a5e4359d0e
All checks were successful
Ansible Lint |Total|New|Outstanding|Fixed|Trend
|:-:|:-:|:-:|:-:|:-:
|2636|7|2629|6|:-1:
Reference build: <a href="https://jenkins.evolix.org/job/gitea/job/ansible-roles/job/unstable/394//ansiblelint">Evolix » ansible-roles » unstable #394</a>
gitea/ansible-roles/pipeline/head This commit looks good
51 lines
1.1 KiB
YAML
51 lines
1.1 KiB
YAML
---
|
|
- name: Copy SSL certificate
|
|
ansible.builtin.copy:
|
|
src: "ssl/{{ ssl_cert }}.pem"
|
|
dest: "/etc/ssl/certs/{{ ssl_cert }}.pem"
|
|
mode: "0644"
|
|
register: ssl_copy_cert
|
|
tags:
|
|
- ssl
|
|
|
|
- name: Copy SSL key
|
|
ansible.builtin.copy:
|
|
src: "ssl/{{ ssl_cert }}.key"
|
|
dest: "/etc/ssl/private/{{ ssl_cert }}.key"
|
|
mode: "0640"
|
|
owner: root
|
|
group: ssl-cert
|
|
register: ssl_copy_key
|
|
tags:
|
|
- ssl
|
|
|
|
- name: Copy SSL dhparam
|
|
ansible.builtin.copy:
|
|
src: "ssl/{{ ssl_cert }}.dhp"
|
|
dest: "/etc/ssl/certs/{{ ssl_cert }}.dhp"
|
|
mode: "0644"
|
|
register: ssl_copy_dhp
|
|
tags:
|
|
- ssl
|
|
|
|
- name: Check if Haproxy is installed
|
|
ansible.builtin.shell:
|
|
cmd: "set -o pipefail && dpkg -l haproxy 2>/dev/null | grep -q -E '^(i|h)i'"
|
|
executable: /bin/bash
|
|
register: haproxy_check
|
|
check_mode: no
|
|
changed_when: False
|
|
failed_when: False
|
|
tags:
|
|
- ssl
|
|
|
|
- name: Collect facts about system services
|
|
service_facts:
|
|
|
|
- ansible.builtin.include: haproxy.yml
|
|
when:
|
|
- haproxy_check.rc == 0
|
|
- ansible_facts.services['haproxy.service']['state'] == "running"
|
|
- ansible_facts.services['haproxy.service']['status'] == "enabled"
|
|
|