evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 33 Wiki Activity

Adding handlers

Browse source
This commit is contained in:
Mathieu Gauthier-Pilote 2024-04-03 16:03:52 -04:00
parent c34fe9a477
commit 7b74e320c9
3 changed files with 73 additions and 39 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

36
webapps/jitsimeet/handlers/main.yml
View file

@ -1,2 +1,38 @@
---
# handlers file
- name: reload nginx
ansible.builtin.systemd:
name: nginx
state: reloaded
- name: restart nginx
ansible.builtin.systemd:
name: nginx
state: restarted
- name: restart jvb
ansible.builtin.systemd:
name: jitsi-videobridge2
state: restarted
- name: restart prosody
ansible.builtin.systemd:
name: prosody
state: restarted
- name: restart jicofo
ansible.builtin.systemd:
name: jicofo
state: restarted
- name: restart coturn
ansible.builtin.systemd:
name: coturn
state: restarted
- name: restart jitsimeet_all
loop: "{{ jitsimeet_all.results | selectattr('changed', 'equalto', true) | map(attribute='item') | map(attribute='name') | list }}"
systemd:
name: '{{ item }}'
state: restarted

59
webapps/jitsimeet/tasks/main.yml
View file

@ -70,14 +70,17 @@
group: "{{ item.group }}"
mode: "{{ item.mode }}"
loop:
- { src: 'videobridge/jvb.conf.j2', dest: "/etc/jitsi/videobridge/jvb.conf", owner: "jvb", group: "jitsi", mode: "0640" }
- { src: 'videobridge/sip-communicator.properties.j2', dest: "/etc/jitsi/videobridge/sip-communicator.properties", owner: "jvb", group: "jitsi", mode: "0640" }
- { src: 'meet/config.js.j2', dest: "/etc/jitsi/meet/{{ jitsimeet_domains | first }}-config.js", owner: "root", group: "root", mode: "0644" }
- { src: 'meet/interface_config.js.j2', dest: "/etc/jitsi/meet/{{ jitsimeet_domains | first }}-interface_config.js", owner: "root", group: "root", mode: "0644" }
- { src: 'meet/welcomePageAdditionalContent.html.j2', dest: "/etc/jitsi/meet/welcomePageAdditionalContent.html", owner: "root", group: "root", mode: "0644" }
- { src: 'prosody/virtualhost.cfg.lua.j2', dest: "/etc/prosody/conf.avail/{{ jitsimeet_domains | first }}.cfg.lua", owner: "root", group: "root", mode: "0644" }
- { src: 'coturn/turnserver.conf.j2', dest: "/etc/turnserver.conf", owner: "root", group: "turnserver", mode: "0640" }
- { src: 'certbot/coturn-certbot-deploy.sh.j2', dest: "/etc/letsencrypt/renewal-hooks/deploy/coturn-certbot-deploy.sh", owner: "root", group: "root", mode: "0700" }
- { name: jitsi-videobridge2, src: 'videobridge/jvb.conf.j2', dest: "/etc/jitsi/videobridge/jvb.conf", owner: "jvb", group: "jitsi", mode: "0640" }
- { name: jitsi-videobridge2, src: 'videobridge/sip-communicator.properties.j2', dest: "/etc/jitsi/videobridge/sip-communicator.properties", owner: "jvb", group: "jitsi", mode: "0640" }
- { name: nginx, src: 'meet/config.js.j2', dest: "/etc/jitsi/meet/{{ jitsimeet_domains | first }}-config.js", owner: "root", group: "root", mode: "0644" }
- { name: nginx, src: 'meet/interface_config.js.j2', dest: "/etc/jitsi/meet/{{ jitsimeet_domains | first }}-interface_config.js", owner: "root", group: "root", mode: "0644" }
- { name: nginx, src: 'meet/welcomePageAdditionalContent.html.j2', dest: "/etc/jitsi/meet/welcomePageAdditionalContent.html", owner: "root", group: "root", mode: "0644" }
- { name: prosody, src: 'prosody/virtualhost.cfg.lua.j2', dest: "/etc/prosody/conf.avail/{{ jitsimeet_domains | first }}.cfg.lua", owner: "root", group: "root", mode: "0644" }
- { name: coturn, src: 'coturn/turnserver.conf.j2', dest: "/etc/turnserver.conf", owner: "root", group: "turnserver", mode: "0640" }
- { name: nginx, src: 'certbot/coturn-certbot-deploy.sh.j2', dest: "/etc/letsencrypt/renewal-hooks/deploy/coturn-certbot-deploy.sh", owner: "root", group: "root", mode: "0700" }
register: jitsimeet_all
notify:
- restart jitsimeet_all
- name: Add bloc to jicofo.conf to disable sctp
ansible.builtin.blockinfile:
@ -88,29 +91,24 @@
sctp: {
enabled: false
}
notify: restart jicofo
- name: Unregister default jvb account in prosody
ansible.builtin.command:
cmd: prosodyctl unregister jvb auth.{{ jitsimeet_domains | first }}
notify:
- restart prosody
- restart jicofo
- name: Register jvb account in prosody (with proper secret)
ansible.builtin.command:
cmd: prosodyctl register jvb auth.{{ jitsimeet_domains | first }} {{ jitsimeet_jvb_secret }}
notify:
- restart prosody
- restart jicofo
- name: Restart prosody
ansible.builtin.systemd:
name: prosody
state: restarted
- name: Restart jvb
ansible.builtin.systemd:
name: jitsi-videobridge2
state: restarted
- name: Restart jicofo
ansible.builtin.systemd:
name: jicofo
state: restarted
- name: Flush handlers
ansible.builtin.meta: flush_handlers
- name: Check if SSL certificate is present and register result
ansible.builtin.stat:
@ -123,15 +121,15 @@
ansible.builtin.template:
src: "nginx/vhost.conf.j2"
dest: "/etc/nginx/sites-available/{{ jitsimeet_domains |first }}.conf"
notify: reload nginx
- name: Enable temporary nginx vhost
ansible.builtin.file:
src: "/etc/nginx/sites-available/{{ jitsimeet_domains |first }}.conf"
dest: "/etc/nginx/sites-enabled/{{ jitsimeet_domains |first }}.conf"
state: link
- name: Reload nginx conf
ansible.builtin.systemd:
name: nginx
state: reloaded
notify: reload nginx
- name: Flush handlers
ansible.builtin.meta: flush_handlers
- name: Make sure /var/lib/letsencrypt exists and has correct permissions
ansible.builtin.file:
path: /var/lib/letsencrypt
@ -154,23 +152,24 @@
loop:
- { src: 'nginx/vhost.conf.j2', dest: "/etc/nginx/sites-available/{{ jitsimeet_domains |first }}.conf" }
- { src: 'nginx/multiplex.conf.j2', dest: '/etc/nginx/modules-available/multiplex.conf' }
notify: reload nginx
- name: Enable multiplex module conf
ansible.builtin.file:
src: '/etc/nginx/modules-available/multiplex.conf'
dest: '/etc/nginx/modules-enabled/multiplex.conf'
state: link
notify: restart nginx
- name: Enable nginx vhost
ansible.builtin.file:
src: "/etc/nginx/sites-available/{{ jitsimeet_domains |first }}.conf"
dest: "/etc/nginx/sites-enabled/{{ jitsimeet_domains |first }}.conf"
state: link
notify: reload nginx
- name: Reload nginx conf
ansible.builtin.systemd:
name: nginx
state: reloaded
- name: Flush handlers
ansible.builtin.meta: flush_handlers
- name: Check if SSL certificate for coturn is present and register result
ansible.builtin.stat:

