mirror of
https://pagure.io/fedora-infra/ansible.git
synced 2026-03-20 12:07:34 +08:00
102 lines
2.3 KiB
YAML
102 lines
2.3 KiB
YAML
- name: Add java-deptools copr repo
|
|
copy: src=copr-repo.repo dest=/etc/yum.repos.d/java-deptools-copr.repo
|
|
tags:
|
|
- repos
|
|
|
|
- name: Install packages
|
|
package: name={{ item }} state=present
|
|
with_items:
|
|
- httpd
|
|
- mod_ssl
|
|
- postgresql-server
|
|
- postgresql
|
|
- java-deptools
|
|
- python2-psycopg2 # for ansible
|
|
- libsemanage-python # for ansible
|
|
- dailyjobs # for cron.daily
|
|
- screen # for running initial repogen
|
|
tags:
|
|
- packages
|
|
|
|
- name: Initialize postgres if necessary
|
|
command: postgresql-setup --initdb
|
|
args:
|
|
creates: /var/lib/pgsql/data/base
|
|
environment:
|
|
PGSETUP_INITDB_OPTIONS: --locale C
|
|
tags:
|
|
- postgres
|
|
|
|
- name: Install pg_hba
|
|
copy: src=pg_hba.conf dest=/var/lib/pgsql/data/pg_hba.conf
|
|
tags:
|
|
- postgres
|
|
- config
|
|
|
|
- name: Enable and start postgres
|
|
service: name=postgresql state=started enabled=yes
|
|
tags:
|
|
- service
|
|
- postgres
|
|
|
|
- name: Create postgres java-deptools role
|
|
postgresql_user: name=java-deptools role_attr_flags=SUPERUSER,LOGIN
|
|
become: yes
|
|
become_user: postgres
|
|
tags:
|
|
- postgres
|
|
|
|
- name: Create database
|
|
postgresql_db: name=java-deptools owner=java-deptools
|
|
become: yes
|
|
become_user: postgres
|
|
tags:
|
|
- postgres
|
|
|
|
- name: Create schema
|
|
shell: >
|
|
psql java-deptools java-deptools < /usr/share/java-deptools/schema.sql
|
|
&& touch /var/lib/pgsql/data/schema.done
|
|
args:
|
|
creates: /var/lib/pgsql/data/schema.done
|
|
become: yes
|
|
become_user: postgres
|
|
tags:
|
|
- postgres
|
|
|
|
- name: Install repo-regen cronjob
|
|
copy: src=cron dest=/etc/cron.daily/java-deptools mode=0755
|
|
tags:
|
|
- config
|
|
|
|
- name: Enable and start frontend
|
|
service: name=java-deptools-frontend state=started enabled=true
|
|
tags:
|
|
- service
|
|
|
|
- name: Obtain letsencrypt certificate
|
|
shell: certbot certonly -n --standalone --agree-tos -m sysadmin-koschei-members@fedoraproject.org -d {{ inventory_hostname }}
|
|
args:
|
|
creates: /etc/letsencrypt/live/{{ inventory_hostname }}/fullchain.pem
|
|
tags:
|
|
- config
|
|
|
|
- name: Install proxy config
|
|
copy: src=proxy.conf dest=/etc/httpd/conf.d/java-deptools-proxy.conf
|
|
notify:
|
|
- restart apache
|
|
tags:
|
|
- config
|
|
|
|
- name: Set httpd sebools
|
|
seboolean: name={{ item }} state=yes persistent=yes
|
|
with_items:
|
|
- httpd_can_network_relay
|
|
tags:
|
|
- selinux
|
|
|
|
- name: Enable and start httpd
|
|
service: name=httpd state=started enabled=true
|
|
tags:
|
|
- service
|