homeserver/roles/mgrote_rsync/tasks/source.yml

---
- name: Ensure needed dirs exist
  become: true
  ansible.builtin.file:
    path: "{{ item }}"
    state: directory
    owner: "{{ rsync_mirror_user }}"
    group: "{{ rsync_mirror_user_group }}"
    mode: "0700"
  with_items:
    - "/etc/rsync_mirror/"
    - "/etc/rsync_mirror/.ssh"
    - "/home/{{ rsync_mirror_user }}/.ssh"

- name: Ensure SSH-Private-Key is templated
  become: true
  ansible.builtin.template:
    src: private_key.j2
    dest: "/etc/rsync_mirror/.ssh/id_rsync_mirror"
    owner: "{{ rsync_mirror_user }}"
    group: "{{ rsync_mirror_user_group }}"
    mode: "0400"
  # no_log: true # tido

- name: Ensure SSH-Config is templated
  become: true
  ansible.builtin.template:
    src: ssh-config.j2
    dest: "/home/rsync_mirror/.ssh/config"
    owner: "{{ rsync_mirror_user }}"
    group: "{{ rsync_mirror_user_group }}"
    mode: "0400"

- name: Ensure rsync_mirror-Script is templated
  become: true
  ansible.builtin.template:
    src: "rsync_mirror.sh.j2"
    dest: "/usr/bin/rsync_mirror.sh"
    owner: root
    group: root
    mode: "0750"

- name: Ensure services are present
  become: true
  ansible.builtin.template:
    src: "{{ item }}.j2"
    dest: "/etc/systemd/system/{{ item }}"
    owner: root
    group: root
    mode: "0644"
  notify:
    - systemctl daemon-reload
  loop:
    - rsync_mirror.service
    - rsync_mirror.timer
    - rsync_mirror_mail.service

- name: Ensure timer unit is enabled
  become: true
  ansible.builtin.systemd:
    name: rsync_mirror.timer
    enabled: true
    masked: false
    state: started
  notify:
    - systemctl daemon-reload

- name: Ensure service units are enabled
  become: true
  ansible.builtin.systemd:
    name: "{{ item }}"
    masked: true  # todo umkehren
    enabled: false # todo umkehren
  loop:
    - rsync_mirror.service
    - rsync_mirror.timer
    - rsync_mirror_mail.service
dfgd 2024-10-28 18:17:23 +01:00			`---`
sdfgds 2024-10-28 18:24:29 +01:00			`- name: Ensure needed dirs exist`
dfgd 2024-10-28 18:17:23 +01:00			`become: true`
sdfgds 2024-10-28 18:24:29 +01:00			`ansible.builtin.file:`
			`path: "{{ item }}"`
			`state: directory`
dsfg 2024-10-28 18:27:43 +01:00			`owner: "{{ rsync_mirror_user }}"`
			`group: "{{ rsync_mirror_user_group }}"`
sdfs 2024-10-28 19:24:24 +01:00			`mode: "0700"`
sdfgds 2024-10-28 18:24:29 +01:00			`with_items:`
			`- "/etc/rsync_mirror/"`
			`- "/etc/rsync_mirror/.ssh"`
dfg 2024-10-28 19:20:07 +01:00			`- "/home/{{ rsync_mirror_user }}/.ssh"`
sdfgds 2024-10-28 18:24:29 +01:00
dfg 2024-10-28 18:32:18 +01:00			`- name: Ensure SSH-Private-Key is templated`
sdfgds 2024-10-28 18:24:29 +01:00			`become: true`
			`ansible.builtin.template:`
dfg 2024-10-28 18:32:18 +01:00			`src: private_key.j2`
			`dest: "/etc/rsync_mirror/.ssh/id_rsync_mirror"`
			`owner: "{{ rsync_mirror_user }}"`
			`group: "{{ rsync_mirror_user_group }}"`
			`mode: "0400"`
dsfgd 2024-10-28 19:02:17 +01:00			`# no_log: true # tido`
dfg 2024-10-28 18:32:18 +01:00
fdgh 2024-10-28 19:18:20 +01:00			`- name: Ensure SSH-Config is templated`
			`become: true`
			`ansible.builtin.template:`
			`src: ssh-config.j2`
			`dest: "/home/rsync_mirror/.ssh/config"`
			`owner: "{{ rsync_mirror_user }}"`
			`group: "{{ rsync_mirror_user_group }}"`
			`mode: "0400"`

dfg 2024-10-28 18:32:18 +01:00			`- name: Ensure rsync_mirror-Script is templated`
			`become: true`
			`ansible.builtin.template:`
			`src: "rsync_mirror.sh.j2"`
			`dest: "/usr/bin/rsync_mirror.sh"`
sdfgds 2024-10-28 18:24:29 +01:00			`owner: root`
			`group: root`
dfg 2024-10-28 18:32:18 +01:00			`mode: "0750"`
sdfgds 2024-10-28 18:24:29 +01:00
			`- name: Ensure services are present`
			`become: true`
			`ansible.builtin.template:`
			`src: "{{ item }}.j2"`
			`dest: "/etc/systemd/system/{{ item }}"`
			`owner: root`
			`group: root`
			`mode: "0644"`
			`notify:`
			`- systemctl daemon-reload`
			`loop:`
dsfg 2024-10-28 18:27:43 +01:00			`- rsync_mirror.service`
			`- rsync_mirror.timer`
			`- rsync_mirror_mail.service`
sdfgds 2024-10-28 18:24:29 +01:00
			`- name: Ensure timer unit is enabled`
			`become: true`
			`ansible.builtin.systemd:`
dsfg 2024-10-28 18:27:43 +01:00			`name: rsync_mirror.timer`
sdfgds 2024-10-28 18:24:29 +01:00			`enabled: true`
			`masked: false`
			`state: started`
			`notify:`
			`- systemctl daemon-reload`

			`- name: Ensure service units are enabled`
			`become: true`
			`ansible.builtin.systemd:`
			`name: "{{ item }}"`
dsfg 2024-10-28 19:19:27 +01:00			`masked: true # todo umkehren`
			`enabled: false # todo umkehren`
sdfgds 2024-10-28 18:24:29 +01:00			`loop:`
dsfg 2024-10-28 18:27:43 +01:00			`- rsync_mirror.service`
			`- rsync_mirror.timer`
			`- rsync_mirror_mail.service`