ansible/roles/hedgedoc/tasks/main.yml

---

- name: Install packages
  apt:
    name:
    - docker-compose

- name: Create hedgedoc group
  group: name=hedgedoc

- name: Create hedgedoc user
  user:
    name: hedgedoc
    home: /opt/hedgedoc
    shell: /bin/bash
    group: hedgedoc
    groups: docker

- name: Configure hedgedoc container
  template: src=docker-compose.yml.j2 dest=/opt/hedgedoc/docker-compose.yml
  notify: Restart hedgedoc

- name: Ensure certificates are available
  command: openssl req -x509 -nodes -newkey rsa:2048 -keyout /etc/nginx/ssl/{{ hedgedoc_domain }}.key -out /etc/nginx/ssl/{{ hedgedoc_domain }}.crt -days 730 -subj "/CN={{ hedgedoc_domain }}" creates=/etc/nginx/ssl/{{ hedgedoc_domain }}.crt
  notify: Restart nginx

- name: Configure certificate manager for hedgedoc
  template: src=certs.j2 dest=/etc/acertmgr/{{ hedgedoc_domain }}.conf
  notify: Run acertmgr

- name: Configure vhost
  template: src=vhost.j2 dest=/etc/nginx/sites-available/hedgedoc
  notify: Restart nginx

- name: Enable vhost
  file: src=/etc/nginx/sites-available/hedgedoc dest=/etc/nginx/sites-enabled/hedgedoc state=link
  notify: Restart nginx

- name: Systemd unit for hedgedoc
  template: src=hedgedoc.service.j2 dest=/etc/systemd/system/hedgedoc.service
  notify:
  - Reload systemd
  - Restart hedgedoc

- name: Start the hedgedoc service
  service: name=hedgedoc state=started enabled=yes

- name: Enable monitoring
  include_role: name=icinga-monitor tasks_from=http
  vars:
    vhost: "{{ hedgedoc_domain }}"
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00			`---`

			`- name: Install packages`
hackmd: use list instead of with_items 2020-11-13 18:29:32 +01:00			`apt:`
			`name:`
hackmd: use docker instead of native setup 2022-09-02 21:11:04 +02:00			`- docker-compose`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00
hackmd: use docker instead of native setup 2022-09-02 21:11:04 +02:00			`- name: Create hedgedoc group`
			`group: name=hedgedoc`
hackmd: fix owner, persistent upload path, allow anon edits 2018-10-15 18:46:34 +02:00
hackmd: use docker instead of native setup 2022-09-02 21:11:04 +02:00			`- name: Create hedgedoc user`
			`user:`
			`name: hedgedoc`
			`home: /opt/hedgedoc`
			`shell: /bin/bash`
			`group: hedgedoc`
			`groups: docker`
hackmd: update and fix uploads folder link creation 2019-09-06 16:17:34 +02:00
hackmd: use docker instead of native setup 2022-09-02 21:11:04 +02:00			`- name: Configure hedgedoc container`
			`template: src=docker-compose.yml.j2 dest=/opt/hedgedoc/docker-compose.yml`
hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`notify: Restart hedgedoc`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00
			`- name: Ensure certificates are available`
hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`command: openssl req -x509 -nodes -newkey rsa:2048 -keyout /etc/nginx/ssl/{{ hedgedoc_domain }}.key -out /etc/nginx/ssl/{{ hedgedoc_domain }}.crt -days 730 -subj "/CN={{ hedgedoc_domain }}" creates=/etc/nginx/ssl/{{ hedgedoc_domain }}.crt`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00			`notify: Restart nginx`

hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`- name: Configure certificate manager for hedgedoc`
			`template: src=certs.j2 dest=/etc/acertmgr/{{ hedgedoc_domain }}.conf`
acertmgr: rename from certmgr, run on config change 2019-02-23 23:54:24 +01:00			`notify: Run acertmgr`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00
			`- name: Configure vhost`
hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`template: src=vhost.j2 dest=/etc/nginx/sites-available/hedgedoc`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00			`notify: Restart nginx`

			`- name: Enable vhost`
hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`file: src=/etc/nginx/sites-available/hedgedoc dest=/etc/nginx/sites-enabled/hedgedoc state=link`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00			`notify: Restart nginx`

hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`- name: Systemd unit for hedgedoc`
			`template: src=hedgedoc.service.j2 dest=/etc/systemd/system/hedgedoc.service`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00			`notify:`
			`- Reload systemd`
hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`- Restart hedgedoc`
hackmd: new role (not finished yet) 2018-04-09 21:28:36 +02:00
hackmd: rename vars to hedgedoc and bump version to 1.8.2 2021-05-13 16:19:43 +02:00			`- name: Start the hedgedoc service`
			`service: name=hedgedoc state=started enabled=yes`
hackmd: enable monitoring via icinga 2022-06-06 20:35:14 +02:00
			`- name: Enable monitoring`
			`include_role: name=icinga-monitor tasks_from=http`
			`vars:`
			`vhost: "{{ hedgedoc_domain }}"`