ansible-base/roles/lighttpd/tasks/main.json

[
	{
		"name": "install packages",
		"become": true,
		"ansible.builtin.apt": {
			"update_cache": true,
			"pkg": [
				"lighttpd",
				"lighttpd-mod-openssl"
			]
		}
	},
	{
		"name": "activate openssl module | file",
		"become": true,
		"ansible.builtin.template": {
			"src": "10-ssl-custom.conf.j2",
			"dest": "/etc/lighttpd/conf-available/10-ssl-custom.conf"
		}
	},
	{
		"name": "activate openssl module | link",
		"become": true,
		"ansible.builtin.file": {
			"state": "link",
			"src": "/etc/lighttpd/conf-available/10-ssl-custom.conf",
			"dest": "/etc/lighttpd/conf-enabled/10-ssl-custom.conf"
		}
	},
	{
		"name": "ufw | check",
		"check_mode": true,
		"become": true,
		"community.general.ufw": {
			"state": "enabled"
		},
		"register": "ufw_enable_check"
	},
	{
		"name": "ufw | allow port 80",
		"when": "not ufw_enable_check.changed",
		"become": true,
		"community.general.ufw": {
			"rule": "allow",
			"port": "80",
			"proto": "tcp"
		}
	},
	{
		"name": "ufw | allow port 443",
		"when": "not ufw_enable_check.changed",
		"become": true,
		"community.general.ufw": {
			"rule": "allow",
			"port": "443",
			"proto": "tcp"
		}
	},
	{
		"name": "restart service",
		"become": true,
		"ansible.builtin.systemd_service": {
			"state": "restarted",
			"name": "lighttpd"
		}
	}
]
[ini] 2023-11-20 02:07:08 +01:00			`[`
			`{`
			`"name": "install packages",`
			`"become": true,`
			`"ansible.builtin.apt": {`
[fix] role:lighttpd:apt update 2024-03-20 00:05:11 +01:00			`"update_cache": true,`
[ini] 2023-11-20 02:07:08 +01:00			`"pkg": [`
			`"lighttpd",`
			`"lighttpd-mod-openssl"`
			`]`
			`}`
			`},`
			`{`
			`"name": "activate openssl module \| file",`
			`"become": true,`
			`"ansible.builtin.template": {`
			`"src": "10-ssl-custom.conf.j2",`
			`"dest": "/etc/lighttpd/conf-available/10-ssl-custom.conf"`
			`}`
			`},`
			`{`
			`"name": "activate openssl module \| link",`
			`"become": true,`
			`"ansible.builtin.file": {`
			`"state": "link",`
			`"src": "/etc/lighttpd/conf-available/10-ssl-custom.conf",`
			`"dest": "/etc/lighttpd/conf-enabled/10-ssl-custom.conf"`
			`}`
			`},`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`{`
[fix] roles with ufw incocation 2024-06-01 17:56:28 +02:00			`"name": "ufw \| check",`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`"check_mode": true,`
[fix] roles with ufw incocation 2024-06-01 17:56:28 +02:00			`"become": true,`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`"community.general.ufw": {`
[fix] roles with ufw incocation 2024-06-01 17:56:28 +02:00			`"state": "enabled"`
			`},`
			`"register": "ufw_enable_check"`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`},`
			`{`
[fix] roles with ufw incocation 2024-06-01 17:56:28 +02:00			`"name": "ufw \| allow port 80",`
			`"when": "not ufw_enable_check.changed",`
			`"become": true,`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`"community.general.ufw": {`
			`"rule": "allow",`
			`"port": "80",`
			`"proto": "tcp"`
[fix] roles with ufw incocation 2024-06-01 17:56:28 +02:00			`}`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`},`
			`{`
[fix] roles with ufw incocation 2024-06-01 17:56:28 +02:00			`"name": "ufw \| allow port 443",`
			`"when": "not ufw_enable_check.changed",`
			`"become": true,`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`"community.general.ufw": {`
			`"rule": "allow",`
			`"port": "443",`
			`"proto": "tcp"`
[fix] roles with ufw incocation 2024-06-01 17:56:28 +02:00			`}`
Add ufw role - Enable ufw and by default deny incoming traffic - in other roles: if ufw (role) is enabled, then allow necessary ports 2024-04-20 17:08:39 +02:00			`},`
[ini] 2023-11-20 02:07:08 +01:00			`{`
			`"name": "restart service",`
			`"become": true,`
			`"ansible.builtin.systemd_service": {`
			`"state": "restarted",`
			`"name": "lighttpd"`
			`}`
			`}`
			`]`