---
# tasks file for sib.apache

- name: read OS vars
  tags: always
  ansible.builtin.include_vars: "{{ ansible_os_family | lower }}.yml"


- name: install apache on Centos
  package:
    name: "{{ apache_package_name }}"
    state: present

- name: conf httpd
  template:
    src: vhost.conf.jj
    dest: "{{ apache_config_dir }}"
    mode: 0640
    owner: root
    group: "{{ apache_group_name }}"
  notify: restart httpd

- name: delete default conf on debian
  tags: debian
  file:
      path: "{{ apache_config_dir }}/000-default.conf"
      state: absent
  notify: restart httpd
  when: ansible_os_family | lower == 'debian'

- name: activate apache
  service:
    name: "{{ apache_service_name }}"
    enabled: yes
    state: started

- name: setup firewall
  block:
  - name: install firewalld packages
    yum:
      name:
      - python3-firewall
      - firewalld
      state: present

  - name: enable firewalld service
    service:
      name: firewalld
      enabled: true
      state: started

  - name: open firewall port
    firewalld:
      service: http
      permanent: yes
      immediate: yes
      state: enabled
  ignore_errors: true
  when: ansible_os_family == 'RedHat'

- name: create documentroot
  file:
    name: '{{ item.documentroot }}'
    state: directory
  loop: "{{ apache_vhosts }}"

- name: copy index file
  template:
    src: index.txt
    dest: "{{ item.documentroot }}"
    mode: 0644
  loop: "{{ apache_vhosts }}"