haproxy/tasks/Debian.yaml

---
- name: Gather packages
  package_facts:
    manager: auto

- name: Set fact about HAProxy package
  set_fact:
    haproxy_installed_package: "{{ ansible_facts.packages[haproxy_package_name][0]['name'] }}"
  when: haproxy_package_name in ansible_facts.packages

- name: Print installed HAProxy version
  debug:
    msg: "{{ ansible_facts.packages[haproxy_package_name][0]['version'] }}"
    verbosity: 2
  when: haproxy_installed_package is defined

- name: Mask HAProxy before install
  ansible.builtin.systemd:
    name: "{{ haproxy_unit_name }}"
    masked: yes
  when: haproxy_package_name not in ansible_facts.packages or ansible_facts.packages[haproxy_package_name][0]['version'] != (haproxy_version|string + "-" + haproxy_version_build|string)

- name: "Install {{ haproxy_package_name }}-{{ haproxy_version }}-{{ haproxy_version_build }}"
  apt:
    name: "{{ haproxy_package }}"
    update_cache: yes
  register: haproxy_setup
  when: haproxy_package_name not in ansible_facts.packages

- name: "Update {{ haproxy_package_name }}-{{ haproxy_version }}-{{ haproxy_version_build }}"
  apt:
    name: "{{ haproxy_package }}"
    update_cache: yes
  register: haproxy_update
  notify: Restart HAProxy
  when:
    - haproxy_package_name in ansible_facts.packages
    - ansible_facts.packages[haproxy_package_name][0]['version'] != (haproxy_version|string + "-" + haproxy_version_build|string)

- name: Install python3-cryptography
  package: 
   name: python3-cryptography

- block:
  - name: Check net.ipv4.ip_nonlocal_bind
    ansible.posix.sysctl:
      name: net.ipv4.ip_nonlocal_bind
      value: '1'
      sysctl_set: no
      state: present
    register: sysctl_result

  - name: Set net.ipv4.ip_nonlocal_bind = 1
    ansible.posix.sysctl:
      name: net.ipv4.ip_nonlocal_bind
      value: '1'
      sysctl_set: yes
      state: present
      reload: yes
      sysctl_file: /etc/sysctl.d/99-haproxy.conf
    when: sysctl_result.changed

- name: Apply default config
  block:
    - name: Merge config for HAProxy
      set_fact:
        haproxy_combined_config: "{{ haproxy_config | default({}) | combine(haproxy_default_config, recursive=true) }}"

    - name: Add HAProxy config
      template:
        src: "haproxy.cfg.j2"
        dest: "/etc/haproxy/haproxy.cfg"
      notify:
        - Reload HAProxy
  when:
    - haproxy_config_override is not defined
    - haproxy_config_base64_override is not defined

- name: Override with config in plain text
  block:
    - set_fact:
        haproxy_config: "{{ haproxy_config_override }}"

    - name: Override HAProxy config in plain text
      copy:
        content: "{{ haproxy_config }}"
        dest: "/etc/haproxy/haproxy.cfg"
      notify:
        - Reload HAProxy
  when: haproxy_config_override is defined

- name: Override with base64 config
  block:
    - set_fact:
        haproxy_config: "{{ haproxy_config_base64_override | b64decode }}"

    - name: Override HAProxy with config in base64
      copy:
        content: "{{ haproxy_config }}"
        dest: "/etc/haproxy/haproxy.cfg"
      notify:
        - Reload HAProxy
  when: haproxy_config_base64_override is defined

- name: Add maps for HAProxy
  include_tasks: map.yaml
  when: haproxy_map is defined

- name: Add lua code for HAProxy
  include_tasks: lua.yaml
  when: haproxy_lua is defined

- name: Add certificate for HAProxy
  include_tasks: cert.yaml
  when: haproxy_ssl

- name: Enable and start HAProxy service
  systemd:
    name: "{{ haproxy_unit_name }}"
    state: started
    enabled: yes
    daemon_reload: yes
    masked: no
  register: haproxy_enable_and_start
split variables for RedHat and Debain os family 2023-04-16 00:27:24 +00:00			`---`
			`- name: Gather packages`
			`package_facts:`
			`manager: auto`

			`- name: Set fact about HAProxy package`
			`set_fact:`
			`haproxy_installed_package: "{{ ansible_facts.packages[haproxy_package_name][0]['name'] }}"`
			`when: haproxy_package_name in ansible_facts.packages`

