thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
455 Commits
1 Branch
Tree: c55437d341
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c55437d341'
${ noResults }
sovereign/roles/ircbouncer/tasks/znc.yml

znc.yml 2.1KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. # more or less as per http://wiki.znc.in/Running_ZNC_as_a_system_daemon

  2. 

  3. - name: Install znc dependencies

  4.   apt: pkg={{ item }} state=installed

  5.   with_items:

  6.     - automake

  7.     - build-essential

  8.     - checkinstall

  9.     - g++

  10.     - libperl-dev

  11.     - libsasl2-dev

  12.     - libssl-dev

  13.     - libtool

  14.     - openssl

  15.     - pkg-config

  16.     - python3-dev

  17.     - swig

  18. 

  19. - name: Download znc release

  20.   get_url: url=http://znc.in/releases/archive/znc-{{ znc_version }}.tar.gz dest=/root/znc-{{ znc_version }}.tar.gz

  21. 

  22. - name: Decompress znc source

  23.   command: tar xzf /root/znc-{{ znc_version }}.tar.gz chdir=/root creates=/root/znc-{{ znc_version }}/configure

  24. 

  25. - name: Build and install znc

  26.   shell: ./configure --enable-python && make && make install executable=/bin/bash chdir=/root/znc-{{ znc_version }} creates=/usr/local/bin/znc

  27.   notify: restart znc

  28. 

  29. - name: Create znc group

  30.   group: name=znc state=present

  31. 

  32. - name: Create znc user

  33.   user: name=znc state=present home=/var/lib/znc system=yes group=znc shell=/usr/sbin/nologin

  34. 

  35. - name: Copy znc init file into place

  36.   copy: src=etc_init.d_znc dest=/etc/init.d/znc mode=0755

  37. 

  38. - name: Create a combined version of the private key with public cert and intermediate + root CAs

  39.   shell: cat /etc/ssl/private/wildcard_private.key /etc/ssl/certs/wildcard_combined.pem >

  40.     /var/lib/znc/znc.pem creates=/var/lib/znc/znc.pem

  41.   notify: restart znc

  42. 

  43. - name: Ensure znc user and group can read cert

  44.   file: path=/var/lib/znc/znc.pem group=znc owner=znc mode=640

  45.   notify: restart znc

  46. 

  47. - name: Check for existing config file

  48.   command: cat /var/lib/znc/configs/znc.conf

  49.   register: znc_config

  50.   ignore_errors: True

  51.   changed_when: False  # never report as "changed"

  52. 

  53. - name: Create znc config directory

  54.   file: state=directory path=/var/lib/znc/configs group=znc owner=znc

  55. 

  56. - name: Copy znc configuration file into place

  57.   template: src=var_lib_znc_configs_znc.conf.j2 dest=/var/lib/znc/configs/znc.conf owner=znc group=znc

  58.   when: znc_config.rc != 0

  59.   notify: restart znc

  60. 

  61. - name: Set firewall rule for znc

  62.   ufw: rule=allow port=6697 proto=tcp

  63. 

  64. - name: Ensure znc is a system service

  65.   service: name=znc state=started enabled=true