---
- name: Initializing adze.robocracy.org
  hosts: adze.robocracy.org
  remote_user: root
  gather_facts: True
  vars_files:
    - vars/vault.yml
    - vars/robocracy.yml

  vars:
    - admin_email: "root@robocracy.org"
    - main_user_name: bnewbold
    - hostname_fqdn: adze.robocracy.org
    - mediagoblin_hostname: goblin.bnewbold.net
    - cgit_hostname: git.bnewbold.net
    - gitolite_hostname: git.bnewbold.net
    - mediagoblin_email_sender: goblin@bnewbold.net
    - mediagoblin_basedir: /srv/http/goblin.bnewbold.net

  roles:
    - debian_stretch
    - hostname
    - common
    - nginx
    - git
    - mediagoblin
    - znc
    - mailserver

  tasks:
    - name: Create main user account
      user: name={{main_user_name}} state=present groups=sudo append=yes shell=/bin/bash
    - name: Give main user account sudo power
      template: src=roles/common/templates/sudoers.j2 dest=/etc/sudoers.d/sudoers owner=root group=root mode=0440 validate='visudo -cf %s'
    - name: Install main user authorized SSH keys
      authorized_key: user="{{ main_user_name}}" key="{{ item }}"
      with_file:
        - pubkeys/bnewbold.pub
    - name: Install root user authorized SSH keys
      authorized_key: user=root key="{{ item }}"
      with_file:
        - pubkeys/bnewbold.pub
    - name: Extra packages for this host
      apt: name={{item}} state=installed
      with_items:
            - socat
            - rsyslog

  post_tasks:
    - name: Sanity check that we have IPv4 connectivity
      command: /bin/ping -c 2 mit.edu
    - name: Sanity check that we have IPv6 connectivity
      command: /bin/ping6 -c 2 mit.edu
    - name: Done
      shell: echo 'Done!'