			`- name: Print installed HAProxy version`
			`debug:`
			`msg: "{{ ansible_facts.packages[haproxy_package_name][0]['version'] }}"`
			`verbosity: 2`
			`when: haproxy_installed_package is defined`

			`- name: Mask HAProxy before install`
			`ansible.builtin.systemd:`
			`name: "{{ haproxy_unit_name }}"`
			`masked: yes`
			`when: haproxy_package_name not in ansible_facts.packages or ansible_facts.packages[haproxy_package_name][0]['version'] != (haproxy_version\|string + "-" + haproxy_version_build\|string)`

			`- name: "Install {{ haproxy_package_name }}-{{ haproxy_version }}-{{ haproxy_version_build }}"`
			`apt:`
			`name: "{{ haproxy_package }}"`
			`update_cache: yes`
			`register: haproxy_setup`
			`when: haproxy_package_name not in ansible_facts.packages`

			`- name: "Update {{ haproxy_package_name }}-{{ haproxy_version }}-{{ haproxy_version_build }}"`
			`apt:`
			`name: "{{ haproxy_package }}"`
			`update_cache: yes`
			`register: haproxy_update`
			`notify: Restart HAProxy`
			`when:`
			`- haproxy_package_name in ansible_facts.packages`
			`- ansible_facts.packages[haproxy_package_name][0]['version'] != (haproxy_version\|string + "-" + haproxy_version_build\|string)`

			`- name: Install python3-cryptography`
			`package:`
			`name: python3-cryptography`

			`- block:`
			`- name: Check net.ipv4.ip_nonlocal_bind`
			`ansible.posix.sysctl:`
			`name: net.ipv4.ip_nonlocal_bind`
			`value: '1'`
			`sysctl_set: no`
			`state: present`
			`register: sysctl_result`

			`- name: Set net.ipv4.ip_nonlocal_bind = 1`
			`ansible.posix.sysctl:`
			`name: net.ipv4.ip_nonlocal_bind`
			`value: '1'`
			`sysctl_set: yes`
			`state: present`
			`reload: yes`
			`sysctl_file: /etc/sysctl.d/99-haproxy.conf`
			`when: sysctl_result.changed`

			`- name: Apply default config`
			`block:`
			`- name: Merge config for HAProxy`
			`set_fact:`
			`haproxy_combined_config: "{{ haproxy_config \| default({}) \| combine(haproxy_default_config, recursive=true) }}"`

			`- name: Add HAProxy config`
			`template:`
			`src: "haproxy.cfg.j2"`
			`dest: "/etc/haproxy/haproxy.cfg"`
			`notify:`
			`- Reload HAProxy`
			`when:`
			`- haproxy_config_override is not defined`
			`- haproxy_config_base64_override is not defined`

			`- name: Override with config in plain text`
			`block:`
			`- set_fact:`
			`haproxy_config: "{{ haproxy_config_override }}"`

fix mistype 2023-07-05 09:37:22 +00:00			`- name: Override HAProxy config in plain text`
split variables for RedHat and Debain os family 2023-04-16 00:27:24 +00:00			`copy:`
			`content: "{{ haproxy_config }}"`
			`dest: "/etc/haproxy/haproxy.cfg"`
			`notify:`
			`- Reload HAProxy`
			`when: haproxy_config_override is defined`

			`- name: Override with base64 config`
			`block:`
			`- set_fact:`
			`haproxy_config: "{{ haproxy_config_base64_override \| b64decode }}"`

fix mistype 2023-07-05 09:37:22 +00:00			`- name: Override HAProxy with config in base64`
split variables for RedHat and Debain os family 2023-04-16 00:27:24 +00:00			`copy:`
			`content: "{{ haproxy_config }}"`
			`dest: "/etc/haproxy/haproxy.cfg"`
			`notify:`
			`- Reload HAProxy`
			`when: haproxy_config_base64_override is defined`

			`- name: Add maps for HAProxy`
			`include_tasks: map.yaml`
			`when: haproxy_map is defined`

			`- name: Add lua code for HAProxy`
			`include_tasks: lua.yaml`
			`when: haproxy_lua is defined`

			`- name: Add certificate for HAProxy`
			`include_tasks: cert.yaml`
			`when: haproxy_ssl`

			`- name: Enable and start HAProxy service`
			`systemd:`
			`name: "{{ haproxy_unit_name }}"`
			`state: started`
			`enabled: yes`
			`daemon_reload: yes`
			`masked: no`
			`register: haproxy_enable_and_start`