ansible-role-signal_api/tasks/configure.yml

---
- name: Ensure registries are configured for containers
  lineinfile:
    path: /etc/containers/registries.conf
    line: unqualified-search-registries = ["quay.io", "docker.io"]
    regexp: '^unqualified-search-registries'
    backup: yes

- name: Ensure Signal API container is running
  containers.podman.podman_container:
    name: signal-api
    image: "{{ signal_container_image }}"
    state: started
    recreate: false
    restart_policy: always
    publish:
      - "{{ signal_list_ip }}:{{ signal_api_port }}:{{ signal_api_port }}"
    volume:
      - "{{ signal_data_folder }}:/home/.local/share/signal-cli"
    env:
      MODE: native
      PORT: "{{ signal_api_port }}"
      #AUTO_RECEIVE_SCHEDULE: "0 22 * * *"
  register: container
  ignore_errors: true

- name: Ensure UFW allow traffic to exposed port from local network
  ufw:
    rule: allow
    route: true
    from_ip: "{{ item }}"
    to_port: "{{ signal_api_port }}"
  when: handle_ufw
  loop: "{{ localnetworks }}"

- name: Generate service unit
  shell: podman generate systemd --new --name signal-api > /etc/systemd/system/podman_signal_api.service
  args:
    creates: /etc/systemd/system/podman_signal_api.service

- name: Enable service unit
  systemd:
    name: podman_signal_api.service
    daemon_reload: true
    enabled: true
    masked: false
Initial commit with previous code 2022-10-11 09:19:11 +02:00			`---`
Add registries configuration 2023-02-09 23:37:32 +01:00			`- name: Ensure registries are configured for containers`
			`lineinfile:`
			`path: /etc/containers/registries.conf`
			`line: unqualified-search-registries = ["quay.io", "docker.io"]`
			`regexp: '^unqualified-search-registries'`
			`backup: yes`

Initial commit with previous code 2022-10-11 09:19:11 +02:00			`- name: Ensure Signal API container is running`
			`containers.podman.podman_container:`
			`name: signal-api`
add variable for image 2023-02-09 23:34:32 +01:00			`image: "{{ signal_container_image }}"`
Initial commit with previous code 2022-10-11 09:19:11 +02:00			`state: started`
			`recreate: false`
			`restart_policy: always`
			`publish:`
fix published 2023-03-19 17:00:23 +01:00			`- "{{ signal_list_ip }}:{{ signal_api_port }}:{{ signal_api_port }}"`
Initial commit with previous code 2022-10-11 09:19:11 +02:00			`volume:`
			`- "{{ signal_data_folder }}:/home/.local/share/signal-cli"`
			`env:`
			`MODE: native`
			`PORT: "{{ signal_api_port }}"`
			`#AUTO_RECEIVE_SCHEDULE: "0 22 * * *"`
add failed when 2022-10-26 14:22:41 +02:00			`register: container`
ignore erros 2022-10-26 14:50:11 +02:00			`ignore_errors: true`
Initial commit with previous code 2022-10-11 09:19:11 +02:00
add handle of ufw 2023-03-19 16:49:08 +01:00			`- name: Ensure UFW allow traffic to exposed port from local network`
Initial commit with previous code 2022-10-11 09:19:11 +02:00			`ufw:`
			`rule: allow`
Add route 2022-10-26 13:27:13 +02:00			`route: true`
add handle of ufw 2023-03-19 16:49:08 +01:00			`from_ip: "{{ item }}"`
Add systemd unit 2022-10-23 16:21:50 +02:00			`to_port: "{{ signal_api_port }}"`
add handle of ufw 2023-03-19 16:49:08 +01:00			`when: handle_ufw`
change to loop 2023-03-19 16:56:46 +01:00			`loop: "{{ localnetworks }}"`
Add systemd unit 2022-10-23 16:21:50 +02:00
			`- name: Generate service unit`
fix service name 2023-02-09 23:52:30 +01:00			`shell: podman generate systemd --new --name signal-api > /etc/systemd/system/podman_signal_api.service`
Add systemd unit 2022-10-23 16:21:50 +02:00			`args:`
			`creates: /etc/systemd/system/podman_signal_api.service`

			`- name: Enable service unit`
			`systemd:`
fix service name 2023-01-09 14:41:04 +01:00			`name: podman_signal_api.service`
Add systemd unit 2022-10-23 16:21:50 +02:00			`daemon_reload: true`
			`enabled: true`
			`masked: false`