ansible-edda/playbooks/roles/services/deploy/rproxy/tasks/main.yml

72 lines
2.8 KiB
YAML
Raw Normal View History

2022-12-18 23:43:40 +01:00
---
2023-07-17 22:31:05 +02:00
- name: "{{ services_service_name }} : set the user variables"
2022-12-16 21:49:50 +01:00
ansible.builtin.import_role:
2022-12-18 19:36:21 +01:00
name: "services/include"
2022-12-16 21:49:50 +01:00
vars_from: "user"
- block:
2023-07-17 22:31:05 +02:00
- name: "{{ services_service_name }} : create nginx conf.d"
2022-12-16 21:49:50 +01:00
ansible.builtin.file:
path: "{{ services_service_user_home }}/.config/service/nginx-conf.d"
2022-12-16 21:49:50 +01:00
state: "directory"
mode: 0755
2023-07-17 22:31:05 +02:00
- name: "{{ services_service_name }} : generic nginx reverse proxy configuration"
2022-12-16 21:49:50 +01:00
ansible.builtin.copy:
2023-07-17 22:31:05 +02:00
src: "./config/nginx.conf"
dest: "{{ services_service_user_home }}/.config/service/nginx.conf"
2022-12-16 21:49:50 +01:00
mode: 0644
2023-07-17 22:31:05 +02:00
register: services_deploy_rproxy_generic_config
- name: "{{ services_service_name }} : stream nginx reverse proxy configuration"
2023-08-17 17:09:30 +02:00
ansible.builtin.template:
2023-07-17 22:31:05 +02:00
src: "{{ services_deploy_rproxy_nginx_stream_config }}"
dest: "{{ services_service_user_home }}/.config/service/stream.conf"
2023-07-17 22:31:05 +02:00
mode: 0644
register: services_deploy_rproxy_stream_config
- name: "{{ services_service_name }} : subdomain nginx reverse proxy configuration"
2023-08-17 17:09:30 +02:00
ansible.builtin.template:
2023-07-17 22:31:05 +02:00
src: "{{ item }}"
dest: "{{ services_service_user_home }}/.config/service/nginx-conf.d/{{ item | basename }}"
2023-07-17 22:31:05 +02:00
mode: 0644
loop: "{{ services_deploy_rproxy_nginx_subdomain_config_files }}"
register: services_deploy_rproxy_subdomain_config_files
2022-12-16 21:49:50 +01:00
2023-11-10 11:19:08 +01:00
- name: "{{ services_service_name }} : certbot crontab"
ansible.builtin.copy:
src: "./crontabs/root"
dest: "{{ services_service_user_home }}/.config/service/crontabs-root"
mode: 0600
register: services_deploy_rproxy_crontabs_root
2023-07-17 22:31:05 +02:00
- name: "{{ services_service_name }} : generate diffie hellman ephemeral parameters"
2022-12-18 23:43:40 +01:00
ansible.builtin.command: >-
openssl dhparam --out /{{ services_service_user_home }}/.config/service/dhparam.pem 4096
2022-12-16 21:49:50 +01:00
args:
creates: "{{ services_service_user_home }}/.config/service/dhparam.pem"
2022-12-16 21:49:50 +01:00
register: services_deploy_rproxy_dhparam
2023-11-11 21:54:08 +01:00
- name: "{{ services_service_name }} : configure hosts file"
ansible.builtin.template:
src: "./hosts"
dest: "{{ services_service_user_home }}/.config/service/hosts"
mode: 0644
register: services_deploy_rproxy_hosts_file
2022-12-16 21:49:50 +01:00
become_user: "{{ services_service_user_name }}"
2023-11-11 21:54:08 +01:00
- name: "{{ services_service_name }} : configure systemd service"
ansible.builtin.include_role:
name: "services/deploy/pod"
vars:
services_deploy_pod_needs_restart: "{{
services_deploy_rproxy_generic_config.changed or
services_deploy_rproxy_stream_config.changed or
services_deploy_rproxy_subdomain_config_files.changed or
services_deploy_rproxy_crontabs_root.changed or
services_deploy_rproxy_dhparam.changed or
services_deploy_rproxy_hosts_file.changed
}}"