Group/host variable refactor

2025-03-15 00:05:30 +01:00 · 2025-03-15 00:05:30 +01:00 · 4b8aaf3e95
commit 4b8aaf3e95
parent eb308670cc
78 changed files with 445 additions and 374 deletions
--- a/tasks/personal/desktop.yml
+++ b/tasks/personal/desktop.yml
@ -0,0 +1,12 @@
+- name: Create xdg-desktop-portal.service.d directory
+  ansible.builtin.file:
+    path: '{{ xdg_config_dir }}/systemd/user/xdg-desktop-portal.service.d'
+    state: directory
+    mode: '0755'
+
+- name: Copy xdg-desktop-portal.service drop-in
+  ansible.builtin.template:
+    src: templates/personal/desktop/xdg-desktop-portal.service.j2
+    dest: '{{ xdg_config_dir }}/systemd/user/xdg-desktop-portal.service.d/override.conf'
+    mode: '0755'
+  notify: user daemon-reload
--- a/tasks/personal/mpd.yml
+++ b/tasks/personal/mpd.yml
@ -0,0 +1,67 @@
+- name: Copy systemd configuration files
+  ansible.builtin.template:
+    src: '{{ item.src }}'
+    dest: '{{ item.dest }}'
+    mode: '0644'
+  loop:
+    - src: 'templates/personal/mpd/service.j2'
+      dest: '{{ xdg_config_dir }}/systemd/user/mpd.service'
+
+    - src: 'templates/personal/mpd/socket.j2'
+      dest: '{{ xdg_config_dir }}/systemd/user/mpd.socket'
+  notify:
+    - stop mpd service
+    - restart mpd socket
+
+- name: Create mpd files
+  ansible.builtin.file:
+    path: '{{ item.path }}'
+    state: '{{ item.state }}'
+    mode: '0755'
+  loop:
+    - path: '{{ mpd_configuration_dir }}'
+      state: 'directory'
+    - path: '{{ ncmpc_configuration_dir }}'
+      state: 'directory'
+    - path: '{{ ncmpcpp_configuration_dir }}'
+      state: 'directory'
+    - path: '{{ mpd_configuration_dir }}/playlists'
+      state: 'directory'
+    - path: '{{ mpd_configuration_dir }}/state'
+      state: 'touch'
+
+- name: Remove previous mpd files
+  ansible.builtin.file:
+    path: '{{ item.path }}'
+    state: '{{ item.state }}'
+    mode: '0755'
+  loop:
+    - path: '{{ mpd_configuration_dir }}/log'
+      state: 'absent'
+    - path: '{{ mpd_configuration_dir }}/database'
+      state: 'absent'
+    - path: '{{ mpd_configuration_dir }}/sticker.sql'
+      state: 'absent'
+    - path: '{{ ncmpc_configuration_dir }}'
+      state: 'absent'
+
+- name: Copy configuration files
+  ansible.builtin.template:
+    src: '{{ item.src }}'
+    dest: '{{ item.dest }}'
+    mode: '0755'
+  loop:
+    - src: 'templates/personal/mpd/mpd.conf.j2'
+      dest: '{{ mpd_configuration_dir }}/mpd.conf'
+    - src: 'templates/personal/mpd/ncmpcpp/config.j2'
+      dest: '{{ ncmpcpp_configuration_dir }}/config'
+    - src: 'templates/personal/mpd/ncmpcpp/bindings.j2'
+      dest: '{{ ncmpcpp_configuration_dir }}/bindings'
+  notify:
+    - stop mpd service
+
+# TODO: install https://aur.archlinux.org/mpd-mpris-bin.git from AUR
+# Use mpc to control local mpd server.
+# Use $ mpc add http://{{ mpd_remote_address }}:{{ mpd_remote_stream_port }}
+# to add the HTTP stream to the playlist.
+# Use nmcpc to control remote mpd server.
