add host ch-http-proxy

1 files changed, 42 insertions, 0 deletions

diff --git a/chaos-at-home/ch-http-proxy.yml b/chaos-at-home/ch-http-proxy.yml
new file mode 100644
index 00000000..7302072b
--- /dev/null
+++ b/chaos-at-home/ch-http-proxy.yml
@@ -0,0 +1,42 @@
+---
+- name: Basic Setup
+  hosts: ch-http-proxy
+  roles:
+  - role: apt-repo/base
+  - role: core/base
+  - role: core/sshd
+  - role: core/zsh
+  # - role: apt-repo/spreadspace
+  # - role: acmetool/base
+  - role: nginx/base
+  # - role: acmetool/cert
+  #   acmetool_cert_name: "http.chaos-at-home.org"
+  #   acmetool_cert_config:
+  #     request:
+  #       challenge:
+  #         http-self-test: false
+  # post_tasks:
+  # - name: install systemd service unit for service-ip
+  #   copy:
+  #     dest: /etc/systemd/system/http-service-ip.service
+  #     content: |
+  #       [Unit]
+  #       Description=Assign HTTP Sevice IP
+  #       After=network.target
+
+  #       [Service]
+  #       Type=oneshot
+  #       ExecStart=/usr/sbin/ip addr add dev {{ network.primary.name }} {{ network_services.http.addr }}/32
+  #       ExecStop=/usr/sbin/ip addr del dev {{ network.primary.name }} {{ network_services.http.addr }}/32
+  #       RemainAfterExit=yes
+
+  #       [Install]
+  #       WantedBy=multi-user.target
+  #   register: service_ip_systemd_unit
+
+  # - name: make sure service-ip systemd unit is enabeld and started
+  #   systemd:
+  #     daemon_reload: yes
+  #     name: http-service-ip.service
+  #     state: "{{ (service_ip_systemd_unit is changed) | ternary('restarted', 'started') }}"
+  #     enabled: yes