ansible-collection-famedly-.../tasks/configure.yml

---
- name: Create directory for media storage
  file:
    name: /opt/synapse/media_store
    state: directory
    owner: synapse
    group: synapse

- name: Create directory for uploads
  file:
    name: /opt/synapse/uploads
    state: directory
    owner: synapse
    group: synapse

- name: Create directory for SSL files
  file:
    name: /opt/synapse/ssl
    state: directory
    owner: synapse
    group: synapse

- name: Create signing key
  shell: /opt/synapse/env/bin/python -c "from signedjson import key; file = open('/opt/synapse/ssl/{{ matrix_synapse_domain}}.signing.key','w'); key.write_signing_keys(file, [key.generate_signing_key('first')]); file.close()"
  args:
    creates: /opt/synapse/ssl/{{ matrix_synapse_domain }}.signing.key
  become: true
  become_user: synapse
  notify:
    - "restart synapse"

- name: create logging folder
  file:
    name: /var/log/synapse/
    state: directory
    owner: synapse
    group: synapse

- name: copy syslog config
  copy:
    src: matrix_synapse.conf
    dest: /etc/rsyslog.d/matrix_synapse.conf
    owner: root
  notify: restart rsyslog

- name: template logrotate config
  template:
    src: logrotate.j2
    dest: /etc/logrotate.d/matrix_synapse

- name: Deploy log config
  template:
    src: "log.config.j2"
    dest: "/opt/synapse/log.config"
    owner: synapse
    group: synapse
  notify:
    - "restart synapse"

- name: Deploy config
  template:
    src: "homeserver.yaml.j2"
    dest: "/opt/synapse/homeserver.yaml"
    owner: synapse
    group: synapse
  notify:
    - "restart synapse"

- name: ensure hook directory available
  file:
    name: /etc/letsencrypt/renewal-hooks/deploy/
    state: directory

- name: template ssl post-renewal copier into place
  template:
    src: 01-synapse.j2
    dest: /etc/letsencrypt/renewal-hooks/deploy/01-synapse
    mode: 0700
  register: ssl_renewal

- name: run post-renewal copier
  command: /etc/letsencrypt/renewal-hooks/deploy/01-synapse
  when: ssl_renewal.changed
  tags:
    - skip_ansible_lint # because of the when clause

- name: create DH parameters
  command: openssl dhparam -out ssl/{{ matrix_synapse_domain }}.dh 2048
  args:
    creates: /opt/synapse/ssl/{{ matrix_synapse_domain }}.dh
    chdir: /opt/synapse
  become_user: synapse
  become: true
moved role out of matrix-ansible 2018-07-30 14:56:33 +00:00			`---`
			`- name: Create directory for media storage`
			`file:`
			`name: /opt/synapse/media_store`
			`state: directory`
			`owner: synapse`
			`group: synapse`

			`- name: Create directory for uploads`
			`file:`
			`name: /opt/synapse/uploads`
			`state: directory`
			`owner: synapse`
			`group: synapse`

			`- name: Create directory for SSL files`
			`file:`
			`name: /opt/synapse/ssl`
			`state: directory`
			`owner: synapse`
			`group: synapse`

			`- name: Create signing key`
			`shell: /opt/synapse/env/bin/python -c "from signedjson import key; file = open('/opt/synapse/ssl/{{ matrix_synapse_domain}}.signing.key','w'); key.write_signing_keys(file, [key.generate_signing_key('first')]); file.close()"`
			`args:`
			`creates: /opt/synapse/ssl/{{ matrix_synapse_domain }}.signing.key`
			`become: true`
			`become_user: synapse`
			`notify:`
			`- "restart synapse"`

			`- name: create logging folder`
			`file:`
			`name: /var/log/synapse/`
			`state: directory`
			`owner: synapse`
			`group: synapse`

rotate logs 2018-08-17 14:22:08 +00:00			`- name: copy syslog config`
			`copy:`
			`src: matrix_synapse.conf`
			`dest: /etc/rsyslog.d/matrix_synapse.conf`
			`owner: root`
			`notify: restart rsyslog`

			`- name: template logrotate config`
			`template:`
			`src: logrotate.j2`
			`dest: /etc/logrotate.d/matrix_synapse`

moved role out of matrix-ansible 2018-07-30 14:56:33 +00:00			`- name: Deploy log config`
			`template:`
			`src: "log.config.j2"`
			`dest: "/opt/synapse/log.config"`
			`owner: synapse`
			`group: synapse`
			`notify:`
			`- "restart synapse"`

			`- name: Deploy config`
			`template:`
			`src: "homeserver.yaml.j2"`
			`dest: "/opt/synapse/homeserver.yaml"`
			`owner: synapse`
			`group: synapse`
			`notify:`
			`- "restart synapse"`

			`- name: ensure hook directory available`
			`file:`
			`name: /etc/letsencrypt/renewal-hooks/deploy/`
			`state: directory`

			`- name: template ssl post-renewal copier into place`
			`template:`
			`src: 01-synapse.j2`
			`dest: /etc/letsencrypt/renewal-hooks/deploy/01-synapse`
			`mode: 0700`
			`register: ssl_renewal`

			`- name: run post-renewal copier`
			`command: /etc/letsencrypt/renewal-hooks/deploy/01-synapse`
			`when: ssl_renewal.changed`
			`tags:`
			`- skip_ansible_lint # because of the when clause`

			`- name: create DH parameters`
			`command: openssl dhparam -out ssl/{{ matrix_synapse_domain }}.dh 2048`
			`args:`
			`creates: /opt/synapse/ssl/{{ matrix_synapse_domain }}.dh`
			`chdir: /opt/synapse`
			`become_user: synapse`
			`become: true`