wireguard-ui/tasks/RedHat/podman.yaml

- name: Install WireGuard UI with container
  block:
    - name: Login to image registries with podman
      containers.podman.podman_login:
        registry: '{{ item.key }}'
        username: '{{ item.value.username }}'
        password: '{{ item.value.password }}'
      become: true
      no_log: true
      changed_when: False
      loop: '{{ wireguard_ui_container_registry_auth | dict2items }}'
      when: wireguard_ui_container_registry_auth is defined

    - name: Create configuration dir and subdirs for WireGuard UI
      file:
        name: "{{ item }}"
        state: directory
      loop:
        - "{{ wireguard_ui_config_dir }}"
        - "{{ wireguard_ui_config_dir }}/server"

    - name: Force login and password change for first admin user
      template:
        dest: "{{ wireguard_ui_config_dir }}/users/admin.json"
        src: users.json.j2
      register: wireguard_ui_auth
      notify: Restart WireGuard UI with podman

    - name: Create WireGuard UI with podman
      containers.podman.podman_container:
        name: "{{ wireguard_ui_container_name }}"
        hostname: "{{ wireguard_ui_container_name }}"
        network_mode: "{{ wireguard_ui_network_mode }}"
        image: "{{ wireguard_ui_container_registry }}/{{ wireguard_ui_image_name }}:{{ wireguard_ui_image_tag }}"
        state: created
        cap_add:
          - NET_ADMIN
        env: "{{ wireguard_ui_combined_env }}"
        volumes: "{{ wireguard_ui_volumes }}"
      register: wireguard_ui_container
      notify: Restart WireGuard UI with podman

    - name: Generate container systemd unit
      shell: "podman generate systemd {{ wireguard_ui_container_name }}"
      register: wireguard_ui_systemd_unit
      changed_when: False

    - name: Create WireGuard UI systemd unit
      copy:
        dest: "/etc/systemd/system/{{ wireguard_ui_systemd_unit_name }}"
        content: "{{ wireguard_ui_systemd_unit.stdout | regex_replace('^#.*', multiline=True) | trim }}"

    - name: Create WireGuard UI systemd watcher unit
      template:
        dest: "/etc/systemd/system/{{ wireguard_ui_watcher_systemd_service_unit_name }}"
        src: wireguard-ui-watcher.service.j2

    - name: Create WireGuard UI systemd watcher path
      template:
        dest: "/etc/systemd/system/{{ wireguard_ui_watcher_systemd_path_unit_name }}"
        src: wireguard-ui-watcher.path.j2

    - name: Logout from image registries
      containers.podman.podman_logout:
        registry: '{{ item.key }}'
      become: true
      no_log: true
      changed_when: False
      loop: '{{ wireguard_ui_container_registry_auth | dict2items }}'
      when: wireguard_ui_container_registry_auth is defined
first commit 2022-07-13 11:51:25 +00:00			`- name: Install WireGuard UI with container`
			`block:`
			`- name: Login to image registries with podman`
			`containers.podman.podman_login:`
			`registry: '{{ item.key }}'`
			`username: '{{ item.value.username }}'`
			`password: '{{ item.value.password }}'`
			`become: true`
			`no_log: true`
			`changed_when: False`
			`loop: '{{ wireguard_ui_container_registry_auth \| dict2items }}'`
			`when: wireguard_ui_container_registry_auth is defined`

fix deploy and bump to 0.4.0 2023-03-10 13:18:46 +00:00			`- name: Create configuration dir and subdirs for WireGuard UI`
first commit 2022-07-13 11:51:25 +00:00			`file:`
fix deploy and bump to 0.4.0 2023-03-10 13:18:46 +00:00			`name: "{{ item }}"`
first commit 2022-07-13 11:51:25 +00:00			`state: directory`
fix deploy and bump to 0.4.0 2023-03-10 13:18:46 +00:00			`loop:`
			`- "{{ wireguard_ui_config_dir }}"`
			`- "{{ wireguard_ui_config_dir }}/server"`

fix admin user 2024-03-31 22:56:18 +00:00			`- name: Force login and password change for first admin user`
fix deploy and bump to 0.4.0 2023-03-10 13:18:46 +00:00			`template:`
fix admin user 2024-03-31 22:56:18 +00:00			`dest: "{{ wireguard_ui_config_dir }}/users/admin.json"`
fix deploy and bump to 0.4.0 2023-03-10 13:18:46 +00:00			`src: users.json.j2`
			`register: wireguard_ui_auth`
			`notify: Restart WireGuard UI with podman`
first commit 2022-07-13 11:51:25 +00:00
			`- name: Create WireGuard UI with podman`
			`containers.podman.podman_container:`
			`name: "{{ wireguard_ui_container_name }}"`
			`hostname: "{{ wireguard_ui_container_name }}"`
			`network_mode: "{{ wireguard_ui_network_mode }}"`
			`image: "{{ wireguard_ui_container_registry }}/{{ wireguard_ui_image_name }}:{{ wireguard_ui_image_tag }}"`
			`state: created`
fix deploy and bump to 0.4.0 2023-03-10 13:18:46 +00:00			`cap_add:`
			`- NET_ADMIN`
use separate naming for combined vars 2022-07-15 15:14:47 +00:00			`env: "{{ wireguard_ui_combined_env }}"`
fix deploy and bump to 0.4.0 2023-03-10 13:18:46 +00:00			`volumes: "{{ wireguard_ui_volumes }}"`
first commit 2022-07-13 11:51:25 +00:00			`register: wireguard_ui_container`
fix combined volumes end envs 2022-07-13 18:31:50 +00:00			`notify: Restart WireGuard UI with podman`
first commit 2022-07-13 11:51:25 +00:00
			`- name: Generate container systemd unit`
			`shell: "podman generate systemd {{ wireguard_ui_container_name }}"`
			`register: wireguard_ui_systemd_unit`
			`changed_when: False`

			`- name: Create WireGuard UI systemd unit`
			`copy:`
			`dest: "/etc/systemd/system/{{ wireguard_ui_systemd_unit_name }}"`
			`content: "{{ wireguard_ui_systemd_unit.stdout \| regex_replace('^#.*', multiline=True) \| trim }}"`

			`- name: Create WireGuard UI systemd watcher unit`
fix wireguard-ui 2022-07-13 12:31:37 +00:00			`template:`
first commit 2022-07-13 11:51:25 +00:00			`dest: "/etc/systemd/system/{{ wireguard_ui_watcher_systemd_service_unit_name }}"`
			`src: wireguard-ui-watcher.service.j2`

			`- name: Create WireGuard UI systemd watcher path`
fix wireguard-ui 2022-07-13 12:31:37 +00:00			`template:`
first commit 2022-07-13 11:51:25 +00:00			`dest: "/etc/systemd/system/{{ wireguard_ui_watcher_systemd_path_unit_name }}"`
			`src: wireguard-ui-watcher.path.j2`

			`- name: Logout from image registries`
			`containers.podman.podman_logout:`
			`registry: '{{ item.key }}'`
			`become: true`
			`no_log: true`
			`changed_when: False`
			`loop: '{{ wireguard_ui_container_registry_auth \| dict2items }}'`
			`when: wireguard_ui_container_registry_auth is defined`