create radicale role
This commit is contained in:
parent
8e985a84c0
commit
9e959607af
@ -1,6 +1,6 @@
|
||||
---
|
||||
radicale_server_username: radicale
|
||||
radicale_server_home_dir: "/var/lib/{{ radicale_server_username }}"
|
||||
radicale_server_home_dir: "/mnt/diskstation/CardDav"
|
||||
radicale_service_state: started
|
||||
|
||||
# See https://radicale.org/configuration/
|
||||
@ -56,7 +56,7 @@ radicale_config:
|
||||
# List of Radicale user information as a dictionary.
|
||||
radicale_users:
|
||||
- name: admin # The username.
|
||||
password: admin # Their password. This should probably be vault-encrypted.
|
||||
password: "{{vault_CardDav}}" # Their password. This should probably be vault-encrypted.
|
||||
# As an alternative to a password, you can specify a bcrypt hash.
|
||||
# Create this hash using the standard `htpasswd` utility, then
|
||||
# paste it here. This method allows a user to generate a password
|
||||
|
@ -1,45 +1,9 @@
|
||||
---
|
||||
- name: Install Radicale package dependencies.
|
||||
apt:
|
||||
name: "{{ packages }}"
|
||||
vars:
|
||||
packages:
|
||||
- python3
|
||||
- python3-pip
|
||||
- python3-setuptools
|
||||
- apache2-utils
|
||||
# These three are for Ansible itself to run on the managed host.
|
||||
- python-setuptools
|
||||
- python-passlib
|
||||
- python-bcrypt
|
||||
|
||||
- name: Install Radicale Python dependencies.
|
||||
pip:
|
||||
executable: pip3 # Radicale requires Python 3.3 or greater.
|
||||
name: "{{ item }}"
|
||||
state: present
|
||||
loop:
|
||||
- passlib
|
||||
- bcrypt
|
||||
|
||||
- name: Create Radicale system user.
|
||||
user:
|
||||
name: "{{ radicale_server_username }}"
|
||||
system: true
|
||||
home: "{{ radicale_server_home_dir }}"
|
||||
shell: "/bin/false"
|
||||
state: present
|
||||
|
||||
- name: Install Radicale.
|
||||
pip:
|
||||
executable: pip3 # Radicale requires Python 3.3 or greater.
|
||||
name: radicale
|
||||
state: present
|
||||
|
||||
- name: Create Radicale configuration directory.
|
||||
file:
|
||||
path: /etc/radicale
|
||||
state: directory
|
||||
package:
|
||||
state: present # required. Whether to install (C(present)), or remove (C(absent)) a package. Other states depend on the underlying package module, i.e C(latest).
|
||||
name: radicale # required. Package name, or package specifier with version, like C(name-1.0).,Be aware that packages are not always named the same and this module will not 'translate' them per distro.
|
||||
use: auto # not required. The required package manager module to use (yum, apt, etc). The default 'auto' will use existing facts or try to autodetect it.,You should only use this field if the automatic selection is not working for some reason.
|
||||
|
||||
- name: Write Radicale configuration file.
|
||||
template:
|
||||
@ -52,9 +16,6 @@
|
||||
copy:
|
||||
src: rights.conf
|
||||
dest: "{{ radicale_server_home_dir }}/rights.conf"
|
||||
owner: "{{ radicale_server_username }}"
|
||||
group: "{{ radicale_server_username }}"
|
||||
mode: "400"
|
||||
notify:
|
||||
- Restart Radicale.
|
||||
|
||||
@ -80,9 +41,6 @@
|
||||
password: "{{ item.password }}"
|
||||
state: "{{ item.state | default('present') }}"
|
||||
crypt_scheme: "bcrypt"
|
||||
mode: "600"
|
||||
owner: "{{ radicale_server_username }}"
|
||||
group: "{{ radicale_server_username }}"
|
||||
loop: "{{ radicale_users }}"
|
||||
|
||||
- name: Set Radicale user with password hash.
|
||||
@ -92,20 +50,8 @@
|
||||
path: "{{ radicale_config.auth.htpasswd_filename | default('/var/lib/radicale/users.htpasswd') }}"
|
||||
line: "{{ item.name }}:{{ item.bcrypt_hash }}"
|
||||
state: "{{ item.state | default('present') }}"
|
||||
mode: "600"
|
||||
owner: "{{ radicale_server_username }}"
|
||||
group: "{{ radicale_server_username }}"
|
||||
loop: "{{ radicale_users }}"
|
||||
|
||||
- name: Create systemd service unit.
|
||||
template:
|
||||
src: radicale.service.j2
|
||||
dest: /etc/systemd/system/radicale.service
|
||||
# TODO:
|
||||
#validate: "systemd-analyze verify %s"
|
||||
notify:
|
||||
- Reload systemd.
|
||||
- Restart Radicale.
|
||||
|
||||
- name: Start and enable Radicale service.
|
||||
service:
|
||||
|
Loading…
Reference in New Issue
Block a user