unify tasks with tops - ansible-taler-exchange - Ansible playbook to deploy a production Taler Exchange

commit 108f568b194ed8aebc090731df105a9e05ae9dbd
parent 4ae7efece2a92f9e8d1f9d5866f71224bdce44b2
Author: Christian Grothoff <christian@grothoff.org>
Date:   Sun, 24 Nov 2024 08:47:02 +0100

unify tasks with tops

Diffstat:
M roles/exchange/tasks/main.yml  | 28 +++++++++++++++++++++++-----

1 file changed, 23 insertions(+), 5 deletions(-)
diff --git a/roles/exchange/tasks/main.yml b/roles/exchange/tasks/main.yml
@@ -15,7 +15,7 @@
 - name: Ensure Taler exchange virtualhost configuration file exists
   template:
     src: templates/etc/nginx/sites-available/exchange-nginx.conf.j2
-    dest: "/etc/nginx/sites-available/exchange-nginx.conf"
+    dest: /etc/nginx/sites-available/exchange-nginx.conf
     owner: root
     group: root
     mode: 0644
@@ -30,7 +30,7 @@
 - name: Place taler-exchange business config
   ansible.builtin.template:
     src: templates/etc/taler-exchange/conf.d/exchange-business.conf.j2
-    dest: "/etc/taler-exchange/conf.d/exchange-business.conf"
+    dest: /etc/taler-exchange/conf.d/exchange-business.conf
     owner: root
     group: root
     mode: 0644
@@ -38,7 +38,7 @@
 - name: Place taler-exchange denominations config
   ansible.builtin.template:
     src: templates/etc/taler-exchange/conf.d/denominations.conf.j2
-    dest: "/etc/taler-exchange/conf.d/denominations.conf"
+    dest: /etc/taler-exchange/conf.d/denominations.conf
     owner: root
     group: root
     mode: 0644
@@ -46,7 +46,7 @@
 - name: Place taler-exchange account credentials
   ansible.builtin.template:
     src: templates/etc/taler-exchange/secrets/exchange-accountcredentials-primary.secret.conf.j2
-    dest: "/etc/taler-exchange/secrets/exchange-accountcredentials-primary.secret.conf"
+    dest: /etc/taler-exchange/secrets/exchange-accountcredentials-primary.secret.conf
     owner: taler-exchange-wire
     group: root
     mode: 0400
@@ -54,11 +54,29 @@
 - name: Place taler-exchange external KYC provider configuration
   ansible.builtin.template:
     src: templates/etc/taler-exchange/secrets/exchange-kyc-providers.secret.conf.j2
-    dest: "/etc/taler-exchange/secrets/exchange-kyc-providers.secret.conf"
+    dest: /etc/taler-exchange/secrets/exchange-kyc-providers.secret.conf
     owner: taler-exchange-httpd
     group: root
     mode: 0400
 
+- name: Place taler-exchange AML program environment
+  ansible.builtin.template:
+    src: templates/etc/taler-exchange/taler-exchange.env.j2
+    dest: /etc/taler-exchange/taler-exchange.env
+    owner: taler-exchange-httpd
+    group: root
+    mode: 0400
+
+- name: Check if we have kyc-rules (depends on branch)
+  local_action: stat path=files/etc/taler-exchange/config.d/kyc-rules.conf
+  register: kyc-rules.conf
+
+- name: Place taler-exchange KYC configuration (if exists)
+  copy:
+    src: files/etc/taler-exchange/config.d/kyc-rules.conf
+    dest: /etc/taler-exchange/config.d/kyc-rules.conf
+    when: kyc-rules.conf.stat.exists
+
 - name: Setup Taler Exchange database
   shell:
     cmd: taler-exchange-dbconfig -c /etc/taler-exchange/taler-exchange.conf

	ansible-taler-exchange Ansible playbook to deploy a production Taler Exchange
	Log \| Files \| Refs \| Submodules \| README \| LICENSE