17
webapps/jitsimeet/tasks/other_domains.yml
View file

@ -11,6 +11,7 @@
loop:
- { src: 'meet/config.js.j2', dest: "/etc/jitsi/meet/{{ domain }}-config.js", owner: "root", group: "root", mode: "0644" }
- { src: 'meet/interface_config.js.j2', dest: "/etc/jitsi/meet/{{ domain }}-interface_config.js", owner: "root", group: "root", mode: "0644" }
notify: reload nginx
- name: Check if SSL certificate is present and register result
ansible.builtin.stat:
@ -23,15 +24,15 @@
ansible.builtin.template:
src: "nginx/other.vhost.conf.j2"
dest: "/etc/nginx/sites-available/{{ domain }}.conf"
notify: reload nginx
- name: Enable temporary nginx vhost
ansible.builtin.file:
src: "/etc/nginx/sites-available/{{ domain }}.conf"
dest: "/etc/nginx/sites-enabled/{{ domain }}.conf"
state: link
- name: Reload nginx conf
ansible.builtin.systemd:
name: nginx
state: reloaded
notify: reload nginx
- name: Flush handlers
ansible.builtin.meta: flush_handlers
- name: Make sure /var/lib/letsencrypt exists and has correct permissions
ansible.builtin.file:
path: /var/lib/letsencrypt
@ -53,20 +54,18 @@
dest: "{{ item.dest }}"
loop:
- { src: 'nginx/other.vhost.conf.j2', dest: "/etc/nginx/sites-available/{{ domain }}.conf" }
notify: reload nginx
- name: Insert block in multiplex.conf
ansible.builtin.lineinfile:
path: /etc/nginx/modules-enabled/multiplex.conf
insertafter: "web_backend;"
line: "{{ domain }} web_backend;"
notify: reload nginx
- name: Enable nginx vhost
ansible.builtin.file:
src: "/etc/nginx/sites-available/{{ domain }}.conf"
dest: "/etc/nginx/sites-enabled/{{ domain }}.conf"
state: link
- name: Reload nginx conf
ansible.builtin.systemd:
name: nginx
state: reloaded
notify: reload nginx