76 lines
2.1 KiB
YAML
76 lines
2.1 KiB
YAML
---
|
|
- name: Prepare dirs for rproxy
|
|
block:
|
|
- name: Remove rproxy dir
|
|
ansible.builtin.file:
|
|
path: "{{ rproxy_dir }}"
|
|
state: absent
|
|
|
|
- name: Create rproxy dir
|
|
ansible.builtin.file:
|
|
path: "{{ rproxy_dir }}"
|
|
state: directory
|
|
|
|
- name: Create rproxy data dir
|
|
ansible.builtin.file:
|
|
path: "{{ repo_data_dir }}"
|
|
state: directory
|
|
|
|
- name: Create sites dir
|
|
ansible.builtin.file:
|
|
path: "{{ rproxy_dir }}/sites"
|
|
state: directory
|
|
|
|
- name: Create certs dir
|
|
ansible.builtin.file:
|
|
path: "{{ rproxy_dir }}/certs"
|
|
state: directory
|
|
|
|
- name: Copy nginx.conf
|
|
ansible.builtin.copy:
|
|
src: files/nginx.conf
|
|
dest: "{{ rproxy_dir }}/nginx.conf"
|
|
|
|
- name: Install rproxy
|
|
block:
|
|
- name: Pull rproxy image
|
|
containers.podman.podman_image:
|
|
name: "{{ image_repo }}/{{ rproxy_image }}:{{ rproxy_version }}"
|
|
state: present
|
|
|
|
- name: Delete rproxy container if exists
|
|
containers.podman.podman_container:
|
|
name: rproxy
|
|
state: absent
|
|
|
|
- name: Start rproxy
|
|
containers.podman.podman_container:
|
|
name: rproxy
|
|
image: "{{ image_repo }}/{{ rproxy_image }}:{{ rproxy_version }}"
|
|
state: started
|
|
ports:
|
|
- "443:443"
|
|
- "80:80"
|
|
- "9000:9000"
|
|
volumes:
|
|
- '{{ rproxy_dir }}/nginx.conf:/etc/nginx/nginx.conf:z,rw'
|
|
- '{{ rproxy_dir }}/sites:/etc/nginx/sites:z,rw'
|
|
- '{{ rproxy_dir }}/certs:/etc/nginx/certs:z,rw'
|
|
- '{{ repo_data_dir }}:/repo:z,rw'
|
|
- "/etc/localtime:/etc/localtime:ro"
|
|
privileged: true
|
|
security_opt:
|
|
- "label=disable"
|
|
log_driver: journald
|
|
generate_systemd:
|
|
path: /etc/systemd/system/
|
|
restart_policy: always
|
|
stop_timeout: 120
|
|
names: true
|
|
|
|
- name: Enable rproxy service
|
|
ansible.builtin.systemd:
|
|
name: "container-rproxy.service"
|
|
state: started
|
|
enabled: yes
|
|
daemon_reload: yes |