summaryrefslogtreecommitdiffstats
path: root/common.yml
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2015-12-20 14:42:25 +0100
committerGuilhem Moulin <guilhem@fripost.org>2015-12-20 14:43:04 +0100
commite7acd4d1041ba63af521b2f8168ea305ebb913d1 (patch)
tree003b5fb4d3922e6073ffb2a2452c7802e62c9ed0 /common.yml
parent57b6f18675da62363c4c35a5d62f3a4e4a2cc69a (diff)
Copy and install Let's Encrypt ACME client.
Diffstat (limited to 'common.yml')
-rw-r--r--common.yml23
1 files changed, 23 insertions, 0 deletions
diff --git a/common.yml b/common.yml
index bd2f3db..d689e04 100644
--- a/common.yml
+++ b/common.yml
@@ -1,34 +1,57 @@
---
# XXX: This organization is unfortunate. As of Ansible 1.4, roles are
# applied playbook by playbook and not globally for the whole inventory;
# therefore if two playbooks are given the role 'common', the tasks
# defined in 'common' would be run twice.
# The quickfix to ensure that plays are role-disjoint is to create a
# separate play for each role. Of course the downside is that we loose
# (most of) the advantage of roles...
- name: Common tasks
hosts: all
roles:
- common
+- name: Base system
+ hosts: IMAP:MX:MSA:webmail:lists:wiki:git
+ gather_facts: False
+ tasks:
+ - name: Copy LetsEncrypt's ACME client
+ copy: src=deb/letsencrypt-tiny_0.1-1_all.deb
+ dest=/tmp
+ notify: Install LetsEncrypt's ACME client
+ - genkey
+ - name: Create a user 'letsencrypt'
+ user: name=letsencrypt system=yes
+ group=nogroup
+ createhome=no
+ home=/nonexistent
+ shell=/usr/sbin/nologin
+ password=!
+ state=present
+ handlers:
+ - name: Install LetsEncrypt's ACME client
+ apt: deb=/tmp/letsencrypt-tiny_0.1-1_all.deb
+ tags:
+ - letsencrypt
+
- name: Common SQL tasks
hosts: MDA:webmail:lists:bacula-dir
gather_facts: False
tags: mysql,sql
roles:
- common-SQL
- name: Common LDAP tasks
hosts: MDA:MSA:LDAP-provider:MX
gather_facts: True
tags: slapd,ldap
roles:
- common-LDAP
- name: Configure the LDAP provider
hosts: LDAP-provider
gather_facts: False
tags: slapd,ldap
roles:
- LDAP-provider