Skip to content

73569 allowing webp nginx pr 2.x #2692

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 22, 2025
Merged

73569 allowing webp nginx pr 2.x #2692

merged 2 commits into from
Sep 22, 2025

Conversation

filiprupic
Copy link
Contributor

No description provided.

@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@tymofiisobchenko tymofiisobchenko merged commit cf6129b into 2.x Sep 22, 2025
5 checks passed
@tymofiisobchenko tymofiisobchenko deleted the 73569-allowing-webp-nginx-PR-2.x branch September 22, 2025 12:26
drazenCE added a commit that referenced this pull request Sep 24, 2025
@drazenCE @matej5
@gregharvey @klausi @nfawbert @tymofiisobchenko @filiprupic
Nslcd nscd restart pr devel 2.x (#2694)
91523bd 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Nslcd-nscd-restart

---------

Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
drazenCE added a commit that referenced this pull request Sep 24, 2025
@drazenCE @matej5
@gregharvey @klausi @nfawbert @tymofiisobchenko @filiprupic
Updating pam ldap condition pr devel 2.x (#2696)
a92733d 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-devel-2.x

---------

Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 24, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2697)
0baf750 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 25, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2701)
961af1c 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@matej5 @drazenCE
@gregharvey @klausi @nfawbert @tymofiisobchenko @filiprupic
Aurora backup validation pr devel 2.x (#2699)
bbb645b 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-defaults

* Reverting-wazuh-changes

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@matej5 @drazenCE
@gregharvey @klausi @nfawbert @tymofiisobchenko @filiprupic
Aurora backup validation pr devel 2.x (#2702)
27d3844 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-defaults

* Reverting-wazuh-changes

* Removing-files

* Adding-LE-vars-for-apache

* Removing-extra-task

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2703)
957047c 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2704)
0a83745 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2705)
abf4372 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2706)
bba77aa 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2707)
04082b0 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2708)
2a9d063 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Sep 30, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2709)
9d4147a 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2712)
c04ecf5 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2713)
72d073d 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Fixing-varnish-pinning (#2710)

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Trying to fix AWS standalone builds.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2716)
e274789 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Fixing-varnish-pinning (#2710)

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2718)
6fb944e 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Fixing-varnish-pinning (#2710)

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2719)
72c77e9 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Fixing-varnish-pinning (#2710)

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2720)
fa6af59 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Fixing-varnish-pinning (#2710)

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2721)
c634ac3 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Fixing-varnish-pinning (#2710)

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Bug fixes pr devel 2.x (#2722)
43b9d7c 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating clamav command to use flock avoiding duplicate processes running.

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* More truthy length fixes.

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Nslcd-nscd-restart (#2693)

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Fixing-varnish-pinning (#2710)

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 1, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Ansible12 pr devel 2.x (#2723)
0b44a9c 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Nslcd-nscd-restart (#2693)

* Fixing-varnish-pinning (#2710)

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2717)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

* Fixing python venv vars.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 2, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Ansible12 pr devel 2.x (#2725)
736c1f7 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Nslcd-nscd-restart (#2693)

* Fixing-varnish-pinning (#2710)

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2717)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

* Fixing python venv vars.

* Bad var name in pip role.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
matej5 added a commit that referenced this pull request Oct 2, 2025
@matej5 @drazenCE
@gregharvey @klausi @nfawbert @tymofiisobchenko @filiprupic
Updating admin tools role pr devel 2.x (#2726)
c878cc9 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Nslcd-nscd-restart (#2693)

* Fixing-varnish-pinning (#2710)

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2717)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

* Updating-aws-iam-tasks

* Updating-aws-backup-defaults

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
matej5 added a commit that referenced this pull request Oct 2, 2025
@matej5 @drazenCE
@gregharvey @klausi @nfawbert @tymofiisobchenko @filiprupic
Updating admin tools role pr devel 2.x (#2728)
e18cc4d 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Nslcd-nscd-restart (#2693)

* Fixing-varnish-pinning (#2710)

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2717)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

* Updating-aws-iam-tasks

* Updating-aws-backup-defaults

* Adding-profile-to-task

* Changing-when-statements

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
nfawbert added a commit that referenced this pull request Oct 3, 2025
@nfawbert @drazenCE
@matej5 @gregharvey @klausi @tymofiisobchenko @filiprupic
R73510 apt reboot alerts pr devel 2.x (#2729)
edd3586 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Nslcd-nscd-restart (#2693)

* Fixing-varnish-pinning (#2710)

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2717)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

* Fixing python venv vars. (#2724)

* Fixing python venv vars.

* Bad var name in pip role.

* Updating-aws-iam-tasks (#2727)

* Updating-aws-iam-tasks

* Updating-aws-backup-defaults

* Adding-profile-to-task

* Changing-when-statements

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* r73510-apt-reboot-alerts

* fix linting error

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
matej5 added a commit that referenced this pull request Oct 3, 2025
@matej5 @drazenCE
@gregharvey @klausi @nfawbert @tymofiisobchenko @filiprupic
Avoiding backup validation plan due to iam issues pr devel 2.x (#2732)
0f28445 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Nslcd-nscd-restart (#2693)

* Fixing-varnish-pinning (#2710)

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2717)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

* Fixing python venv vars. (#2724)

* Fixing python venv vars.

