websockify: Initial version of role

roles/websockify/files/rc.websockify

@@ -0,0 +1,12 @@
+#!/bin/ksh
+
+daemon="/usr/local/bin/websockify"
+daemon_user="websock"
+daemon_flags="-D --syslog=/dev/log --token-plugin=TokenFile --token-source=/etc/websockify.conf 127.0.0.1:6000"
+
+. /etc/rc.d/rc.subr
+
+pexp="$(readlink -f /usr/local/bin/python3) ${daemon}${daemon_flags:+ ${daemon_flags}}"
+rc_reload=NO
+
+rc_cmd $1

roles/websockify/handlers/main.yml

@@ -0,0 +1,5 @@
+---
+- name: restart websockify
+  ansible.builtin.service:
+    name: websockify
+    state: restarted

roles/websockify/tasks/main.yml

@@ -0,0 +1,44 @@
+---
+- name: install packages
+  ansible.builtin.package:
+    name: websockify
+    state: installed
+
+- name: create websock group
+  ansible.builtin.group:
+    name: websock
+    system: true
+
+- name: create websock user
+  ansible.builtin.user:
+    name: websock
+    comment: Service Websock
+    createhome: false
+    group: websock
+    home: /var/empty
+    shell: /sbin/nologin
+    system: true
+
+- name: create configuration file
+  ansible.builtin.template:
+    dest: /etc/websockify.conf
+    src: websockify.conf.j2
+    mode: 0640
+    owner: root
+    group: websock
+  notify: restart websockify
+
+- name: create startup script
+  ansible.builtin.copy:
+    dest: /etc/rc.d/websockify
+    src: rc.websockify
+    mode: 0555
+    owner: root
+    group: "{{ ansible_wheel }}"
+  notify: restart websockify
+
+- name: enable service
+  ansible.builtin.service:
+    name: websockify
+    state: started
+    enabled: true

roles/websockify/templates/websockify.conf.j2

@@ -0,0 +1,3 @@
+{% for host in ssh_proxy_hosts %}
+{{ host | hash('sha1') }}: {{ host }}:22
+{% endfor %}