-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathteamspeak.yaml
128 lines (122 loc) · 3.27 KB
/
teamspeak.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
---
- name: Create user
hosts: teamspeak
vars:
user: teamspeak
group: "{{ user }}"
home: /srv/{{ user }}
tasks:
- name: Create user
become: yes
ansible.builtin.user:
name: "{{ user }}"
system: yes
home: "{{ home }}"
- name: Set up TS3 server
hosts: teamspeak
become: yes
become_user: "{{ user }}"
vars:
user: teamspeak
group: "{{ user }}"
home: /srv/{{ user }}
dir: "{{ home }}/server"
ufw_apps:
- { file: ts3, app: TS3 }
tasks:
#- name: Create mission upload group
# ansible.builtin.group:
# name: mission_upload
#- name: Create user
# become: yes
# ansible.builtin.user:
# name: "{{ user }}"
# system: yes
# home: "{{ home }}"
#- name: Add missionbot to upload group
# ansible.builtin.user:
# name: missionbot
# groups: mission_upload
# append: yes
- name: Check if server exists
ansible.builtin.stat:
path: "{{ home }}/server/ts3server"
register: ts3
- ansible.builtin.tempfile:
state: file
suffix: .bz2
register: downloaded_file
when: not ts3.stat.exists
- name: Download TS3 server
ansible.builtin.get_url:
url: "https://files.teamspeak-services.com/releases/server/3.13.7/teamspeak3-server_linux_amd64-3.13.7.tar.bz2"
dest: "{{ downloaded_file.path }}"
checksum: sha256:775a5731a9809801e4c8f9066cd9bc562a1b368553139c1249f2a0740d50041e
when: downloaded_file is changed
- ansible.builtin.file:
state: directory
path: "{{ dir }}"
- name: Extract TS3 server
ansible.builtin.unarchive:
src: "{{ downloaded_file.path }}"
remote_src: yes
dest: "{{ dir }}"
extra_opts:
- --strip-components=1
when: downloaded_file is changed
- ansible.builtin.file:
state: absent
path: "{{ downloaded_file.path }}"
when: downloaded_file is changed
- name: Create license file
ansible.builtin.file:
state: touch
path: "{{ dir }}/.ts3server_license_accepted"
modification_time: preserve
access_time: preserve
- name: Create service
become: yes
become_user: root
ansible.builtin.template:
src: files/teamspeak/systemd.service.j2
dest: /etc/systemd/system/{{ user }}.service
#vars:
# user: "{{ user }}"
# description: "{{ item.description }}"
# module: "{{ item.module }}"
notify:
- Reload systemd
- name: Run TS3
become: yes
become_user: root
ansible.builtin.systemd:
state: started
enabled: yes
name: "{{ user }}"
- ansible.builtin.debug:
msg: >-
If this is a new installation of TS3, remember to save the serveradmin
token from the server's stdout (journal)
when: downloaded_file is changed
# UFW
# TODO: move into a role
- name: Install UFW apps
become: yes
become_user: root
ansible.builtin.copy:
src: "files/ufw/applications.d/{{ item.file }}"
dest: "/etc/ufw/applications.d/{{ item.file }}"
loop: "{{ ufw_apps }}"
- name: Enable UFW rules
become: yes
become_user: root
community.general.ufw:
rule: allow
name: "{{ item.app }}"
loop: "{{ ufw_apps }}"
handlers:
- name: Reload systemd
become: yes
become_user: root
ansible.builtin.systemd:
daemon_reload: yes