semaphore-playbooks/debian12-docker/playbook.yml

---
- name: Update web servers
  hosts: all
  remote_user: root
  tasks:
  - name: Install a list of packages
    ansible.builtin.apt:
      pkg:
      - ca-certificates
      - curl
      - gnupg
      
  - name: Add an Apt signing key, uses whichever key is at the URL
    ansible.builtin.apt_key:
      url: https://download.docker.com/linux/debian/gpg 
      state: present

  - name: Add docker repository
    ansible.builtin.apt_repository:
      repo: "deb [arch=amd64] https://download.docker.com/linux/debian {{ ansible_distribution_release }} stable"
      state: present

  - name: Install a list of packages
    ansible.builtin.apt:
      update_cache: yes
      pkg:
      - docker-ce
      - docker-ce-cli
      - containerd.io
      - docker-buildx-plugin
      - docker-compose-plugin
      - docker-compose

  - name: Create docker-compose folder for traefik
    ansible.builtin.file:
      path: /opt/docke-compsoe/traefik
      state: directory
      mode: '0755'
  
  - name: Create a symbolic link
    ansible.builtin.file:
      src: /opt/docke-compsoe/
      dest: /root/docker-compose
      state: link

  - name: Template a file to /etc/file.conf
    ansible.builtin.template:
      src: traefic-docker-compose.yml
      dest: /opt/docke-compsoe/traefik/docker-compose.yml
      mode: '0644'

  - name: Create and start services
    community.docker.docker_compose:
      project_src: /opt/docke-compsoe/traefik/
  
  - name: Log into DockerHub
    docker_login:
      username: kekskurse
      password: "{{ docker_kekskurse_password }}"

  - name: Allow all access to tcp port 80
    community.general.ufw:
      rule: allow
      port: '80'
      proto: tcp

  - name: Allow all access to tcp port 443
    community.general.ufw:
      rule: allow
      port: '443'
      proto: tcp
docker 2023-07-21 00:36:14 +00:00			`---`
			`- name: Update web servers`
			`hosts: all`
			`remote_user: root`
			`tasks:`
			`- name: Install a list of packages`
			`ansible.builtin.apt:`
			`pkg:`
			`- ca-certificates`
			`- curl`
			`- gnupg`
docker 2023-07-21 01:07:17 +00:00
docker 2023-07-21 01:05:43 +00:00			`- name: Add an Apt signing key, uses whichever key is at the URL`
			`ansible.builtin.apt_key:`
			`url: https://download.docker.com/linux/debian/gpg`
			`state: present`

docker 2023-07-21 00:36:14 +00:00			`- name: Add docker repository`
docker 2023-07-21 00:37:38 +00:00			`ansible.builtin.apt_repository:`
docker 2023-07-21 01:05:43 +00:00			`repo: "deb [arch=amd64] https://download.docker.com/linux/debian {{ ansible_distribution_release }} stable"`
docker 2023-07-21 00:37:38 +00:00			`state: present`
docker 2023-07-21 00:36:14 +00:00
			`- name: Install a list of packages`
			`ansible.builtin.apt:`
			`update_cache: yes`
			`pkg:`
			`- docker-ce`
			`- docker-ce-cli`
			`- containerd.io`
			`- docker-buildx-plugin`
			`- docker-compose-plugin`
			`- docker-compose`
move 2023-07-21 01:16:28 +00:00
			`- name: Create docker-compose folder for traefik`
			`ansible.builtin.file:`
			`path: /opt/docke-compsoe/traefik`
			`state: directory`
			`mode: '0755'`

			`- name: Create a symbolic link`
			`ansible.builtin.file:`
move 2023-07-21 01:17:37 +00:00			`src: /opt/docke-compsoe/`
			`dest: /root/docker-compose`
move 2023-07-21 01:16:28 +00:00			`state: link`

			`- name: Template a file to /etc/file.conf`
			`ansible.builtin.template:`
			`src: traefic-docker-compose.yml`
move 2023-07-21 01:20:04 +00:00			`dest: /opt/docke-compsoe/traefik/docker-compose.yml`
move 2023-07-21 01:22:20 +00:00			`mode: '0644'`

			`- name: Create and start services`
			`community.docker.docker_compose:`
docker login 2023-07-21 01:58:20 +00:00			`project_src: /opt/docke-compsoe/traefik/`

			`- name: Log into DockerHub`
			`docker_login:`
			`username: kekskurse`
			`password: "{{ docker_kekskurse_password }}"`
swap 2023-07-21 04:19:47 +00:00
			`- name: Allow all access to tcp port 80`
			`community.general.ufw:`
			`rule: allow`
			`port: '80'`
			`proto: tcp`

			`- name: Allow all access to tcp port 443`
			`community.general.ufw:`
			`rule: allow`
			`port: '443'`
			`proto: tcp`