X-Git-Url: https://git.cyclocoop.org/?a=blobdiff_plain;f=tasks%2Fconfig_www.yml;fp=tasks%2Fconfig_www.yml;h=06af483237a3cbe4bbfd63dc1e76f88b05afc638;hb=f0a634c73af3548be7ea962f1065f6d1d9f69dd4;hp=0000000000000000000000000000000000000000;hpb=8a62800587fb3400465390d205c7d3d4574525bb;p=lhc%2Fansible.git

diff --git a/tasks/config_www.yml b/tasks/config_www.yml
new file mode 100644
index 0000000..06af483
--- /dev/null
+++ b/tasks/config_www.yml
@@ -0,0 +1,45 @@
+- name: Ajout de l'utilisateur site_SIGLE_SITE
+  ansible.builtin.user:
+    name: "site_{{ SIGLE }}_{{ SITE }}"
+    home: "/home/sites/log/nginx/{{ TLD }}/{{ DOMAIN }}/{{ SITE }}"
+    shell: /bin/false
+    groups: www-data
+    system: true
+    append: true
+    create_home: false
+    password: '!'
+
+- name: Boucle d'ajout d'user dans le groupe site_SIGLE_SITE
+  ansible.builtin.user:
+    name: "{{ item }}"
+    groups: "site_{{ SIGLE }}_{{ SITE }}"
+    append: true
+  loop:
+    - 'www-data'
+    - 'backup' # pour borgmatic
+
+- name: Boucle création ou modifications des répertoires home du site
+  ansible.builtin.file:
+    path: "{{ item.path }}"
+    state: "{{ item.state }}"
+    owner: "{{ item.owner }}"
+    group: "{{ item.group }}"
+    mode: "{{ item.mode }}"
+  loop_control:
+    label: "{{ item.path }}"
+  loop:
+    - path: "/home/sites/data/{{ TLD }}"
+      state: directory
+      owner: 'root'
+      group: 'www-data'
+      mode: '3751'
+    - path: "/home/sites/data/{{ TLD }}/{{ DOMAIN }}"
+      state: directory
+      owner: 'root'
+      group: 'www-data'
+      mode: '2751'
+    - path: "/home/sites/data/{{ TLD }}/{{ DOMAIN }}/{{ SITE }}"
+      state: directory
+      owner: 'root'
+      group: "site_{{ SIGLE }}_{{ SITE }}"
+      mode: '2750'