---
- name: Create group
  ansible.builtin.group:
    name: php4dvd

- name: Create user
  ansible.builtin.user:
    name: php4dvd
    comment: Podman pphp4dvd
    group: php4dvd
    shell: /sbin/nologin

- name: Enable user lingering
  ansible.builtin.command:
    argv:
      - loginctl
      - enable-linger
      - php4dvd
    creates: /var/lib/systemd/linger/php4dvd

- name: Copy host key
  ansible.builtin.copy:
    dest: "{{ tls_private }}/php4dvd.key"
    src: "{{ tls_private }}/{{ inventory_hostname }}.key"
    mode: "0640"
    owner: root
    group: php4dvd
    remote_src: true

- name: Get container source
  ansible.builtin.git:
    dest: /usr/local/src/docker-php4dvd
    repo: https://github.com/foo-sh/docker-php4dvd.git
    update: true
    version: master
  notify: Rebuild php4dvd-container

- name: Create service file
  ansible.builtin.template:
    dest: /etc/systemd/system/php4dvd-container.service
    src: php4dvd-container.service.j2
    mode: "0644"
    owner: root
    group: "{{ ansible_wheel }}"

- name: Create service config
  ansible.builtin.template:
    dest: /etc/sysconfig/php4dvd-container
    src: php4dvd-container.sysconfig.j2
    mode: "0600"
    owner: root
    group: "{{ ansible_wheel }}"
  notify: Restart php4dvd-container

- name: Enable service
  ansible.builtin.service:
    name: php4dvd-container
    state: started
    enabled: true

- name: Copy nginx config
  ansible.builtin.copy:
    dest: "/etc/nginx/conf.d/{{ inventory_hostname }}/php4dvd-container.conf"
    content: |
      location /php4dvd {
        proxy_pass http://127.0.0.1:8005/;
      }
    mode: "0644"
    owner: root
    group: "{{ ansible_wheel }}"
  notify: Restart nginx