diff options
author | jaseg <code@jaseg.net> | 2020-12-29 13:08:13 +0100 |
---|---|---|
committer | jaseg <code@jaseg.net> | 2020-12-29 13:08:13 +0100 |
commit | e63a7e557da86afc69f987df416b9932d0822d31 (patch) | |
tree | 0a72ec1b9d25cdcc44fa72cd04963de0ae244856 /gerboweb/deploy/setup_dyndns.yml | |
parent | 659290677b4ab53bca1fd92fd01c90aee09c2fa7 (diff) | |
download | gerbolyze-e63a7e557da86afc69f987df416b9932d0822d31.tar.gz gerbolyze-e63a7e557da86afc69f987df416b9932d0822d31.tar.bz2 gerbolyze-e63a7e557da86afc69f987df416b9932d0822d31.zip |
Add dns, dyndns services
Diffstat (limited to 'gerboweb/deploy/setup_dyndns.yml')
-rw-r--r-- | gerboweb/deploy/setup_dyndns.yml | 80 |
1 files changed, 80 insertions, 0 deletions
diff --git a/gerboweb/deploy/setup_dyndns.yml b/gerboweb/deploy/setup_dyndns.yml new file mode 100644 index 0000000..d9735c7 --- /dev/null +++ b/gerboweb/deploy/setup_dyndns.yml @@ -0,0 +1,80 @@ +--- +- name: Set local facts + set_fact: + dyndns_sqlite_dbfile: /var/lib/dyndns/db.sqlite3 + +- name: Copy nsd config + copy: + src: nsd.conf + dest: /etc/nsd/nsd.conf + owner: root + group: root + mode: 0644 + +- name: Enable and launch nsd systemd service + systemd: + name: nsd.service + enabled: yes + state: restarted + +- name: Create dyndns worker user and group + user: + name: uwsgi-dyndns + create_home: no + group: uwsgi + password: '!' + shell: /sbin/nologin + system: yes + +- name: Allow dyndns app to kick nsd + lineinfile: + path: /etc/sudoers + line: 'uwsgi-dyndns ALL=(nsd) NOPASSWD: /usr/sbin/nsd-control reload dyn.jaseg.de' + +- name: Create webapp dir + file: + path: /var/lib/dyndns + state: directory + owner: uwsgi-dyndns + group: nsd + mode: 0750 + +- name: Copy webapp sources + copy: + src: dyndns.py + dest: /var/lib/dyndns/ + owner: uwsgi-dyndns + group: uwsgi + mode: 0440 + +- name: Template webapp config + template: + src: dyndns_config.py.j2 + dest: /var/lib/dyndns/config.py + owner: uwsgi-dyndns + group: root + mode: 0660 + +- name: Copy uwsgi config + copy: + src: uwsgi-dyndns.ini + dest: /etc/uwsgi.d/dyndns.ini + owner: uwsgi-dyndns + group: uwsgi + mode: 0440 + +- name: Enable uwsgi systemd socket + systemd: + daemon-reload: yes + name: uwsgi-app@dyndns.socket + enabled: yes + +- name: Create sqlite db file + file: + path: "{{dyndns_sqlite_dbfile}}" + owner: uwsgi-dyndns + group: uwsgi + mode: 0660 + state: touch + + |