* Bad var name in pip role.

* Updating-aws-iam-tasks (#2727)

* Updating-aws-iam-tasks

* Updating-aws-backup-defaults

* Adding-profile-to-task

* Changing-when-statements

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Wazuh mitre report setup pr 2.x (#2676)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* r73510-apt-reboot-alerts (#2730)

* r73510-apt-reboot-alerts

* fix linting error

* Avoiding-backup-validation-plan-due-to-IAM-issues

* Reverting-wazuh-changes

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
gregharvey added a commit that referenced this pull request Oct 3, 2025
@gregharvey @drazenCE
@matej5 @klausi @nfawbert @tymofiisobchenko @filiprupic
Ansible12 pr devel 2.x (#2733)
f56918e 
* Fixing-email-title-for-backup-validation (#2657)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Adding-task-to-create-aurora-cluster (#2659)

* Adding-task-to-create-aurora-cluster

* Adding-region-profile-and-tags-to-aurora-cluster

* Updating-engine-for-aurora-cluster

* Updating-parameter-group-engine

* Updating-engine-version

* Updating-engine-version-2

* Disabling-automated-backups

* Disabling-automated-backups-2

* Disabling-automated-backups-3

* Disabling-automated-backups-4

* Skipping-task-if-not-aurora

* Adding-subnet-group-to-instances

* Adding-subnet-group-to-instances

* Updating-SG-return-values

* Updating-SG-return-values-2

* Updating-SG-return-values-3

* Updating-SG-return-values-4

* Updating-SG-return-value-debug

* Updating-SG-return-value-debug-2

* Updating-SG-return-value-debug-3

* Removing-debug-tasks

* Removing-init-var-for-SG-list

* Adding-character-set-option

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing truthy variable mistakes. (#2662)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* feat(php): Add FPM slow logrotate (#2625)

* feat(php): Support removal of APCU, add FPM slow logrotate

* simplify condition

* revert apcu installed setting, not needed

* r73458-install-php-gmp-by-default2 (#2667)

* r73458-install-php-gmp-by-default2

* re-add required packages

* Wazuh-mitre-report-setup (#2588)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh mitre report setup pr 2.x (#2669)

* Wazuh-mitre-report-setup

* Wazuh-mitre-shellshock-longurl-block

* Fixing-vars

* Wazuh-mitre-report-setup-PR-2.x

* Wazuh-mitre-report-setup-PR-2.x

* pin_ansible_version (#2671)

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_fix_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* pin_ansible_version_disable_upgrade_timer

* Fixing-ce-provision-vars (#2678)

* Updating-string (#2507)

* Updating-string

* Updating-string-3

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region (#2682)

* Added-tasks-to-backup-Aurora-and-copy-AMI-to-safe-region

* Fixing-aurora-backup-tasks

* Fixing-aurora-backup-tasks-2

* Fixing-aurora-backup-tasks-3

* Fixing-aurora-backup-tasks-5

* Adding-aurora-template

* Updating-aurora-vars

* Adding-handler-to-defaults-for-CF

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* SG-creation-update (#2605)

* SG-creation-update

* Updating-lambda-tasks-to-handle-various-file-options

* Updating-lambda-tasks-for-url-handling

* Updating-aws_admin_tools-for-aws_lambda

* Updating-aws_admin_tools-for-aws_lambda

* Setting-loop-item

* Setting-loop-item-2

* Updating-vpc-sec-group-vars

* Removing-extra-vars-for-git-module

* Adding-default-for-git_url

* Cleaning-up-tasks

* Updating-ansible-lint

* Updating-ansible-lint

* Ommiting-name-if-no-sec_group-name-defined

* Removing-loop-var

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-copy-AMI-to-backup-region (#2684)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-ami-copy-task (#2686)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Bug fixes pr 2.x (#2690)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* 73569 allowing webp nginx pr 2.x (#2692)

* allowing webp extension

* adding webp mime type

---------

Co-authored-by: filip <filip.rupic@codeenigma.com>

* extending provision.sh to support tags in plays (#2431)

Co-authored-by: filip <filip.rupic@codeenigma.com>

* Adding-option-for-Aurora-RDS-for-backup-validation (#2635)

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Fixing-aws_vpc-override (#2688)

