- name: Install VPNs
  apt:
    state: present
    pkg:
        - openvpn
        - docker-compose

- name: OpenVPN configs dirs
  file:
    name: "/etc/openvpn/{{ item }}"
    state: directory
  with_items:
    - atlantishq

- name: Create OpenVPN config dirs
  file:
    dest: "/etc/openvpn/{{ item.name }}-{{ item.dev_type }}/"
    state: directory
  with_items:
    - { "name" : "atlantishq", "dev_type" : "tap", "port" : 7012, "proto" : "tcp" }
    - { "name" : "atlantishq", "dev_type" : "tun", "port" : 7013, "proto" : "tcp" }

- name: Deploy OpenVPN configs
  template:
    src: "{{ item.name }}.conf"
    dest: "/etc/openvpn/{{ item.name }}-{{ item.dev_type }}/{{ item.name }}-{{ item.dev_type }}.conf"
  with_items:
    - { "name" : "atlantishq", "dev_type" : "tap", "port" : 7012, "proto" : "tcp" }
    - { "name" : "atlantishq", "dev_type" : "tun", "port" : 7013, "proto" : "tcp" }

- name: Openvpn Mgnt interface Pass file
  copy:
    content: "{{ openvpn_management_password }}"
    dest: "/etc/openvpn/{{ openvpn_management_passfile }}"

- name: Create data-dir
  file:
    name: /data/
    state: directory

- name: Create data-dir (client-config-dir)
  file:
    name: /data/certificate-manager/client-config-dir/
    state: directory

- name: Create opt-dir
  file:
    name: /opt/
    state: directory

- name: Certificate Manager Data Dir
  file:
    name: /data/certificate-manager/
    state: directory

- name: Cert Manager Config
  template:
    src: cert-manager-conf.py
    dest: /data/certificate-manager/config.py

- name: Create compose directories
  file:
    name: "/opt/{{ item }}/"
    state: directory
  with_items:
    - certificate-manager
    - atlantis-ip-gate

- name: Copy compose templates
  template:
    src: "{{ item }}.yaml"
    dest: "/opt/{{ item }}/"
  with_items:
    - certificate-manager
    - atlantis-ip-gate

- name: Deploy compose templates
  community.docker.docker_compose:
    project_src: "/opt/{{ item }}/"
    pull: true
    files:
      - "{{ item }}.yaml"
  with_items:
      - certificate-manager
      - atlantis-ip-gate

# setup oauth proxy #
- name: include services ports
  include_vars: services.yaml

- name: OAuth2Proxy directories
  file:
    path: "/opt/oauth2proxy/{{ item }}/"
    state: directory
    recurse: yes
  with_items:
    - cert-manager

- name: Deploy OAuth2Proxy compose files
  template:
    src: oauth-standalone-docker-compose.yaml
    dest: "/opt/oauth2proxy/{{ item }}/docker-compose.yaml"
  with_items:
    - cert-manager

- name: Deploy OAuth2Proxy
  community.docker.docker_compose:
    project_src: /opt/oauth2proxy/{{ item }}/
    pull: true
  with_items:
    - cert-manager