ansible/roles/copr/base/tasks/main.yml

---
# tasklist for setting up copr
# This is the base set of files needed for copr


# again to late to do it here
# - import_tasks: "{{ tasks_path }}/cloud_setup_basic.yml"
# already included into the `base` role
# - import_tasks: "{{ tasks_path }}/postfix_basic.yml"

# To late to do it here (
# - name: Setup correct hostname for copr machine
#  hostname: name="{{ copr_hostbase }}.cloud.fedoraproject.org"
#  #  hostname: name="{{ hostbase|regex_replace('.*-$', '')}}.cloud.fedoraproject.org"
#  tags:
#  - config

- name: Enable epel for non-fedora hosts
  ansible.builtin.package: state=present pkg="epel-release"
  when: ansible_distribution != 'Fedora'

- name: Copy .forward file
  ansible.builtin.copy: src="{{ _forward_src }}" dest="/root/.forward" owner=root group=root
  tags:
  - config

- name: Deploy /etc/hosts file
  ansible.builtin.copy: src="hosts" dest=/etc/ owner=root group=root mode=644
  tags:
  - config

# https://bugzilla.redhat.com/show_bug.cgi?id=1941170
- name: Mask the systemd-oomd service
  systemd:
    name: systemd-oomd
    state: stopped
    enabled: no
    masked: yes
  when: ansible_distribution == 'Fedora'

- name: Configure crond
  ansible.builtin.copy: src=sysconfig.crond dest=/etc/sysconfig/crond
  notify: Restart crond

- name: Install base copr packages
  ansible.builtin.package:
    name:
      - acl  # useful for ansible acl module
      - bash-completion
      - cronie-anacron
      - ethtool
      - node-exporter
      - screen
      - tmux
    state: present
  tags:
    packages

- name: Install rsyslog-logrotate
  ansible.builtin.package: name=rsyslog-logrotate state=present
  when: ansible_distribution == 'Fedora'

- name: Configure anacrond to not send mails to root user
  lineinfile: dest=/etc/anacrontab
              backup=yes
              state=present
              line='MAILTO=copr-team@redhat.com'
              regexp="^MAILTO"
  notify: Restart crond

- name: Override the default rsyslog logrotate file
  ansible.builtin.copy: src=syslog-logrotate dest=/etc/logrotate.d/rsyslog
  tags:
  - logrotate
  when: ansible_distribution == 'Fedora'

- name: Install copr-selinux
  ansible.builtin.package:
    state: latest
    name: copr-selinux
  tags:
  - packages

- name: Start node exporter
  service: state=started enabled=yes name=node_exporter
  when:
    - "'pulp' not in inventory_hostname"

# - name: Check offloading
#   ansible.builtin.shell: "ethtool -k ens5 | egrep -q 'tcp-segmentation-offload: on|generic-receive-offload: on|generic-segmentation-offload: on'"
#   register: offloading
#   failed_when: offloading.rc == 2
#   changed_when: "1 != 1"
#   check_mode: no
#
# - name: Disable offloading
#   ansible.builtin.command: ethtool -K ens5 tso off gro off gso off
#   when:
#     - offloading.rc == 0
#     - ansible_distribution == 'Fedora'
#
# - name: Disable offloading (persitently)
#   ansible.builtin.shell: "nmcli con modify '{{ aws_ipv6_con }}' ethtool.feature-tso off ethtool.feature-gro off ethtool.feature-gso off"
#   when:
#     - offloading.rc == 0
#     - ansible_distribution == 'Fedora'
#   tags:
#   - config
#
# - name: Check we have the needed ipv6
#   ansible.builtin.shell: "nmcli con show '{{ aws_ipv6_con }}' | grep ipv6.addresses | grep {{ aws_ipv6_addr }}"
#   register: ipv6_config_check
#   failed_when: false
#   changed_when: ipv6_config_check.rc == 1
#   when:
#     - aws_ipv6_addr is defined
#   tags: ipv6_config
#
# - name: Setup ipv6 networking
#   ansible.builtin.shell: |
#     nmcli con modify '{{ aws_ipv6_con }}' ipv6.method auto ipv6.may-fail yes ipv6.never-default no ipv6.addresses '{{ aws_ipv6_addr }}'
#     nmcli con up '{{ aws_ipv6_con }}'
#   when:
#     - aws_ipv6_addr is defined
#     - ipv6_config_check.changed
#   tags: ipv6_config

