---
- name: Install packages
  ansible.builtin.package:
    name: docker-distribution
    state: installed

- name: Create docker group
  ansible.builtin.group:
    name: docker
    gid: 311

- name: Create docker user
  ansible.builtin.user:
    name: docker
    comment: Service Docker-Registry
    createhome: false
    group: docker
    groups: hostkey
    home: /var/empty
    shell: /sbin/nologin
    uid: 311

- name: Create unit file drop-in directory
  ansible.builtin.file:
    path: /etc/systemd/system/docker-distribution.service.d
    state: directory
    mode: "0755"
    owner: root
    group: "{{ ansible_wheel }}"

- name: Create unit file drop-in
  ansible.builtin.copy:
    dest: /etc/systemd/system/docker-distribution.service.d/user.conf
    src: user.conf
    mode: "0644"
    owner: root
    group: "{{ ansible_wheel }}"
  notify: Restart docker-distribution

- name: Create config file
  ansible.builtin.template:
    dest: /etc/docker-distribution/registry/config.yml
    src: config.yml.j2
    mode: "0644"
    owner: root
    group: "{{ ansible_wheel }}"
  notify: Restart docker-distribution

- name: Create docker image directory
  ansible.builtin.file:
    path: /srv/registry/docker
    state: directory
    mode: "0770"
    owner: root
    group: docker

- name: Copy access file
  ansible.builtin.copy:
    dest: /etc/docker-distribution/registry/htpasswd
    src: "{{ htpasswd }}"
    mode: "0640"
    owner: root
    group: docker
  when: htpasswd is defined
  notify: Restart docker-distribution

- name: Start service
  ansible.builtin.service:
    name: docker-distribution
    state: started
    enabled: true