- name: "create groups"
  group:
    name: "{{ item }}"
  with_items:
    - _effiapi
    - _effireg

- name: "create users"
  user:
    name: "{{ item }}"
    group: "{{ item }}"
    shell: /bin/false
  with_items:
    - _effiapi
    - _effireg

- name: "create directory for effi-reg source"
  file:
    state: directory
    path: "/srv/effireg"

- name: "create log directories"
  file:
    state: directory
    path: "/var/log/{{ item }}"
    owner: "_{{ item }}"
    group: "_{{ item }}"
    mode: 0755
  with_items:
    - effiapi
    - effireg

- name: "install git"
  apt:
    name: git

- name: "deploy from git"
  git:
    repo: "git://git.liw.fi/effi-reg"
    dest: "/srv/effireg"

- name: "install token signing public key"
  copy:
    content: "{{ qvisqve_token_public_key }}"
    dest: "/etc/effiapi.pub"

- name: "install configuration files"
  copy:
    src: "{{ item }}.json"
    dest: "/etc/{{ item }}.json"
  with_items:
    - effiapi
    - effireg

- name: "install .service files"
  copy:
    remote_src: yes
    src: "/srv/effireg/{{ item }}.service"
    dest: /lib/systemd/system
  with_items:
    - effiapi
    - effireg

- name: "(re)start services"
  systemd:
    name: "{{ item }}"
    enabled: yes
    state: restarted
    daemon_reload: yes
  with_items:
    - effiapi
    - effireg