35 lines
973 B
YAML
35 lines
973 B
YAML
---
|
|
|
|
- name: Deploy systemd service unit
|
|
template: src=vault.service.j2 dest=/etc/systemd/system/vault.service
|
|
register: vault_unit
|
|
notify: restart vault
|
|
tags: vault
|
|
|
|
- name: Install consul-template unit
|
|
template: src=consul-template-vault.service.j2 dest=/etc/systemd/system/consul-template-vault.service
|
|
notify: restart consul-template-vault
|
|
register: vault_secrets_nomad_unit
|
|
tags: vault
|
|
|
|
- name: Reload systemd
|
|
systemd: daemon_reload=True
|
|
when: vault_unit.changed or vault_secrets_nomad_unit.changed
|
|
tags: vault
|
|
|
|
- name: Install dehydrated hook
|
|
template: src=dehydrated_hook.j2 dest=/etc/dehydrated/hooks_deploy_cert.d/vault mode=755
|
|
tags: vault
|
|
|
|
- name: Install profile script
|
|
copy:
|
|
content: |
|
|
#!/bin/sh
|
|
export VAULT_ADDR={{ vault_conf.api_addr }}
|
|
dest: /etc/profile.d/vault.sh
|
|
mode: 0755
|
|
tags: vault
|
|
|
|
- name: Write version
|
|
copy: content={{ vault_version }} destination={{ vault_root_dir }}/meta/ansible_version
|