42 lines
1.1 KiB
YAML
Executable File
42 lines
1.1 KiB
YAML
Executable File
# Ansible managed
|
|
|
|
- hosts: {{ proxy_server_hostname }}
|
|
become: 'yes'
|
|
vars:
|
|
ansible_become_method: doas
|
|
tasks:
|
|
- name: Temporarily disable doas pass prompt as doas persist does not work within scripts
|
|
replace:
|
|
path: /etc/doas.conf
|
|
regexp: 'persist'
|
|
replace: 'nopass'
|
|
|
|
- name: Copy haproxy reverse proxy configuration to proxy
|
|
ansible.builtin.template:
|
|
src: "proxy_resources/etc/haproxy/haproxy.cfg"
|
|
dest: "/etc/haproxy/haproxy.cfg"
|
|
owner: cspark-dev
|
|
group: cspark-dev
|
|
- name: Enable HAProxy
|
|
ansible.builtin.systemd:
|
|
name: haproxy
|
|
state: started
|
|
|
|
- name: Fetch SSL certificates
|
|
become: yes
|
|
synchronize:
|
|
src: /etc/letsencrypt/
|
|
dest: "data/certbot/certs"
|
|
mode: pull
|
|
rsync_path: doas rsync
|
|
|
|
- name: Switch back to doas persist
|
|
replace:
|
|
path: /etc/doas.conf
|
|
regexp: 'nopass'
|
|
replace: 'persist'
|
|
|
|
- name: Debug Finish message
|
|
debug:
|
|
msg: Ansible playbook has finished!
|