- name: create configuration directories
  become: yes
  file:
    path: "{{ item }}"
    state: directory
    owner: openvpn
    group: openvpn
    mode: "0750"
  loop:
    - "/etc/openvpn/client"
    - "/etc/openvpn/client/zeus"
    - "/etc/openvpn/server"

- name: copy configuration
  become: yes
  template:
    src: "{{ platform }}/openvpn.j2"
    dest: "/etc/openvpn/client/zeus.conf"
    owner: openvpn
    group: openvpn
    mode: "0644"

- name: copy credentials
  become: yes
  copy:
    src: "{{ item.src }}"
    dest: "{{ item.dest }}"
    owner: openvpn
    group: openvpn
    mode: "0600"
  loop:
    - {
        src: "{{ platform }}/openvpn/ca.crt",
        dest: "/etc/openvpn/client/zeus/ca.crt",
      }
    - {
        src: "{{ platform }}/openvpn/desktop.crt",
        dest: "/etc/openvpn/client/zeus/desktop.crt",
      }
    - {
        src: "{{ platform }}/openvpn/desktop.key",
        dest: "/etc/openvpn/client/zeus/desktop.key",
      }
    - {
        src: "{{ platform }}/openvpn/ta.key",
        dest: "/etc/openvpn/client/zeus/ta.key",
      }
  notify: restart vpn