automation/ansible/roles/build/tasks/wordpress.yml

- name: "Create folder {{ sites_path }}/{{ item.slug }}"
  file: 
    path: "{{ sites_path }}/{{ item.slug }}"
    state: directory
    mode: '750'
  tags: [docker, nginx]

- name: Render sexy Dockerfile
  template: 
    src: wordpress/Dockerfile.j2
    dest: "{{ sites_path }}/{{ item.slug }}/Dockerfile"
  tags: docker

- name: Render marvelous docker-compose.yml
  template:
    src: wordpress/docker-compose.yml.j2
    dest: "{{ sites_path }}/{{ item.slug }}/docker-compose.yml"
  tags: docker

- name: Render swell nginx site config
  template:
    src: wordpress/nginx.j2
    dest: "/etc/nginx/sites-available/{{ item.url }}"
  become: yes
  tags: nginx

# - name: Create Let's Encrypt certificate
# This seems hard, see:
# https://docs.ansible.com/ansible/latest/modules/acme_certificate_module.html#acme-certificate-module
# https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-ansible-on-ubuntu-18-04
# Maybe using shell directly? e.g.
# certbot certonly --webroot -w /var/www/letsencrypt -d <url>

# MySQL equivalent:
# create user <user>@<ip> identified by <pass>;
# grant all on <db>.* to <user>@<ip>;
- name: "Add database user {{ item.mysql_username }}@{{ item.subnet_site_ip }} and grant all privileges on {{ item.mysql_database }}"
  mysql_user:
    # Credentials to log in MySQL
    login_host: localhost
    login_user: root
    login_password: "{{ mysql_root_password }}"
    # Credentials of the new db user
    host: "{{ item.subnet_site_ip }}"
    name: "{{ item.mysql_username }}"
    password: "{{ item.mysql_password }}"
    # Grants
    priv: "{{ item.mysql_database }}.*:all"
    state: present
  tags: mysql
we build config files remotely. next test the mailing through msmtp and deploy! 2020-03-31 16:32:13 +00:00			`- name: "Create folder {{ sites_path }}/{{ item.slug }}"`
			`file:`
			`path: "{{ sites_path }}/{{ item.slug }}"`
			`state: directory`
			`mode: '750'`
added tags 2020-04-29 15:15:49 +00:00			`tags: [docker, nginx]`
we build config files remotely. next test the mailing through msmtp and deploy! 2020-03-31 16:32:13 +00:00
			`- name: Render sexy Dockerfile`
			`template:`
moved wordpress build templates in subdir (tested in dummy project, should work) 2020-04-27 10:23:53 +00:00			`src: wordpress/Dockerfile.j2`
we build config files remotely. next test the mailing through msmtp and deploy! 2020-03-31 16:32:13 +00:00			`dest: "{{ sites_path }}/{{ item.slug }}/Dockerfile"`
added tags 2020-04-29 15:15:49 +00:00			`tags: docker`
we build config files remotely. next test the mailing through msmtp and deploy! 2020-03-31 16:32:13 +00:00
			`- name: Render marvelous docker-compose.yml`
			`template:`
moved wordpress build templates in subdir (tested in dummy project, should work) 2020-04-27 10:23:53 +00:00			`src: wordpress/docker-compose.yml.j2`
WIP generating site configuration 2020-04-01 07:41:12 +00:00			`dest: "{{ sites_path }}/{{ item.slug }}/docker-compose.yml"`
added tags 2020-04-29 15:15:49 +00:00			`tags: docker`
WIP generating site configuration 2020-04-01 07:41:12 +00:00
			`- name: Render swell nginx site config`
			`template:`
moved wordpress build templates in subdir (tested in dummy project, should work) 2020-04-27 10:23:53 +00:00			`src: wordpress/nginx.j2`
WIP generating site configuration 2020-04-01 07:41:12 +00:00			`dest: "/etc/nginx/sites-available/{{ item.url }}"`
added usual certbot command to comments 2020-04-01 07:42:30 +00:00			`become: yes`
added tags 2020-04-29 15:15:49 +00:00			`tags: nginx`
added usual certbot command to comments 2020-04-01 07:42:30 +00:00
			`# - name: Create Let's Encrypt certificate`
			`# This seems hard, see:`
			`# https://docs.ansible.com/ansible/latest/modules/acme_certificate_module.html#acme-certificate-module`
			`# https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-ansible-on-ubuntu-18-04`
			`# Maybe using shell directly? e.g.`
deployed rennesdesbois.fr 2020-04-09 15:29:12 +00:00			`# certbot certonly --webroot -w /var/www/letsencrypt -d <url>`
added usual certbot command to comments 2020-04-01 07:42:30 +00:00
deployed rennesdesbois.fr 2020-04-09 15:29:12 +00:00			`# MySQL equivalent:`
			`# create user <user>@<ip> identified by <pass>;`
			`# grant all on <db>.* to <user>@<ip>;`
			`- name: "Add database user {{ item.mysql_username }}@{{ item.subnet_site_ip }} and grant all privileges on {{ item.mysql_database }}"`
			`mysql_user:`
			`# Credentials to log in MySQL`
			`login_host: localhost`
			`login_user: root`
			`login_password: "{{ mysql_root_password }}"`
			`# Credentials of the new db user`
			`host: "{{ item.subnet_site_ip }}"`
			`name: "{{ item.mysql_username }}"`
			`password: "{{ item.mysql_password }}"`
			`# Grants`
started jitsi conf and moved zinzoscope and lexperimental to templating solution 2020-04-27 07:45:07 +00:00			`priv: "{{ item.mysql_database }}.*:all"`
deployed rennesdesbois.fr 2020-04-09 15:29:12 +00:00			`state: present`
added tags 2020-04-29 15:15:49 +00:00			`tags: mysql`