kevinveenbirkenbach/computer-playbook

Fork 0

mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-08-27 05:55:15 +02:00

History

Kevin Veen-Birkenbach 2569abc0be

Refactor systemctl services and timers

- Unified service templates into generic systemctl templates
- Introduced reusable filter plugins for script path handling
- Updated path variables and service/timer definitions
- Migrated roles (backup, cleanup, repair, etc.) to use systemctl role
- Added sys-daemon role for core systemd cleanup
- Simplified timer handling via sys-timer role

Note: This is a large refactor and some errors may still exist. Further testing and adjustments will be needed.

2025-08-18 21:22:16 +02:00

files

Refactor systemctl services and timers

2025-08-18 21:22:16 +02:00

handlers

Refactor systemctl services and timers

2025-08-18 21:22:16 +02:00

README.md

Health CSP Crawler

Description

This Ansible role automates the validation of Content Security Policy (CSP) enforcement for all configured domains by crawling them using a CSP Checker.

Overview

Designed for Archlinux systems, this role periodically checks whether web resources (JavaScript, fonts, images, etc.) are blocked by CSP headers. It integrates Python and Node.js tooling and installs a systemd service with timer support.

Features

CSP Resource Validation: Uses Puppeteer to simulate browser requests and detect blocked resources.
Domain Extraction: Parses all .conf files in the NGINX config folder to determine the list of domains to check.
Automated Execution: Registers a systemd service and timer for recurring health checks.
Error Notification: Integrates with sys-ctl-alm-compose for alerting on failure.

License

Infinito.Nexus NonCommercial License https://s.infinito.nexus/license

Author

Kevin Veen-Birkenbach Consulting & Coaching Solutions https://www.veen.world