Commit Graph

9 Commits

Author SHA1 Message Date
Sebastian Palencsar
2aa5480d17 fix: create PHP-FPM log directory before service starts
- Add preflight task to create /var/log/php{X}-fpm directory
- Add default php_version var for early template access
2026-05-06 13:47:18 +02:00
Sebastian Palencsar
168c59f3ea fix: correct YAML indentation for tasks sections
- Add missing 2-space indentation before 'tasks:' keyword
- Fixes Ansible YAML parsing errors
2026-05-06 13:43:49 +02:00
Sebastian Palencsar
58ffb82378 feat: add PHP version detection with 8.4→8.3 fallback
- Detect available PHP version at runtime
- Try PHP 8.4 first, fallback to 8.3
- Dynamically set PHP service names and paths
- Remove hardcoded PHP 8.4 references from vars
2026-05-06 13:38:29 +02:00
Sebastian Palencsar
38241f82e3 refactor: remove unnecessary PPA tasks - PHP 8.4 is already in Ubuntu 24.04 default repos
- Removed PHP PPA addition tasks from both playbooks
- Simplified package installation (no external PPA needed)
- PHP 8.4 available in Ubuntu 24.04 default repos
2026-05-06 13:35:17 +02:00
Sebastian Palencsar
feb6a2c962 fix: add gnupg and software-properties-common for PPA support 2026-05-06 13:19:55 +02:00
Sebastian Palencsar
619205e0a8 fix: add PHP PPA for Ubuntu 24.04+ to enable PHP 8.4 2026-05-06 13:18:35 +02:00
Sebastian Palencsar
dffd8e3b76 feat: v2.5.0 - Complete Technology & Security Update
Features:
- PHP 8.4 support (from 8.3)
- WordPress 7.0 (auto-update via WP-CLI)
- Modern TLS 1.3 cipher suites (2026 best practices)
- Fail2Ban security integration (5 jails: SSH, Nginx, WordPress, recidive)
- Auto-update cron job for WordPress (weekly Minor updates)
- Debian 14 Forky support (testing)
- Ubuntu 25.04 support
- Python 3.12 in GitHub Actions

Security:
- Fail2Ban with SSH brute force protection (24h ban)
- WordPress wp-login.php protection (2h ban)
- Nginx bot scanner protection
- Recidive jail for repeat offenders (1 week ban)
- Modern TLS ciphers (AEAD only)
- HSTS 2 years for preload

Documentation:
- docs/autoupdate.md - WordPress auto-update guide
- docs/fail2ban.md - Fail2Ban configuration guide
- docs/troubleshooting.md - Updated with php_version variable

Breaking changes:
- PHP 8.4 is now the default (requires Ubuntu 20.04+ or Debian 11+)
2026-05-04 19:37:27 +02:00
Sebastian Palencsár
2045307d1d fix: resolve all YAML linting errors in playbooks and inventories
- Fix line length violations by using YAML folded strings (>-)
- Remove trailing whitespace from all files
- Add missing document start markers (---) to inventory files
- Improve readability of long Jinja2 template expressions
- Maintain YAML linting compliance for production-ready code

All files now pass yamllint validation successfully.
2025-06-21 00:30:13 +02:00
Sebastian Palencsár
e199772e92 feat: v2.0.0 production-ready release with Redis, OPcache and Nginx optimizations 2025-06-21 00:08:09 +02:00