---
- name: Deploy letsencrypt certificate
  ansible.builtin.include_role:
    name: add_cert_dns_01
  vars:
    letsencrypt_domain: "{{ tunuifranken_domain }}"
    letsencrypt_email: "{{ tunuifranken_server_admin }}"

- name: Create tunuifranken directory
  become: true
  ansible.builtin.file:
    path: "/var/www/{{ tunuifranken_domain }}"
    owner: "{{ tunuifranken_apache2_owner }}"
    group: "{{ tunuifranken_apache2_group }}"
    state: directory
    mode: 0775

- name: Copy vHost conf
  become: true
  ansible.builtin.template:
    src: apache2/vhost.conf.j2
    dest: "/etc/apache2/sites-available/{{ tunuifranken_domain }}.conf"
    mode: 0644
  notify: Reload apache2 service

- name: Activate vHost
  become: true
  ansible.builtin.command: "a2ensite {{ tunuifranken_domain }}.conf"
  register: result
  changed_when: "'already enabled' not in result.stdout"
  notify: Reload apache2 service

- name: Install git
  become: true
  ansible.builtin.apt:
    name: git
    state: present

- name: Create .ssh dir
  ansible.builtin.file:
    path: ~/.ssh
    mode: 0700

- name: Add SSH public key
  ansible.builtin.copy:
    content: "{{ tunuifranken_ssh_keys.pub }}"
    dest: ~/.ssh/id_rsa.pub
    mode: 0644

- name: Add SSH private key
  ansible.builtin.copy:
    content: "{{ tunuifranken_ssh_keys.priv }}"
    dest: ~/.ssh/id_rsa
    mode: 0600

- name: Clone tunuifranken.info repo
  ansible.builtin.git:
    repo: git@tunuifranken.info:flyingscorpio/tunuifranken.info.git
    dest: "/var/www/{{ tunuifranken_domain }}"
    clone: true
    version: main
    update: false
    accept_newhostkey: true