* Fixing-aws_vpc-override

* Adding-defaults

* Fixing-register-command

* Defaulting-tags

* Defaulting-tags-2

* Updating-region

* Updating-iam_role-vars

* Updating-iam_role-vars-2

* Updating-when-statement

* Updating-when-statement-for-backups

* Updating-when-statement-for-iam-policy

* Updating-when-statement-for-iam-policy

* Updating-vars-for-SG-creation

* Updating-when-statement-for-iam-role

* Updating-handle-git-url

* Updating-handle-git-url-2

* Updating-handle-git-url-3

* Updating-handle-git-url-4

* Updating-handle-git-url-5

* Updating-handle-git-url-6

* Updating-handle-git-url-7

* Fixing-indentation

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>

* Updating-pam-ldap-condition (#2695)

* Updating-pam-ldap-condition

* Updating-pam-ldap-condition-PR-2.x

* Nslcd-nscd-restart (#2693)

* Fixing-varnish-pinning (#2710)

* Bug fixes pr 2.x (#2698)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Adding-cyphers-nginx-template (#2679)

* Fixing-when-statement (#2700)

* Fixing-when-statement

* Updating-LE-tasks

* Adding-from_json-for-systemd-timers

* Adding-from_json-for-systemd-timers-2

* Removin-from_json-for-systemd-timers

* Updating-pam_ldap-when-statements

* Updating-pam_ldap-when-statements-2

* Updated-Backup-validation-role

* Updated-trusted-entity-file-name

* Updated-event-patterns

* Dropped-default-aurora-retention-to-1

* Bug-fixes

* Moving-iam-policy

* Moving-iam-policy-2

* Updating-tasks

* Updating-tasks-2

* Updating-return-value

* Updating-file-names

* Updating-file-names-2

* Updating-file-names-3

* Updating-file-names-4

* Adding-debug

* Adding-debug-2

* Adding-debug-3

* Updating-source-for-iam

* Updating-source-for-iam

* Removing-handle-zip-for-lambda

* Updating-regex-search

* Updating-regex-search

* Updating-lambda-function-handling

* Updating-lambda-function-handling

* Updating-lambda-function-handling-2

* Updating-event-bridge-role-arn

* Updating-event-bridge-role-arn-2

* Moving-functions-to-gitlab

* Updating-event-pattern

* Updating-iam-role

* Updating-iam-role-2

* Updating-defaults

* Removing-files

* Adding-LE-vars-for-apache

---------

Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Greg Harvey <greg.harvey@gmail.com>

* Bug fixes pr 2.x (#2714)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Bug fixes pr 2.x (#2717)

* Fixing installer variable bug.

* Fixing tests for external PRs.

* Testing with a fork.

* Adding repo owner's username into installer string.

* Refactoring config repo detection to simplify.

* No longer permitted to use an integer as a truthy value.

* No longer permitted to use existence check as a truthy value.

* Can't see a reason why linotp var shouldn't be a boolean.

* No longer permitted to use existence check as a truthy value.

* Fixing truthy errors in ce_deploy role.

* No longer permitted to use an integer as a truthy value.

* Updating clamav command to use flock avoiding duplicate processes running.

* More truthy length fixes.

* Fixing more LDAP role truthy issues.

* Slight block refactor for LDAP.

* DN length check should not be negated.

* Forgot to add the length filter.

* Another boolean Ansible 12 error in AMI role.

* ALB port must be cast as a string for RedirectAction.

* Setting the correct Jinja filter, it's string, not str.

* Fixing more Ansible 12 length issues in autoscale role.

* Simplifying ASG role by refactoring into blocks.

* Further simplifying ASG CloudFront block.

* Scaling rules refactor needs work.

* Scaling policies list needs to be defined in case it is empty and we try to concatenate.

* Enhancing installer to accept an Ansible version and putting Ansible 12 back into GitHub Actions containers.

* Trying a different approach to defaulting the venv username.

* Removing default() filter from python_pip_packages role.

* Fixing up the ce_ansible role for Ansible 12.

* Removing unnecessary from_json filter from CloudFront acc ID lookup.

* Trying to fix AWS standalone builds.

* Fixing standalone EC2 playbooks.

* Adding hostname print out for debug.

* Adding back in the hostname check.

* Fixing AWS hostname variable in comparisons.

* Trying to find a hostname variation that meets all requirements.

* Adding both hostnames to ec2.yml.

* Fixing python venv vars.

* Bad var name in pip role.

* Ensuring Ansible version gets passed to ce-provision as well.

---------

Co-authored-by: drazenCE <140631110+drazenCE@users.noreply.github.com>
Co-authored-by: Matej Štajduhar <30931414+matej5@users.noreply.github.com>
Co-authored-by: Matej Stajduhar <matej.stajduhar@codeenigma.com>
Co-authored-by: Klaus Purer <klaus.purer@protonmail.ch>
Co-authored-by: nfawbert <62660788+nfawbert@users.noreply.github.com>
Co-authored-by: tymofiisobchenko <104431720+tymofiisobchenko@users.noreply.github.com>
Co-authored-by: Filip Rupic <123341158+filiprupic@users.noreply.github.com>
Co-authored-by: filip <filip.rupic@codeenigma.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tymofiisobchenko tymofiisobchenko tymofiisobchenko approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@filiprupic @tymofiisobchenko