ansible/roles/openntpd/tasks/main.yml

85 lines
1.9 KiB
YAML
Raw Permalink Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

---
- name: Install OpenNTPD
package:
name: openntpd
state: present
- name: Add /var/log/openntpd to fstab
mount:
path: /var/log/openntpd
src: tmpfs
fstype: tmpfs
opts: 'rw,size={{ openntpd_log_size }},mode={{ openntpd_log_mode }},uid={{ openntpd_log_uid }},gid={{ openntpd_log_gid }},late'
state: mounted
- name: Create OpenNTPD service directories
file:
path: '{{ s6_etc_dir }}/service/{{ item }}'
state: directory
owner: root
group: wheel
mode: 0755
with_items: '{{ openntpd_service_dirs }}'
notify:
- Reload s6-rc
- Restart OpenNTPD log
- Restart OpenNTPD
- name: Generate OpenNTPD service scripts
template:
dest: '{{ s6_etc_dir }}/service/{{ item }}'
src: '{{ item }}.j2'
mode: 0555
owner: root
group: wheel
with_items: '{{ openntpd_service_scripts }}'
notify:
- Reload s6-rc
- Restart OpenNTPD log
- Restart OpenNTPD
- name: Generate OpenNTPD service configuration
copy:
dest: '{{ s6_etc_dir }}/service/{{ item.name }}'
content: '{{ item.content }}'
mode: 0444
owner: root
group: wheel
loop_control:
label: '{{ item.name }} = {{ item.content }}'
notify:
- Reload s6-rc
- Restart OpenNTPD log
- Restart OpenNTPD
with_items: '{{ openntpd_service_config }}'
- name: Configure OpenNTPD
template:
dest: /usr/local/etc/ntpd.conf
src: ntpd.conf.j2
mode: 0444
owner: root
group: wheel
notify:
- Restart OpenNTPD
- name: Flush handlers
meta: flush_handlers
- name: Start OpenNTPD
command: fdmove -c 2 1 s6-rc -l {{ s6_live_dir }} -u -v 2 -t 15000 change openntpd
register: change
changed_when: change.stdout | length > 0
- name: Enable OpenNTPD
lineinfile:
path: '{{ s6_etc_dir }}/service/enabled/contents'
regexp: "^openntpd$"
line: openntpd
state: present
notify:
- Reload s6-rc
- name: Flush handlers (again)
meta: flush_handlers