--- a/tasks/personal/mpv.yml
+++ b/tasks/personal/mpv.yml
@ -0,0 +1,16 @@
+- name: Create configuration directory
+  ansible.builtin.file:
+    path: '{{ ansible_env.HOME }}/.config/mpv'
+    state: directory
+    mode: '0700'
+
+- name: Copy configuration files
+  ansible.builtin.template:
+    src: '{{ item.src }}'
+    dest: '{{ item.dest }}'
+    mode: '0644'
+  loop:
+    - src: 'templates/personal/mpv/input.j2'
+      dest: '{{ ansible_env.HOME }}/.config/mpv/input.conf'
+    - src: 'templates/personal/mpv/config.j2'
+      dest: '{{ ansible_env.HOME }}/.config/mpv/mpv.conf'
--- a/tasks/personal/syncthing.yml
+++ b/tasks/personal/syncthing.yml
@ -0,0 +1,18 @@
+- name: Create configuration dir
+  ansible.builtin.file:
+    path: '{{ xdg_config_dir }}/syncthing'
+    state: directory
+    mode: '0755'
+
+- name: Stop syncthing service
+  ansible.builtin.systemd:
+    name: syncthing
+    scope: user
+    state: stopped
+
+- name: Copy configuration file
+  ansible.builtin.template:
+    src: 'templates/syncthing.j2'
+    dest: '{{ xdg_config_dir }}/syncthing/config.xml'
+    mode: '0640'
+  notify: start syncthing
--- a/tasks/personal/wireguard.yml
+++ b/tasks/personal/wireguard.yml
@ -0,0 +1,112 @@
+# Note: Only compatible with personal group
+
+- name: Create Wireguard directories
+  become: true
+  ansible.builtin.file:
+    path: '{{ item }}'
+    owner: root
+    group: systemd-network
+    mode: '0750'
+    state: directory
+    recurse: true
+  loop:
+    - '{{ vpn_config_dir }}'
+    - '{{ vpn_default.private_key_path | dirname }}'
+    - '{{ vpn_default.public_key_path | dirname }}'
+    - '{{ vpn_media.private_key_path | dirname }}'
+    - '{{ vpn_media.public_key_path | dirname }}'
+  notify:
+    - restart systemd-networkd
+    - restart systemd-resolved
+
+- name: Copy Wireguard credentials
+  become: true
+  ansible.builtin.copy:
+    src: '{{ item.src }}'
+    dest: '{{ item.dest }}'
+    owner: root
+    group: systemd-network
+    mode: '0640'
+  loop:
+    - dest: '{{ vpn_default.public_key_path }}'
+      src: 'files/personal/{{ ansible_hostname }}/wireguard/default/{{ ansible_hostname }}.pub'
+
+    - dest: '{{ vpn_default.private_key_path }}'
+      src: 'files/personal/{{ ansible_hostname }}/wireguard/default/{{ ansible_hostname }}.key'
+
+    - dest: '{{ vpn_media.public_key_path }}'
+      src: 'files/personal/{{ ansible_hostname }}/wireguard/media/{{ ansible_hostname }}.pub'
+
+    - dest: '{{ vpn_media.private_key_path }}'
+      src: 'files/personal/{{ ansible_hostname }}/wireguard/media/{{ ansible_hostname }}.key'
+  notify:
+    - restart systemd-networkd
+    - restart systemd-resolved
+
+- name: Copy Wireguard preshared keys
+  become: true
+  ansible.builtin.copy:
+    src: '{{ item.preshared_key_source_path }}'
+    dest: '{{ item.preshared_key_path }}'
+    owner: root
+    group: systemd-network
+    mode: '0640'
+  loop: '{{ vpn_default.peers + vpn_media.peers }}'
+  notify:
+    - restart systemd-networkd
+    - restart systemd-resolved
+
+- name: Desktop configuration
+  notify:
+    - restart systemd-networkd
+    - restart systemd-resolved
+  when: ansible_hostname == 'desktop'
+  block:
+    - name: Setup network configuration
+      become: true
+      ansible.builtin.template:
+        src: '{{ item.src }}'
+        dest: '{{ item.dest }}'
+        owner: root
+        group: systemd-network
+        mode: '0640'
+      loop:
+        - src: 'templates/personal/desktop/network/wg0.network.j2'
+          dest: '/etc/systemd/network/40-wg0.network'
+
+        - src: 'templates/personal/desktop/network/wg0.netdev.j2'
+          dest: '/etc/systemd/network/40-wg0.netdev'
+
+        - src: 'templates/personal/desktop/network/wg1.network.j2'
+          dest: '/etc/systemd/network/40-wg1.network'
+
+        - src: 'templates/personal/desktop/network/wg1.netdev.j2'
+          dest: '/etc/systemd/network/40-wg1.netdev'
+
+- name: XPS configuration
+  notify:
+    - restart systemd-networkd
+    - restart systemd-resolved
+    - restart iwd
+  when: ansible_hostname == 'xps'
+  block:
+    - name: Setup network configuration
+      become: true
+      ansible.builtin.template:
+        src: '{{ item.src }}'
+        dest: '{{ item.dest }}'
+        owner: root
+        group: systemd-network
+        mode: '0640'
+      loop:
+        - src: 'templates/personal/xps/network/wg0.network.j2'
+          dest: '/etc/systemd/network/40-wg0.network'
+
+        - src: 'templates/personal/xps/network/wg0.netdev.j2'
+          dest: '/etc/systemd/network/40-wg0.netdev'
+
+        - src: 'templates/personal/xps/network/wg1.network.j2'
+          dest: '/etc/systemd/network/40-wg1.network'
+
+        - src: 'templates/personal/xps/network/wg1.netdev.j2'
+          dest: '/etc/systemd/network/40-wg1.netdev'
--- a/tasks/personal/xps.yml
+++ b/tasks/personal/xps.yml
@ -0,0 +1,9 @@
+- name: Provision powertop systemd service
+  become: true
+  ansible.builtin.template:
+    src: 'templates/personal/xps/powertop.service.j2'
+    dest: '/etc/systemd/system/powertop.service'
+    owner: root
+    group: root
+    mode: '0644'
+  notify: restart powertop