- name: Install nrpe checks
  ansible.builtin.template: src=copr_nrpe.cfg
            dest=/etc/nrpe.d/copr_nrpe.cfg
  notify:
  - Restart nrpe
  tags:
  - nagios_client
  - copr_cdn
  - copr_ping

# - name: Enable and run logrotate service
#   service: name="logrotate" state=started

# https://github.com/fedora-copr/copr/issues/3439
- name: Install iptables-nft
  ansible.builtin.package: name=iptables-nft state=present
  register: iptables

- name: Remove iptables-legacy
  ansible.builtin.package: name=iptables-legacy state=absent

- name: Restart iptables
  service: name=iptables state=restarted
  when: iptables.changed
[WIP] Copr playbooks refactoring using ansible roles, new role for copr-keygen 2014-10-10 12:35:14 +02:00			`---`
			`# tasklist for setting up copr`
			`# This is the base set of files needed for copr`


[copr] set hostname before base role in all our playbooks; install copr.repo before package installation removed double include of some tasks 2015-03-18 09:38:23 +01:00			`# again to late to do it here`
switch all the include tasks to import tasks 2017-10-17 17:37:03 +00:00			`# - import_tasks: "{{ tasks_path }}/cloud_setup_basic.yml"`
[copr] set hostname before base role in all our playbooks; install copr.repo before package installation removed double include of some tasks 2015-03-18 09:38:23 +01:00			# already included into the `base` role
Fix majority of remaining yamllint warnings and errors Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-11-27 13:48:08 +10:00			`# - import_tasks: "{{ tasks_path }}/postfix_basic.yml"`
[copr] set hostname before base role in all our playbooks; install copr.repo before package installation removed double include of some tasks 2015-03-18 09:38:23 +01:00
			`# To late to do it here (`
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`# - name: Setup correct hostname for copr machine`
[copr] set hostname before base role in all our playbooks; install copr.repo before package installation removed double include of some tasks 2015-03-18 09:38:23 +01:00			`# hostname: name="{{ copr_hostbase }}.cloud.fedoraproject.org"`
			`# # hostname: name="{{ hostbase\|regex_replace('.*-$', '')}}.cloud.fedoraproject.org"`
			`# tags:`
			`# - config`
[WIP] Copr playbooks refactoring using ansible roles, new role for copr-keygen 2014-10-10 12:35:14 +02:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Enable epel for non-fedora hosts`
ansiblelint fixes - fqcn[action-core] - package to ansible.builtin.package Replaces many references to package: with ansible.builtin.package Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 13:22:42 +10:00			`ansible.builtin.package: state=present pkg="epel-release"`
[copr][base] use ansible_distribution != 'Fedora' to detect non fedora hosts 2015-07-21 17:45:58 +02:00			`when: ansible_distribution != 'Fedora'`
[copr][base] enable epel for non-fedora hosts 2015-07-21 16:41:56 +02:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Copy .forward file`
ansiblelint fixes-- fqcn[action-core] - copy to ansible.builtin.copy Replaces many references to 'copy' with ansible.builtin.copy Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-18 08:23:28 +10:00			`ansible.builtin.copy: src="{{ _forward_src }}" dest="/root/.forward" owner=root group=root`
add tags config to some copr base tasks 2016-02-17 09:50:06 +01:00			`tags:`
			`- config`
[WIP] Copr playbooks refactoring using ansible roles, new role for copr-keygen 2014-10-10 12:35:14 +02:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Deploy /etc/hosts file`
ansiblelint fixes-- fqcn[action-core] - copy to ansible.builtin.copy Replaces many references to 'copy' with ansible.builtin.copy Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-18 08:23:28 +10:00			`ansible.builtin.copy: src="hosts" dest=/etc/ owner=root group=root mode=644`
