system-config/playbooks/roles/reprepro/tasks/main.yaml

- name: Install afsadmin keytab
  shell: 'echo "{{ reprepro_keytab }}" | base64 -d > /etc/reprepro.keytab'
  args:
    creates: /etc/reprepro.keytab
  no_log: True

- name: Ensure permissions on reprepro keytab
  file:
    path: '/etc/reprepro.keytab'
    owner: root
    group: root
    mode: '0400'

- name: Install reprepro
  package:
    name:
      - reprepro
    state: present

- name: Ensure config directory
  file:
    path: /etc/reprepro
    state: directory
    owner: root
    group: root
    mode: '0755'

- name: Ensure key storage
  file:
    path: /etc/reprepro-gpg-keys
    state: directory
    owner: root
    group: root
    mode: '0755'

- name: Ensure log directory
  file:
    path: /var/log/reprepro
    state: directory
    owner: root
    group: root
    mode: '0755'

- name: Ensure run directory
  file:
    path: /var/run/reprepro
    state: directory
    owner: root
    group: root
    mode: '0755'

- name: Ensure run directory at boot
  copy:
    # d means create this directory
    # ! means only evaluate this on boot, creating the dir outside of boot
    #   can break things
    # 0755 root root sets perms and ownership
    # - omits the age value which means do not delete this directory
    content: "d! /var/run/reprepro 0755 root root -"
    dest: /etc/tmpfiles.d/reprepro.conf
    owner: root
    group: root
    mode: '0644'

- name: Rotate logfiles
  include_role:
    name: logrotate
  vars:
    logrotate_file_name: '/var/log/reprepro/*.log'
    logrotate_config_file_name: 'reprepro'
    logrotate_frequency: 'weekly'

- name: Install mirror script
  copy:
    src: reprepro-mirror-update
    dest: /usr/local/bin/
    owner: root
    group: root
    mode: 0755

- name: Debian
  include_tasks: debian.yaml

- name: Debian Ceph
  include_tasks: debian-ceph.yaml

- name: Debian security
  include_tasks: debian-security.yaml

- name: Docker
  include_tasks: docker.yaml

- name: Puppetlabs
  include_tasks: puppetlabs.yaml

- name: Ubuntu
  include_tasks: ubuntu.yaml

- name: Ubuntu Cloud Archive
  include_tasks: ubuntu-cloud-archive.yaml

- name: Ubuntu Ports
  include_tasks: ubuntu-ports.yaml