mono-infrastructure/ansible/playbooks/role-rocky-ipa-replica.yml

---
# Creates an IPA replica

- name: Configure IPA server
  hosts: ipareplicas
  become: true
  vars_files:
  - vars/encpass.yml

  # This is to try to avoid the handler issue in pre/post tasks
  handlers:
    - include: handlers/main.yml

  pre_tasks:
    - name: Check if ansible cannot be run here
      stat:
        path: /etc/no-ansible
      register: no_ansible

    - name: Verify if we can run ansible
      assert:
        that:
          - "not no_ansible.stat.exists"
        msg: "/etc/no-ansible exists - skipping run on this node"

    - name: Ensure 'dns=none' is set for Network Manager
      ini_file:
        path: /etc/NetworkManager/NetworkManager.conf
        state: present
        no_extra_spaces: true
        section: main
        option: dns
        value: none
        owner: root
        group: root
        mode: '0644'
        backup: true
      notify:
        - reload_networkmanager

    - name: Ensure resolv.conf is pointing to main master
      template:
        src: etc/resolv.conf.j2
        dest: /etc/resolv.conf
        owner: root
        group: root
        mode: '0644'
        backup: true
      notify:
        - reload_networkmanager

  roles:
    - role: ipareplica
      state: present

  post_tasks:
    - name: Touching run file that ansible has ran here
      file:
        path: /var/log/ansible.run
        state: touch
        mode: '0644'
        owner: root
        group: root