aboutsummaryrefslogtreecommitdiffstats
path: root/roles/vaultwarden/tasks/main.yml
blob: 2d5f03d034ba131d35aca19e8c1e0c39e4c51f7e (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

- name: install packages
  dnf:
    name: '{{ vaultwarden_packages }}'
    state: present

- import_tasks: freeipa.yml
  tags: freeipa

- name: create home directory
  file:
    path: '{{ vaultwarden_home }}'
    owner: '{{ vaultwarden_user }}'
    group: '{{ vaultwarden_user }}'
    mode: 0755
    state: directory

- name: download rustup
  get_url:
    url: https://sh.rustup.rs
    dest: '{{ vaultwarden_home }}/rustup.sh'
    mode: 0755
  become: yes
  become_user: '{{ vaultwarden_user }}'
  register: rustup

- name: install rust
  command: '{{ vaultwarden_home }}/rustup.sh -y'
  when: rustup.changed
  become: yes
  become_user: '{{ vaultwarden_user }}'

- name: clone git repository
  git:
    repo: '{{ vaultwarden_git_repo }}'
    dest: '{{ vaultwarden_source_dir }}'
    version: '{{ vaultwarden_version }}'
    force: yes
    update: yes
  become: yes
  become_user: '{{ vaultwarden_user }}'
  register: vaultwarden_git
  notify: restart vaultwarden

- name: build vaultwarden
  shell:
    cmd: 'source ${HOME}/.cargo/env && cargo build --features postgresql --release'
    chdir: '{{ vaultwarden_source_dir }}'
  become: yes
  become_user: '{{ vaultwarden_user }}'
  when: vaultwarden_git.changed

- name: create web vault directory
  file:
    path: '{{ vaultwarden_web_dir }}'
    owner: '{{ vaultwarden_user }}'
    group: '{{ vaultwarden_user }}'
    mode: 0755
    state: directory

- name: extract web vault
  unarchive:
    src: '{{ vaultwarden_web_url }}'
    dest: '{{ vaultwarden_web_dir }}'
    remote_src: yes
    extra_opts: --strip-components=1
  become: yes
  become_user: '{{ vaultwarden_user }}'

- name: create data directory
  file:
    path: '{{ vaultwarden_data_dir }}'
    owner: '{{ vaultwarden_user }}'
    group: '{{ vaultwarden_user }}'
    mode: 0700
    state: directory

- name: create systemd unit
  template:
    src: etc/systemd/system/vaultwarden.service.j2
    dest: /etc/systemd/system/vaultwarden.service
  notify: restart vaultwarden

- name: reload systemd daemons
  systemd:
    daemon_reload: yes

- name: generate environment file
  template:
    src: etc/sysconfig/vaultwarden.j2
    dest: /etc/sysconfig/vaultwarden
  notify: restart vaultwarden

- import_tasks: database.yml
  tags: database

- name: enable systemd unit
  systemd:
    name: vaultwarden
    enabled: yes
    state: started
generated by cgit (git 2.34.1) at 2024-09-19 12:04:40 -0400