forked from FF-RGB/ansible
64 lines
1.7 KiB
YAML
64 lines
1.7 KiB
YAML
---
|
|
|
|
- name: Install packages
|
|
apt:
|
|
name:
|
|
- docker-compose
|
|
|
|
- name: Create tileserver group
|
|
group: name=tileserver
|
|
|
|
- name: Create tileserver user
|
|
user:
|
|
name: tileserver
|
|
home: /opt/tileserver
|
|
shell: /bin/bash
|
|
group: tileserver
|
|
groups: docker
|
|
|
|
- name: Configure tileserver container
|
|
template: src=docker-compose.yml.j2 dest=/opt/tileserver/docker-compose.yml
|
|
notify: Restart tileserver
|
|
|
|
- name: Create style directory
|
|
file:
|
|
path: /opt/tileserver/data/styles
|
|
recurse: yes
|
|
state: directory
|
|
|
|
- name: Configre tileserver
|
|
copy:
|
|
src: "{{ item }}"
|
|
dest: /opt/tileserver/data/{{ item }}
|
|
with_items:
|
|
- config.json
|
|
- styles/day.json
|
|
- styles/night.json
|
|
notify: Restart tileserver
|
|
|
|
- name: Ensure certificates are available
|
|
command: openssl req -x509 -nodes -newkey rsa:2048 -keyout /etc/nginx/ssl/{{ tileserver_domain }}.key -out /etc/nginx/ssl/{{ tileserver_domain }}.crt -days 730 -subj "/CN={{ tileserver_domain }}" creates=/etc/nginx/ssl/{{ tileserver_domain }}.crt
|
|
notify: Restart nginx
|
|
|
|
- name: Configure certificate manager for tileserver
|
|
template: src=certs.j2 dest=/etc/acertmgr/{{ tileserver_domain }}.conf
|
|
notify: Run acertmgr
|
|
|
|
- name: Configure vhost
|
|
template: src=vhost.j2 dest=/etc/nginx/sites-available/tileserver
|
|
notify: Restart nginx
|
|
|
|
- name: Enable vhost
|
|
file: src=/etc/nginx/sites-available/tileserver dest=/etc/nginx/sites-enabled/tileserver state=link
|
|
notify: Restart nginx
|
|
|
|
|
|
- name: Systemd unit for tileserver
|
|
template: src=tileserver.service.j2 dest=/etc/systemd/system/tileserver.service
|
|
notify:
|
|
- Reload systemd
|
|
- Restart tileserver
|
|
|
|
- name: Start the tileserver service
|
|
service: name=tileserver state=started enabled=yes
|