add tags config to some copr base tasks 2016-02-17 09:50:06 +01:00			`tags:`
			`- config`
[WIP] Copr playbooks refactoring using ansible roles, new role for copr-keygen 2014-10-10 12:35:14 +02:00
copr: mask the systemd-oomd service 2023-01-09 11:39:25 +01:00			`# https://bugzilla.redhat.com/show_bug.cgi?id=1941170`
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Mask the systemd-oomd service`
copr: mask the systemd-oomd service 2023-01-09 11:39:25 +01:00			`systemd:`
			`name: systemd-oomd`
			`state: stopped`
			`enabled: no`
			`masked: yes`
copr: mask systemd-oomd only on Fedora hosts The copr-pulp instance will run on RHEL8 and systemd-oomd is not installed there. 2023-08-20 19:22:44 +02:00			`when: ansible_distribution == 'Fedora'`
copr: use SwapUsedLimit=80 for systemd-oomd on all copr servers 2022-11-29 22:24:33 +01:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Configure crond`
ansiblelint fixes-- fqcn[action-core] - copy to ansible.builtin.copy Replaces many references to 'copy' with ansible.builtin.copy Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-18 08:23:28 +10:00			`ansible.builtin.copy: src=sysconfig.crond dest=/etc/sysconfig/crond`
Use first uppercase letter for all handlers This will unify all the handlers to use first uppercase letter for ansible-lint to stop complaining. I went through all `notify:` occurrences and fixed them by running ``` set TEXT "text_to_replace"; set REPLACEMENT "replacement_text"; git grep -rlz "$TEXT" . \| xargs -0 sed -i "s/$TEXT/$REPLACEMENT/g" ``` Then I went through all the changes and removed the ones that wasn't expected to be changed. Fixes https://pagure.io/fedora-infrastructure/issue/12391 Signed-off-by: Michal Konecny <mkonecny@redhat.com> 2025-02-07 13:51:07 +01:00			`notify: Restart crond`
copr: base: don't send emails to root Send the mails to praiskup@redhat.com for now, till we solve what to do about it. 2020-02-26 14:57:58 +01:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Install base copr packages`
ansiblelint fixes - fqcn[action-core] - package to ansible.builtin.package Replaces many references to package: with ansible.builtin.package Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 13:22:42 +10:00			`ansible.builtin.package:`
copr/base: override rsyslog logrotate config Copy-paste the stuff others use in this repository. While on it, assure logrotate is installed on copr boxes, and install the packages by a single 'package' statement. 2023-02-15 10:19:29 +01:00			`name:`
			`- acl # useful for ansible acl module`
			`- bash-completion`
			`- cronie-anacron`
			`- ethtool`
copr-base: golang-github-prometheus-node-exporter was renamed to node-exporter 2024-11-27 21:22:02 +01:00			`- node-exporter`
copr/base: override rsyslog logrotate config Copy-paste the stuff others use in this repository. While on it, assure logrotate is installed on copr boxes, and install the packages by a single 'package' statement. 2023-02-15 10:19:29 +01:00			`- screen`
			`- tmux`
			`state: present`
			`tags:`
			`packages`
copr/base: install cronie-anacrontab ... right before we try to configure it. 2020-11-11 13:52:37 +01:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Install rsyslog-logrotate`
ansiblelint fixes - fqcn[action-core] - package to ansible.builtin.package Replaces many references to package: with ansible.builtin.package Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 13:22:42 +10:00			`ansible.builtin.package: name=rsyslog-logrotate state=present`
copr/base: use rsyslog-logrotate only on Fedora It isn't available in EPEL8 2023-08-20 19:31:22 +02:00			`when: ansible_distribution == 'Fedora'`

Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Configure anacrond to not send mails to root user`
copr: base: don't send emails to root Send the mails to praiskup@redhat.com for now, till we solve what to do about it. 2020-02-26 14:57:58 +01:00			`lineinfile: dest=/etc/anacrontab`
			`backup=yes`
			`state=present`
copr/base: forward cron output to copr-team 2023-02-21 09:08:23 +01:00			`line='MAILTO=copr-team@redhat.com'`
copr: base: don't send emails to root Send the mails to praiskup@redhat.com for now, till we solve what to do about it. 2020-02-26 14:57:58 +01:00			`regexp="^MAILTO"`
Use first uppercase letter for all handlers This will unify all the handlers to use first uppercase letter for ansible-lint to stop complaining. I went through all `notify:` occurrences and fixed them by running ``` set TEXT "text_to_replace"; set REPLACEMENT "replacement_text"; git grep -rlz "$TEXT" . \| xargs -0 sed -i "s/$TEXT/$REPLACEMENT/g" ``` Then I went through all the changes and removed the ones that wasn't expected to be changed. Fixes https://pagure.io/fedora-infrastructure/issue/12391 Signed-off-by: Michal Konecny <mkonecny@redhat.com> 2025-02-07 13:51:07 +01:00			`notify: Restart crond`
copr: move crond config into base role 2019-08-04 20:57:28 +02:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Override the default rsyslog logrotate file`
ansiblelint fixes-- fqcn[action-core] - copy to ansible.builtin.copy Replaces many references to 'copy' with ansible.builtin.copy Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-18 08:23:28 +10:00			`ansible.builtin.copy: src=syslog-logrotate dest=/etc/logrotate.d/rsyslog`
copr: squash_actions is deprecated 2019-04-02 10:27:12 +02:00			`tags:`
copr/base: override rsyslog logrotate config Copy-paste the stuff others use in this repository. While on it, assure logrotate is installed on copr boxes, and install the packages by a single 'package' statement. 2023-02-15 10:19:29 +01:00			`- logrotate`
copr/base: use rsyslog-logrotate only on Fedora It isn't available in EPEL8 2023-08-20 19:31:22 +02:00			`when: ansible_distribution == 'Fedora'`
Install latest copr-selinux 2019-02-12 13:30:57 +01:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Install copr-selinux`
ansiblelint fixes - fqcn[action-core] - package to ansible.builtin.package Replaces many references to package: with ansible.builtin.package Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 13:22:42 +10:00			`ansible.builtin.package:`
copr/base: override rsyslog logrotate config Copy-paste the stuff others use in this repository. While on it, assure logrotate is installed on copr boxes, and install the packages by a single 'package' statement. 2023-02-15 10:19:29 +01:00			`state: latest`
			`name: copr-selinux`
copr: move installation of node_exporter to copr base role 2021-12-06 11:18:34 +01:00			`tags:`
			`- packages`

Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Start node exporter`
copr-base: golang-github-prometheus-node-exporter was renamed to node-exporter 2024-11-27 21:22:02 +01:00			`service: state=started enabled=yes name=node_exporter`
			`when:`
			`- "'pulp' not in inventory_hostname"`
copr/base, copr-fe: don't restart prometheus exporter all the time 2022-11-23 12:17:34 +01:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`# - name: Check offloading`
ansiblelint fixes - fqcn[action-core] - shell to ansible.builtin.shell Replaces references to shell: with ansible.builtin.shell Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 16:42:30 +10:00			`# ansible.builtin.shell: "ethtool -k ens5 \| egrep -q 'tcp-segmentation-offload: on\|generic-receive-offload: on\|generic-segmentation-offload: on'"`
copr: avoid the ipv6/offloading kludges Neither of those survives reboot, yet network seems to work. 2024-11-29 20:22:42 +01:00			`# register: offloading`
			`# failed_when: offloading.rc == 2`
			`# changed_when: "1 != 1"`
			`# check_mode: no`
			`#`
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`# - name: Disable offloading`
ansiblelint fixes-- fqcn[action-core] - command to ansible.builtin.command Replaces many references to command: with ansible.builtin.command Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 11:22:24 +10:00			`# ansible.builtin.command: ethtool -K ens5 tso off gro off gso off`
copr: avoid the ipv6/offloading kludges Neither of those survives reboot, yet network seems to work. 2024-11-29 20:22:42 +01:00			`# when:`
			`# - offloading.rc == 0`
			`# - ansible_distribution == 'Fedora'`
			`#`
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`# - name: Disable offloading (persitently)`
ansiblelint fixes - fqcn[action-core] - shell to ansible.builtin.shell Replaces references to shell: with ansible.builtin.shell Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 16:42:30 +10:00			`# ansible.builtin.shell: "nmcli con modify '{{ aws_ipv6_con }}' ethtool.feature-tso off ethtool.feature-gro off ethtool.feature-gso off"`
copr: avoid the ipv6/offloading kludges Neither of those survives reboot, yet network seems to work. 2024-11-29 20:22:42 +01:00			`# when:`
			`# - offloading.rc == 0`
			`# - ansible_distribution == 'Fedora'`
			`# tags:`
			`# - config`
			`#`
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`# - name: Check we have the needed ipv6`
ansiblelint fixes - fqcn[action-core] - shell to ansible.builtin.shell Replaces references to shell: with ansible.builtin.shell Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 16:42:30 +10:00			`# ansible.builtin.shell: "nmcli con show '{{ aws_ipv6_con }}' \| grep ipv6.addresses \| grep {{ aws_ipv6_addr }}"`
copr: avoid the ipv6/offloading kludges Neither of those survives reboot, yet network seems to work. 2024-11-29 20:22:42 +01:00			`# register: ipv6_config_check`
			`# failed_when: false`
			`# changed_when: ipv6_config_check.rc == 1`
			`# when:`
			`# - aws_ipv6_addr is defined`
			`# tags: ipv6_config`
			`#`
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`# - name: Setup ipv6 networking`
ansiblelint fixes - fqcn[action-core] - shell to ansible.builtin.shell Replaces references to shell: with ansible.builtin.shell Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 16:42:30 +10:00			`# ansible.builtin.shell: \|`
copr: avoid the ipv6/offloading kludges Neither of those survives reboot, yet network seems to work. 2024-11-29 20:22:42 +01:00			`# nmcli con modify '{{ aws_ipv6_con }}' ipv6.method auto ipv6.may-fail yes ipv6.never-default no ipv6.addresses '{{ aws_ipv6_addr }}'`
			`# nmcli con up '{{ aws_ipv6_con }}'`
			`# when:`
			`# - aws_ipv6_addr is defined`
			`# - ipv6_config_check.changed`
			`# tags: ipv6_config`
copr: auto-setup the ipv6 configuration Turns out that, even though IPv6 is configured on the initial VM boot, the IPv6 needs manual tweeks and reboot (or nmcli dance). Related to: https://pavel.raiskup.cz/blog/switch-fedora-box-to-ipv6-in-aws.html 2021-11-30 13:28:59 +01:00
Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`- name: Install nrpe checks`
ansiblelint fixes - fqcn[action-core] - template to ansible.builtin.template Replaces references to template: with ansible.builtin.template Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-13 12:24:19 +10:00			`ansible.builtin.template: src=copr_nrpe.cfg`
copr: add nagios checks for copr servers 2022-01-21 12:42:18 +01:00			`dest=/etc/nrpe.d/copr_nrpe.cfg`
			`notify:`
Fix renamed handler for restart nrpe Signed-off-by: Kevin Fenzi <kevin@scrye.com> 2025-01-24 14:01:45 -08:00			`- Restart nrpe`
copr: add nagios checks for copr servers 2022-01-21 12:42:18 +01:00			`tags:`
			`- nagios_client`
			`- copr_cdn`
			`- copr_ping`

Fix name[casing] ansible-lint issues fix 1900 failures of the following case issue: `name[casing]: All names should start with an uppercase letter.` Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2025-01-14 20:18:57 +10:00			`# - name: Enable and run logrotate service`
Revert "Revert "copr: temporarily don't start logrotate"" This reverts commit be6005f32433dcc37686f8eccfcc973961dcf3d8. 2019-09-04 17:59:41 +02:00			`# service: name="logrotate" state=started`
copr-base: make sure we don't use iptables-legacy See https://github.com/fedora-copr/copr/issues/3439 2024-11-30 23:57:50 +01:00
			`# https://github.com/fedora-copr/copr/issues/3439`
			`- name: Install iptables-nft`
ansiblelint fixes - fqcn[action-core] - package to ansible.builtin.package Replaces many references to package: with ansible.builtin.package Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 13:22:42 +10:00			`ansible.builtin.package: name=iptables-nft state=present`
copr-base: make sure we don't use iptables-legacy See https://github.com/fedora-copr/copr/issues/3439 2024-11-30 23:57:50 +01:00			`register: iptables`

			`- name: Remove iptables-legacy`
ansiblelint fixes - fqcn[action-core] - package to ansible.builtin.package Replaces many references to package: with ansible.builtin.package Signed-off-by: Ryan Lerch <rlerch@redhat.com> 2024-12-19 13:22:42 +10:00			`ansible.builtin.package: name=iptables-legacy state=absent`
copr-base: make sure we don't use iptables-legacy See https://github.com/fedora-copr/copr/issues/3439 2024-11-30 23:57:50 +01:00
			`- name: Restart iptables`
			`service: name=iptables state=restarted`
			`when: iptables.changed`