#!/usr/bin/env ansible-playbook
---
# root is the first playbook to launch (as root) whe initiation a new server

- hosts: server
  tasks:
    - name: Check if mirror.adm is defined in /etc/hosts
      lineinfile:
        state: absent
        path: /etc/hosts
        regexp: '^{{ glob_mirror.ip }}'
      check_mode: True
      changed_when: False
      register: check_mirror

    - name: Define mirror.adm.crans.org if it doesn't exist.
      lineinfile:
        path: /etc/hosts
        line: '{{ glob_mirror.ip }} {{ glob_mirror.name }}'
        insertafter: '127.0.0.1 localhost'
      when: check_mirror.found == 0

- hosts: baie
  roles:
    - baie

- hosts: virtu
  roles:
    - proxmox-apt-sources

- hosts: server
  vars:
    # # Will be in /usr/scripts/
    # crans_scripts_git: "http://gitlab.adm.crans.org/nounous/scripts.git"

    # NTP servers
    ntp_servers:
      - charybde.adm.crans.org
    #   - silice.adm.crans.org
  roles:
    - debian-apt-sources
    - common-tools
    - sudo
    - ntp-client
    # - crans-scripts
    - root-config

- hosts: crans_vm
  roles:
    - qemu-guest-agent
    - serial-tty

- hosts: ldap_server
  vars:
    slapd: '{{ glob_slapd | combine(loc_slapd | default({})) }}'
    ldap:
      private_key: "{{ vault_ldap_private_key }}"
      certificate: "{{ vault_ldap_certificate }}"
  roles:
    - slapd

- hosts: server
  vars:
    ldap: '{{ glob_ldap | combine(loc_ldap | default({})) }}'
  roles:
    - ldap-client

- hosts: server,!ovh_physical
  roles:
    - home-nounous

- hosts: server,!virtu
  roles:
    - openssh

- hosts: crans_vm
  tasks:
    - name: Remove cloud-init
      apt:
        name: cloud-init
        state: absent
        purge: true
      register: apt_result
      retries: 3
      until: apt_result is succeeded