Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • 673-add-devblog-pages
  • update-onboarding
  • increase-burst-on-archmanweb
  • add-aurweb-tracing
  • block-uptime-robots
  • enable-gitlab-spamcheck
  • dbscripts-git-repo
  • artifact-signing-rfc
  • mysql_dashboard
  • upgrade_docs
  • aur_robots.txt
  • mariadb-nocow
13 results
Blame Permalink
Code owners
Assign users and groups as approvers for specific file changes. Learn more.
main.yml 1.04 KiB 
- name: Install mumble-server
  pacman: name=mumble-server state=present

- name: Open firewall holes
  ansible.posix.firewalld: port={{ item }} permanent=true state=enabled immediate=yes
  when: configure_firewall
  loop:
    - "64738/tcp"
    - "64738/udp"
  tags:
    - firewall

- name: Configure mumble-server
  template: src=mumble-server.ini.j2 dest=/etc/mumble/mumble-server.ini owner=root group=root mode=0644
  notify:
    - Restart mumble-server

- name: Add certbot hook
  copy: src=restart-mumble-server.sh dest=/etc/letsencrypt/hook.d/restart-mumble-server.sh owner=root group=root mode=0755

- name: Create ssl cert for mumble-server
  include_role:
    name: certificate
  vars:
    domains: ["{{ inventory_hostname }}"]
    challenge: "DNS-01"
  register: result

- name: Install the certificate by running the certbot hook
  command: /etc/letsencrypt/hook.d/restart-mumble-server.sh post
  args:
    creates: /var/lib/mumble-server/fullchain.pem

- name: Start and enable mumble-server.service
  service: name=mumble-server enabled=yes state=started