Host-Ansible-Setup/server-zfs-setup.yml

- hosts: localhost
  become: 'yes'
  tasks:
    - name: Create spool1 if it does not exist
      command: zpool create spool1 -O compression=lz4 -o ashift=12 creates=/spool1 mirror /dev/disk/by-id/ata-ST2000VX008-2E3164_Z52BETNW /dev/disk/by-id/ata-ST2000VX008-2E3164_Z52BF5FD
    - name: Create spool2 if it does not exist
      command: zpool create spool2 -O compression=lz4 -o ashift=12 creates=/spool2 /dev/disk/by-id/ata-ST4000VX013-2XG104_WFN5V6JE
    - name: Create new encrypted filesystem on spool1 - secret
      community.general.zfs:
        name: spool1/secret
        state: present
        extra_zfs_properties:
          casesensitivity: 'mixed'
          xattr: 'sa'
          encryption: 'on'
          keyformat: 'raw'
          keylocation: 'file://{{usbkey_keysdir}}/spool1_secret'
          sharesmb: 'on'
          quota: '250Gb'
    - name: Create new encrypted filesystem on spool1 - services
      community.general.zfs:
        name: spool1/services
        state: present
        extra_zfs_properties:
          casesensitivity: 'mixed'
          xattr: 'sa'
          encryption: 'on'
          keyformat: 'raw'
          keylocation: 'file://{{usbkey_keysdir}}/spool1_services'
          quota: '500Gb'
    - name: Create new encrypted filesystem on spool1 - nextcloud
      community.general.zfs:
        name: spool1/nextcloud
        state: present
        extra_zfs_properties:
          casesensitivity: 'mixed'
          xattr: 'sa'
          encryption: 'on'
          keyformat: 'raw'
          keylocation: 'file://{{usbkey_keysdir}}/spool1_nextcloud'
          quota: '1Tb'
    - name: Create new encrypted filesystem encompassing all of spool2
      ignore_errors: true
      community.general.zfs:
        name: spool2/secret
        state: present
        extra_zfs_properties:
          casesensitivity: 'mixed'
          xattr: 'sa'
          encryption: 'on'
          keyformat: 'raw'
          keylocation: 'file://{{usbkey_keysdir}}/spool2_secret'
          sharesmb: 'on'
    - name: Debug Finish message
      debug:
        msg: Ansible playbook has finished!

# Left to Right Configuration
# lrwxrwxrwx 1 root root   9 Apr 29 05:01 /dev/disk/by-id/ata-ST4000VX013-2XG104_WFN5V6JE -> ../../sdb
# lrwxrwxrwx 1 root root   9 Apr 29 05:01 /dev/disk/by-id/ata-ST2000VX008-2E3164_Z52BETNW -> ../../sdc
# lrwxrwxrwx 1 root root   9 Apr 29 05:01 /dev/disk/by-id/ata-ST2000VX008-2E3164_Z52BF5FD -> ../../sdd
# lrwxrwxrwx 1 root root   9 Apr 29 05:01 ata-WDC_WD5000AAKX-08U6AA0_WD-WCC2EE4D3K01 -> ../../sda