Home Explore Help
Sign In
pbarriat
/
Brevet
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: ec4a4f6268
Branches Tags
Brevet
/
dev
/
provisioning
/
ansible
/
roles
/
nextcloud
/
tasks
/
nc_download.yml

nc_download.yml 2.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. ---
    2. 

  2. - name: Download... Download Nextcloud archive
    3. 

  3.   get_url:
    4. 

  4.     url:  "{{ NEXTCLOUD_URL }}"
    5. 

  5.     dest: /tmp/{{ NEXTCLOUD_TARBALL }}
    6. 

  6.     checksum: "sha256:{{ NEXTCLOUD_URL }}.sha256"
    7. 

  7. 

  8. - name: Download... Download generic GPG key
    9. 

  9.   get_url:
    10. 

  10.     url: "{{ NEXTCLOUD_GPG }}"
    11. 

  11.     dest: /tmp/nextcloud.asc
    12. 

  12. 

  13. - name: Download... Download Nextcloud release GPG key
    14. 

  14.   get_url:
    15. 

  15.     url: "{{ NEXTCLOUD_URL }}.asc"
    16. 

  16.     dest: /tmp/{{ NEXTCLOUD_TARBALL }}.asc
    17. 

  17. 

  18. - name: Download... Import Nextcloud GPG key
    19. 

  19.   shell: gpg --import /tmp/nextcloud.asc
    20. 

  20. 

  21. - name: Download... See Nextcloud GPG stored
    22. 

  22.   set_fact:
    23. 

  23.    correct_gpg: "{{ GPG_FINGERPRINT }}"
    24. 

  24. 

  25. - name: Download... Verify Nextcloud GPG
    26. 

  26.   shell: gpg --verify /tmp/{{ NEXTCLOUD_TARBALL }}.asc /tmp/{{ NEXTCLOUD_TARBALL }} 2>&1 | tail -n 1 | cut -d ':' -f2 | tr -d ' '
    27. 

  27.   register: nc_fingerprint
    28. 

  28.   failed_when: (nc_fingerprint.stdout|string not in correct_gpg)
    29. 

  29. 

  30. - name: Download... Extract Nextcloud
    31. 

  31.   unarchive:
    32. 

  32.     src: /tmp/{{ NEXTCLOUD_TARBALL }}
    33. 

  33.     dest: "{{ http_webroot }}"
    34. 

  34.     remote_src: true
    35. 

  35.     creates: "{{ http_webroot }}/nextcloud/occ"
    36. 

  36. 

  37. - name: Download... Ensure Nextcloud files are 0640
    38. 

  38.   shell: find {{ http_webroot }}/nextcloud -type f -exec chmod -c 0640 {} \;
    39. 

  39.   register: nc_installation_chmod_result
    40. 

  40.   changed_when: "nc_installation_chmod_result.stdout != \"\""
    41. 

  41. 

  42. - name: Download... Setting stronger directory ownership
    43. 

  43.   file:
    44. 

  44.     path: "{{ http_webroot }}/nextcloud/"
    45. 

  45.     recurse: true
    46. 

  46.     owner: "{{ nextcloud_websrv_user }}"
    47. 

  47.     group: "{{ nextcloud_websrv_group }}"
    48. 

  48.     state: directory
    49. 

  49. 

  50. - name: Download... Ensure Nextcloud .htaccess and .user.ini are 0644 
    51. 

  51.   file:
    52. 

  52.     path: "{{ item }}"
    53. 

  53.     mode: u=rw,g=r,o=r
    54. 

  54.   with_items:
    55. 

  55.     - "{{ http_webroot }}/nextcloud/.htaccess"
    56. 

  56.     - "{{ http_webroot }}/nextcloud/.user.ini"
    57. 

  57. 

  58. - name: Download... Remove Nextcloud tmp files
    59. 

  59.   ansible.builtin.file:
    60. 

  60.     path: "{{ item }}"
    61. 

  61.     state: absent
    62. 

  62.   with_items:
    63. 

  63.     - "/tmp/{{ NEXTCLOUD_TARBALL }}.asc"
    64. 

  64.     - "/tmp/{{ NEXTCLOUD_TARBALL }}"
    65. 

  65.     - "/tmp/nextcloud.asc"
    66.