---
- import_playbook: "include/deploy-kvm-guest.yml myhosts=shell"

- name: configure instance
  hosts: shell
  user: root
  gather_facts: true

  vars_files:
    - "{{ ansible_private }}/vars.yml"

  roles:
    - base
    - role: keytab
      principals:
        - "host/{{ inventory_hostname }}@{{ kerberos_realm }}"
        - "nfs/{{ inventory_hostname }}@{{ kerberos_realm }}"
    - nfs-client
    - sssd
    - autofs
    - thinlinc-server
    - epel_repo
    - powertools_repo
    - role: nginx/server
      plaintext: true

  tasks:
    - name: install extra package groups
      dnf:
        name:
          - "@development"
          - "@fonts"
          - "@gnome-desktop"
          - "@workstation-product"
        state: installed
        exclude:
          - fprintd-pam
          - gnome-initial-setup

    - name: install extra packages
      package:
        name: "{{ package }}"
        state: installed
      with_items:
        - ansible
        - ansible-collection-ansible-posix
        - convmv
        - elinks
        - emacs
        - gnupg1
        - irssi
        - jq
        - kernel-doc
        - php-cli
        - python3-netaddr
        - rcs
        - rpmlint
        - tcsh
        - tmux
        - whois
        - wireshark
        - yamllint
        - zsh
      loop_control:
        loop_var: package

    - name: add software packaged in roles
      include_role:
        name: "{{ role }}"
      with_items:
        - cups
        - firefox
        - git
        - google_chrome
        - lynx
        - mutt
        - opencollab
        - thunderbird
      loop_control:
        loop_var: role

    - name: add home.foo.sh hosts to ssh config
      copy:
        dest: /etc/ssh/ssh_config.d/home.foo.sh.conf
        content: |
          Host *.home.foo.sh !gw.home.foo.sh
            ProxyJump root@gw.home.foo.sh
        mode: 0644
        owner: root
        group: "{{ ansible_wheel }}"