---
- hosts: all
remote_user: sandy
become: true
tasks:
- name: install phpldapadmin
apt: name=phpldapadmin update_cache=yes
- name: install phpopenldap
apt:
state: '{{item.state | default("present")}}'
purge: yes
with_items:
- name: php
- name: libapache2-mod-php
- name: mcrypt
- name: php-mysql
- /usr/bin/certbot
ignore_errors: yes
failed_when: no
- name: stat phpldapadmin
stat: path=/var/www/html/
register: phpldapadmin_stat
- name: Move phpldapadmin
shell: mv /var/www/html/ /var/www/html/
when: phpldapadmin_stat.stat.exists
vars:
certbot_generate_certificates: true
certbot_certificate_domains:
roles:
- {role: certbot-apache, become: yes }
- role: letsencrypt
letsencrypt_webroot_pah: /var/www/html
letsencrypt_cert_domains:
letsencrypt_renewal_command_args: '--renew-hook "systemctl restart apache"'
- name: Allow everything and enable UFW
ufw:
state: enabled
policy: allow