mirror of
				https://github.com/spantaleev/matrix-docker-ansible-deploy.git
				synced 2025-10-26 18:13:23 +00:00 
			
		
		
		
	This paves the way for installing other roles into `roles/galaxy` using `ansible-galaxy`, similar to how it's done in: - https://github.com/spantaleev/gitea-docker-ansible-deploy - https://github.com/spantaleev/nextcloud-docker-ansible-deploy In the near future, we'll be removing a lot of the shared role code from here and using upstream roles for it. Some of the core `matrix-*` roles have already been extracted out into other reusable roles: - https://github.com/devture/com.devture.ansible.role.postgres - https://github.com/devture/com.devture.ansible.role.systemd_docker_base - https://github.com/devture/com.devture.ansible.role.timesync - https://github.com/devture/com.devture.ansible.role.vars_preserver - https://github.com/devture/com.devture.ansible.role.playbook_runtime_messages - https://github.com/devture/com.devture.ansible.role.playbook_help We just need to migrate to those.
		
			
				
	
	
		
			37 lines
		
	
	
		
			1.2 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
			
		
		
	
	
			37 lines
		
	
	
		
			1.2 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
| ---
 | |
| 
 | |
| - name: Fail if using unsupported SSL certificate retrieval method
 | |
|   ansible.builtin.fail:
 | |
|     msg: "The `matrix_ssl_retrieval_method` variable contains an unsupported value"
 | |
|   when: "matrix_ssl_retrieval_method not in ['lets-encrypt', 'self-signed', 'manually-managed', 'none']"
 | |
| 
 | |
| - name: Fail if using unsupported private key type
 | |
|   ansible.builtin.fail:
 | |
|     msg: "The `matrix_ssl_lets_encrypt_key_type` variable contains an unsupported value"
 | |
|   when: "matrix_ssl_lets_encrypt_key_type not in ['rsa', 'ecdsa']"
 | |
| 
 | |
| 
 | |
| # Common tasks, required by almost any method below.
 | |
| 
 | |
| - name: Ensure SSL certificate paths exists
 | |
|   ansible.builtin.file:
 | |
|     path: "{{ item }}"
 | |
|     state: directory
 | |
|     mode: 0770
 | |
|     owner: "{{ matrix_user_username }}"
 | |
|     group: "{{ matrix_user_groupname }}"
 | |
|     recurse: true
 | |
|   with_items:
 | |
|     - "{{ matrix_ssl_log_dir_path }}"
 | |
|     - "{{ matrix_ssl_config_dir_path }}"
 | |
|   when: "matrix_ssl_retrieval_method != 'none'"
 | |
| 
 | |
| 
 | |
| # Method specific tasks follow
 | |
| 
 | |
| - ansible.builtin.import_tasks: "{{ role_path }}/tasks/ssl/setup_ssl_lets_encrypt.yml"
 | |
| 
 | |
| - ansible.builtin.import_tasks: "{{ role_path }}/tasks/ssl/setup_ssl_self_signed.yml"
 | |
| 
 | |
| - ansible.builtin.import_tasks: "{{ role_path }}/tasks/ssl/setup_ssl_manually_managed.yml"
 |