1
0
Fork 0
ynh-lydra-ansible-yunohost/tasks/main.yml
Arthur BOUDREAULT c23177170e ♻refactor: Command ansible module across the repo for better security
Shell module is not needed here.

According to various sources (https://www.youtube.com/watch?v=57gAqKvAKck or https://stackoverflow.com/questions/56663332/difference-between-shell-and-command-in-ansible) it is not useful to use shell ansible module when not working with operands. Therefore I have decided to switch every actions to command module, more secure. Ansible-lint says "Shell should only be used when piping, redirecting or chaining commands"
2021-10-12 14:00:56 +00:00

49 lines
1.3 KiB
YAML

---
- name: Install requirements
ansible.builtin.apt:
name:
- git
- dialog
state: present
- name: Test if Yunohost is already installed
ansible.builtin.stat: path=/etc/yunohost/installed
register: ynh_file_install
- name: Download Yunohost install script
ansible.builtin.get_url:
url: "{{ ynh_install_script_url }}"
dest: /tmp/install_yunohost.sh
mode: 700
when: ynh_file_install.stat.exists == False
- name: Launch Yunohost install script
ansible.builtin.command: /tmp/install_yunohost.sh -a
when: ynh_file_install.stat.exists == False
- name: Launch Yunohost postinstall
ansible.builtin.command:
yunohost tools postinstall \
--domain "{{ ynh_main_domain }}" \
--password "{{ ynh_admin_password }}" \
{% if ynh_ignore_dyndns_server == True %} --ignore-dyndns {% endif %}
when: ynh_file_install.stat.exists == False
- name: Create extra domains
ansible.builtin.include: domains.yml
when: ynh_extra_domains
- name: Run first Yunohost diagnosis
ansible.builtin.command: yunohost diagnosis run
- name: Install domain certificates
ansible.builtin.command: yunohost domain cert-install
changed_when: False
- name: Add Yunohost users
ansible.builtin.include: users.yml
when: ynh_users
- name: Install Yunohost apps
ansible.builtin.include: apps.yml
when: ynh_apps