Fix yaml lint

2026-04-11 12:52:10 +07:00 · 2021-09-01 11:21:12 +02:00
parent bdddb06fcc
commit 6c7e0c2a47
18 changed files with 192 additions and 198 deletions
--- a/tasks/ssl/acme.yml
+++ b/tasks/ssl/acme.yml
@@ -20,79 +20,79 @@
 - name: BLOCK | Start acme
  block:

-  - name: TEMPLATE | Create fake site
-    template:
-      src: "etc/nginx/conf.d/FAKESITE.conf.j2"
-      dest: "{{ nginx_etc_dir }}/conf.d/FAKESITE_{{ item | nginx_site_name }}.conf"
-    loop: "{{ acme_create }}"
-    register: fake_site
+    - name: TEMPLATE | Create fake site
+      template:
+        src: "etc/nginx/conf.d/FAKESITE.conf.j2"
+        dest: "{{ nginx_etc_dir }}/conf.d/FAKESITE_{{ item | nginx_site_name }}.conf"
+      loop: "{{ acme_create }}"
+      register: fake_site

-  - name: FILE | Delete current site if needed
-    file:
-      path: "{{ nginx_etc_dir }}/sites-enabled/{{ item | nginx_site_name }}"
-      state: absent
-    loop: "{{ acme_create }}"
-    when: fake_site.changed
+    - name: FILE | Delete current site if needed
+      file:
+        path: "{{ nginx_etc_dir }}/sites-enabled/{{ item | nginx_site_name }}"
+        state: absent
+      loop: "{{ acme_create }}"
+      when: fake_site.changed

-  - name: SERVICE | Restart nginx
-    service:
-      name: nginx
-      state: restarted
-    when: fake_site.changed and ansible_virtualization_type != 'docker'
+    - name: SERVICE | Restart nginx
+      service:
+        name: nginx
+        state: restarted
+      when: fake_site.changed and ansible_virtualization_type != 'docker'

-  - name: COMMAND | Restart nginx
-    command: service nginx restart
-    args:
-      warn: false
-    when: fake_site.changed and ansible_virtualization_type == 'docker'
+    - name: COMMAND | Restart nginx
+      command: service nginx restart
+      args:
+        warn: false
+      when: fake_site.changed and ansible_virtualization_type == 'docker'

-  - name: COMMAND | Get certificates
-    command: |
-      {{ nginx_acmesh_bin }}
-        --home {{ nginx_acmesh_dir }}
-        --issue{% for s in nginx_sites | nginx_search_by_ssl_name(item.name) | nginx_all_site_names %} -d {{ s }}{% endfor %}
-        --nginx
-        {% if nginx_acmesh_test %}--test --log{% endif %}
-    args:
-      creates: "{{ nginx_acmesh_dir }}/{{ item | nginx_site_name }}/fullchain.cer"
-    loop: "{{ acme_create }}"
-    register: acme_get
-    failed_when: acme_get.rc != 0 and acme_get.rc != 2
-    no_log: "{{ not nginx_debug_role }}"
+    - name: COMMAND | Get certificates
+      command: |
+        {{ nginx_acmesh_bin }}
+          --home {{ nginx_acmesh_dir }}
+          --issue{% for s in nginx_sites | nginx_search_by_ssl_name(item.name) | nginx_all_site_names %} -d {{ s }}{% endfor %}
+          --nginx
+          {% if nginx_acmesh_test %}--test --log{% endif %}
+      args:
+        creates: "{{ nginx_acmesh_dir }}/{{ item | nginx_site_name }}/fullchain.cer"
+      loop: "{{ acme_create }}"
+      register: acme_get
+      failed_when: acme_get.rc != 0 and acme_get.rc != 2
+      no_log: "{{ not nginx_debug_role }}"

-  - name: FILE | Create SSL dir per site
-    file:
-      path: "{{ nginx_ssl_dir }}/{{ item | nginx_site_name }}"
-    loop: "{{ acme_create }}"
+    - name: FILE | Create SSL dir per site
+      file:
+        path: "{{ nginx_ssl_dir }}/{{ item | nginx_site_name }}"
+      loop: "{{ acme_create }}"

-  - name: COMMAND | Install certificates
-    command: |
-      {{ nginx_acmesh_bin }}
-        --home {{ nginx_acmesh_dir }}
-        --install-cert -d {{ nginx_sites | nginx_search_by_ssl_name(item | nginx_site_name) | nginx_site_name }}
-        --fullchain-file {{ item | nginx_cert_path(nginx_ssl_dir) }}
-        --key-file {{ item | nginx_key_path(nginx_ssl_dir) }}
-        --reloadcmd "service nginx reload"
-    args:
-      creates: "{{ item | nginx_cert_path(nginx_ssl_dir) }}"
-    loop: "{{ nginx_ssl_pairs }}"
-    when: item.acme is defined and item.acme
-    notify: restart nginx
+    - name: COMMAND | Install certificates
+      command: |
+        {{ nginx_acmesh_bin }}
+          --home {{ nginx_acmesh_dir }}
+          --install-cert -d {{ nginx_sites | nginx_search_by_ssl_name(item | nginx_site_name) | nginx_site_name }}
+          --fullchain-file {{ item | nginx_cert_path(nginx_ssl_dir) }}
+          --key-file {{ item | nginx_key_path(nginx_ssl_dir) }}
+          --reloadcmd "service nginx reload"
+      args:
+        creates: "{{ item | nginx_cert_path(nginx_ssl_dir) }}"
+      loop: "{{ nginx_ssl_pairs }}"
+      when: item.acme is defined and item.acme
+      notify: restart nginx

  rescue:

-  - name: FAIL | Explicit
-    fail:
-      msg: "Something is bad... Auto crash!"
+    - name: FAIL | Explicit
+      fail:
+        msg: "Something is bad... Auto crash!"

  always:

-  - name: FILE | Delete fake sites
-    file:
-      path: "{{ nginx_etc_dir }}/conf.d/FAKESITE_{{ item | nginx_site_name }}.conf"
-      state: absent
-    loop: "{{ acme_create }}"
-    notify: restart nginx
+    - name: FILE | Delete fake sites
+      file:
+        path: "{{ nginx_etc_dir }}/conf.d/FAKESITE_{{ item | nginx_site_name }}.conf"
+        state: absent
+      loop: "{{ acme_create }}"
+      notify: restart nginx

-  - name: META | Flush handlers
-    meta: flush_handlers
+    - name: META | Flush handlers
+      meta: flush_handlers
--- a/tasks/ssl/standard.yml
+++ b/tasks/ssl/standard.yml
@@ -5,7 +5,7 @@
  - name: STAT | Get info about DH file
    stat:
      path: "{{ nginx_dh_path }}"
-      get_checksum: no
+      get_checksum: false
    register: stat_dh_file

  - name: SHELL | Get info about DH file
@@ -56,8 +56,6 @@
  notify: restart nginx
  no_log: "{{ not nginx_debug_role }}"

-
-
 - name: COMMAND | Create self-signed certificates
  command: |
    openssl req