ansible/roles/prosody/tasks/main.yml

---

- name: Install prosody
  apt:
    name:
    - prosody
    - libsasl2-modules-ldap
    - lua-cyrussasl
    - sasl2-bin

- name: Ensure certificates are available
  command: openssl req -x509 -nodes -newkey rsa:2048 -keyout /etc/prosody/certs/{{ prosody_domain }}.key -out /etc/prosody/certs/{{ prosody_domain }}.crt -days 730 -subj "/CN={{ prosody_domain }}" creates=/etc/prosody/certs/{{ prosody_domain }}.crt

- name: Ensure prosody is in sasl group
  user: name=prosody groups=sasl

- name: Ensure sasl configuration directory exists
  file: path=/etc/sasl/ state=directory

- name: Configure sasl
  copy: src={{ item }} dest=/etc/{{ item }}
  with_items:
  - default/saslauthd
  - sasl/xmpp.conf

- name: Configure sasl
  template: src=saslauthd.conf.j2 dest=/etc/saslauthd.conf
  notify: Restart saslauthd

- name: Configure prosody
  template: src=prosody.cfg.lua.j2 dest=/etc/prosody/prosody.cfg.lua
  notify: Restart prosody

- name: Configure certificate manager
  template: src=certs.j2 dest=/etc/acertmgr/{{ prosody_domain }}_prosody.conf
  notify: Run acertmgr

- name: Start saslauthd
  service: name=saslauthd state=started enabled=yes

- name: Start prosody
  service: name=prosody state=started enabled=yes
Add prosody role. 2016-02-11 16:15:38 +01:00			`---`

prosody: make it work with buster 2019-09-09 19:09:44 +02:00			`- name: Install prosody`
prosody: use list instead of with_items 2020-11-13 18:25:34 +01:00			`apt:`
			`name:`
			`- prosody`
			`- libsasl2-modules-ldap`
prosody: update for bullseye 2021-09-02 21:15:41 +02:00			`- lua-cyrussasl`
prosody: use list instead of with_items 2020-11-13 18:25:34 +01:00			`- sasl2-bin`
Add prosody role. 2016-02-11 16:15:38 +01:00
Use saslauth for prosody. 2016-04-08 09:07:06 +02:00			`- name: Ensure certificates are available`
			`command: openssl req -x509 -nodes -newkey rsa:2048 -keyout /etc/prosody/certs/{{ prosody_domain }}.key -out /etc/prosody/certs/{{ prosody_domain }}.crt -days 730 -subj "/CN={{ prosody_domain }}" creates=/etc/prosody/certs/{{ prosody_domain }}.crt`
Add prosody role. 2016-02-11 16:15:38 +01:00
Use saslauth for prosody. 2016-04-08 09:07:06 +02:00			`- name: Ensure prosody is in sasl group`
			`user: name=prosody groups=sasl`

			`- name: Ensure sasl configuration directory exists`
			`file: path=/etc/sasl/ state=directory`

			`- name: Configure sasl`
			`copy: src={{ item }} dest=/etc/{{ item }}`
			`with_items:`
			`- default/saslauthd`
			`- sasl/xmpp.conf`

			`- name: Configure sasl`
			`template: src=saslauthd.conf.j2 dest=/etc/saslauthd.conf`
			`notify: Restart saslauthd`
Add prosody role. 2016-02-11 16:15:38 +01:00
			`- name: Configure prosody`
			`template: src=prosody.cfg.lua.j2 dest=/etc/prosody/prosody.cfg.lua`
Unify action names. 2016-02-15 19:17:28 +01:00			`notify: Restart prosody`
Use saslauth for prosody. 2016-04-08 09:07:06 +02:00
Unify certmgr configs. 2016-04-08 09:28:53 +02:00			`- name: Configure certificate manager`
acertmgr: migrate from legacy paths 2019-05-20 19:49:08 +02:00			`template: src=certs.j2 dest=/etc/acertmgr/{{ prosody_domain }}_prosody.conf`
acertmgr: rename from certmgr, run on config change 2019-02-23 23:54:24 +01:00			`notify: Run acertmgr`
Unify certmgr configs. 2016-04-08 09:28:53 +02:00
Use saslauth for prosody. 2016-04-08 09:07:06 +02:00			`- name: Start saslauthd`
			`service: name=saslauthd state=started enabled=yes`
Add prosody role. 2016-02-11 16:15:38 +01:00
			`- name: Start prosody`
			`service: name=prosody state=started enabled=yes`