- name: "Initialise packages, user tanguy & webserver" hosts: "roger-skyline-1" become: yes become_user: root become_method: su tasks: - name: "Install necessary packages" apt: name: ['sudo', 'mailutils', 'fail2ban', 'apache2'] update_cache: "yes" state: "present" - name: "Add tanguy to sudoers" user: name: "tanguy" groups: "sudo" append: yes - name: "Upload firewall config" copy: src: "files/firewall.conf" dest: "/etc/" owner: "root" group: "root" - name: "Apply firewall config" command: "iptables-restore -! /etc/firewall.conf" - name: "Create .ssl directory" file: path: "/home/tanguy/.ssl" state: "directory" - name: "Generate ssl private key" openssl_privatekey: path: "/home/tanguy/.ssl/server.pem" - name: "Generate ssl certficate signing request" openssl_certificate: path: "/home/tanguy/.ssl/server.csr" privatekey_path: "/home/tanguy/.ssl/server.pem" common_name: "tmaze" email_address: "tmaze@student.42.fr" contry_name: "FR" locality_name: "Paris" organization_name: "42.fr" - name: "Generate ssl selfsigned certificate" openssl_certificate: path: "/home/tanguy/.ssl/server.crt" csr_path: "/home/tanguy/.ssl/server.csr" privatekey_path: "/home/tanguy/.ssl/server.pem" provider: "selfsigned" - name: "Upload website" copy: src: "files/default-ssl.conf" dest: "/etc/apache2/sites-available" owner: "root" group: "root" - name: "Create webiste dir" file: path: "/var/www/nice_website" state: "directory" - name: "Upload website" copy: src: "files/index.html" dest: "/var/www/nice_website/" owner: "root" group: "root" - name: "Activate ssl mod" apache2_module: state: "present" name: "ssl" - name: "Restart apache2" service: name: "apache2" state: "restarted"