
|
2026-02-21 00:38:43 +01:00 |
|
|
|
99c579bec0
|
fix(cis): add regexp to all lineinfile entries in security_lines.yml for idempotency
|
2026-02-21 00:38:36 +01:00 |
|
|
|
be5d2e9f94
|
fix: add no_log to credential-handling pre_tasks and post_tasks in main.yml
|
2026-02-21 00:38:32 +01:00 |
|
|
|
e334c82b26
|
fix(virtualization): add no_log and secure temp file handling to libvirt cloud-init
|
2026-02-21 00:38:28 +01:00 |
|
|
|
5008d97bc8
|
refactor(cleanup): add configurable verify_boot, boot_timeout, and remove_on_failure defaults
|
2026-02-20 23:02:24 +01:00 |
|
|
|
06b8058c1d
|
refactor: move playbook-root templates into their respective roles
|
2026-02-20 23:01:38 +01:00 |
|
|
|
aec82e4241
|
refactor: add loop_control labels to dict-based loops across all roles
|
2026-02-20 23:00:53 +01:00 |
|
|
|
f36d9b7ca3
|
refactor(partitioning): move btrfs home quota to configurable default
|
2026-02-20 22:55:37 +01:00 |
|
|
|
0950db7011
|
fix(environment): detect RHEL ISO device dynamically instead of hardcoded /dev/sr paths
|
2026-02-20 22:54:42 +01:00 |
|
|
|
4f3e39398f
|
refactor(global_defaults): split system.yml into composable normalization stages
|
2026-02-20 22:54:05 +01:00 |
|
|
|
e3c21168fd
|
refactor(global_defaults): extract OS family lists to single source of truth
|
2026-02-20 22:52:55 +01:00 |
|
|
|
643fec1cc6
|
fix(partitioning): add failed_when to all blkid commands to catch empty UUIDs
|
2026-02-20 22:52:18 +01:00 |
|
|
|
bbbdcfc9b6
|
fix(partitioning): add default fallbacks for is_rhel, os, os_version in defaults
|
2026-02-20 22:51:37 +01:00 |
|
|
|
9347140808
|
fix(virtualization): use hostname variable instead of hardcoded archiso in cloud-user-data
|
2026-02-20 22:51:32 +01:00 |
|
|
|
b8af8b3fdd
|
fix(virtualization): avoid no-handler lint finding in xen VM created tracking
|
2026-02-20 22:29:03 +01:00 |
|
|
|
94ea082e63
|
fix(partitioning): fix line length violation in home size calculation
|
2026-02-20 22:28:58 +01:00 |
|
|
|
3361ee3de8
|
fix(configuration): add pipefail to root password shell pipe
|
2026-02-20 22:28:54 +01:00 |
|
|
|
06f6203674
|
fix(bootstrap): use release map for ubuntu version detection
|
2026-02-20 22:27:46 +01:00 |
|
|
|
a385c27963
|
chore: add .yamllint matching main project conventions
|
2026-02-20 22:27:31 +01:00 |
|
|
|
04340d1a04
|
fix(configuration): use chpasswd for root password and separate shell setting
|
2026-02-20 22:27:17 +01:00 |
|
|
|
4c8021fc2e
|
fix(configuration): add explicit LUKS auto-decrypt fallback state tracking and logging
|
2026-02-20 22:26:47 +01:00 |
|
|
|
6a6a43ae96
|
refactor(partitioning): externalize hardcoded LVM and disk sizing constants to defaults
|
2026-02-20 22:26:23 +01:00 |
|
|
|
2a7340af37
|
fix(virtualization): add xen VM existence check and improve changed_when
|
2026-02-20 22:25:10 +01:00 |
|
|
|
e0687269d4
|
fix(cis): add pipefail to sshd version detection and define binary defaults
|
2026-02-20 22:24:14 +01:00 |
|
|
|
1634af552e
|
feat(cleanup): gate RHEL ISO disk and fstab handling on rhel_repo.source
|
2026-02-20 21:51:20 +01:00 |
|
|
|
0077f05654
|
feat(global_defaults): add system.features.rhel_repo option (iso|satellite|none)
|
2026-02-20 21:51:16 +01:00 |
|
|
|
33d46274bd
|
fix(encryption): add warning before silent TPM2-to-keyfile fallback
|
2026-02-20 21:51:12 +01:00 |
|
|
|
ed6b604302
|
fix(partitioning): correct wipefs changed_when to report actual disk modification
|
2026-02-20 21:51:09 +01:00 |
|
|
|
fc2ddfea8a
|
fix(validation): require password for primary user in system.users[0]
|
2026-02-20 21:51:06 +01:00 |
|
|
|
efdbc0c04e
|
fix(system_check): move no_log from block to individual API tasks
|
2026-02-20 21:51:02 +01:00 |
|
|
|
5769bd456d
|
fix(cis): make mlkem768x25519-sha256 KexAlgorithm conditional on OpenSSH 9.9+
|
2026-02-20 21:50:58 +01:00 |
|
|
|
b7ffcfecd4
|
fix(cis): use is_rhel for journald config path instead of fedora-only check
|
2026-02-20 21:50:55 +01:00 |
|
|
|
f18881328c
|
refactor(configuration): add conditional dispatch to task includes
|
2026-02-20 21:16:52 +01:00 |
|
|
|
05aeb0676b
|
refactor(cis): move OS-specific binary resolution to vars/main.yml
|
2026-02-20 21:16:48 +01:00 |
|
|
|
5b5c94cb8b
|
refactor(configuration): split network.yml into per-init-system dispatch files
|
2026-02-20 21:16:45 +01:00 |
|
|
|
4a89911a54
|
refactor(bootstrap): restructure conditional package lists to list concatenation
|
2026-02-20 21:16:40 +01:00 |
|
|
|
b61fecfc88
|
refactor(configuration): convert services.yml to list-based loop
|
2026-02-20 21:16:37 +01:00 |
|
|
|
b690bddaec
|
refactor(virt): adopt module_defaults for hypervisor credentials
|
2026-02-20 21:16:33 +01:00 |
|
|
|
8e92f40b2a
|
refactor(cleanup): restructure dispatch to use hypervisor_type include
|
2026-02-20 21:16:28 +01:00 |
|
|
|
c8c9a9c9f5
|
refactor(partitioning): extract VG name to defaults variable
|
2026-02-20 21:16:25 +01:00 |
|
|
|
7a666239b6
|
fix(configuration): remove trailing blank line from extras.yml
|
2026-02-20 20:20:33 +01:00 |
|
|
|
7181679d7c
|
docs(environment): document RPM GPG policy relaxation
|
2026-02-20 20:19:57 +01:00 |
|
|
|
32f22e94bd
|
chore(bootstrap): align ansible.cfg with main project settings
|
2026-02-20 20:19:46 +01:00 |
|
|
|
15122b924d
|
feat(system_check): add safety check for physical installs
|
2026-02-20 20:19:37 +01:00 |
|
|
|
be51bfe101
|
fix(cleanup): fix vmware CD-ROM omit fragility and add cross-role defaults
|
2026-02-20 20:19:25 +01:00 |
|
|
|
83610447e7
|
fix(virtualization): add XML safety attributes and switch xen to virtio
|
2026-02-20 20:18:49 +01:00 |
|
|
|
1fc64b9e5d
|
fix(cis): remove deprecated sshd options and update hardening values
|
2026-02-20 20:17:52 +01:00 |
|
