lmn-client/roles/lmn_vm/tasks/main.yml

---
- name: install libvirt packages
  apt:
    name:
      - libvirt-daemon-system
      - virt-manager
    state: latest
    autoremove: true
    default_release: "{{ ansible_distribution_release }}-backports"
  when: ansible_distribution_release == 'bullseye'

- name: install libvirt packages
  apt:
    name:
      - libvirt-daemon-system
      - virt-manager
    state: latest
    autoremove: true
  when: ansible_distribution_release == 'bookworm'

    #- name: allow all users to use VMs
    #  lineinfile:
    #    dest: /etc/libvirt/libvirtd.conf
    #    line: 'auth_unix_rw = "none"'
    #    insertafter: '#auth_unix_rw = "polkit"'
    #  notify: reload libvirtd

- name: autostart default network for VMs
  file:
    src: /etc/libvirt/qemu/networks/default.xml
    dest: /etc/libvirt/qemu/networks/autostart/default.xml
    state: link

- name: create system-user syncing VM-files and others
  ansible.builtin.user:
    name: lmnsynci
    comment: lmn sync user
    system: true

- name: create vm directory
  file:
    path: /lmn/vm
    state: directory
    owner: lmnsynci
    group: lmnsynci
    mode: 0755

- name: install squid
  apt:
    name:
      - squid
    state: latest
    autoremove: true

- name: disable squid
  systemd:
    name: squid
    enabled: false
    state: stopped

- name: deploy squid user mode configuration
  template:
    src: squid-usermode.conf.j2
    dest: /etc/squid/squid-usermode.conf
    mode: '0644'

- name: deploy sudo configurations
  copy:
    src: "{{ item }}"
    dest: "/etc/sudoers.d/90-{{ item }}"
    owner: root
    group: root
    mode: '0700'
  loop:
    - lmn-mounthome
    - lmn-sync-vm
    - lmn-upload-vm
    - lmn-link-images
    - lmn-startvirtiofsd

- name: deploy vmimages scripts
  copy:
    src: "{{ item }}"
    dest: /usr/local/bin/
    owner: root
    group: root
    mode: '0755'
  loop:
    - mounthome.sh
    - create-vm.sh
    - rebase-vm.sh
    - create-clone.sh
    - run-vm.sh
    - upload-vm.sh
    - sync-vm.sh
    - link-images.sh
    - start-virtiofsd.sh
    - linbo-torrenthelper.sh
    - vmimage-torrent

- name: Deploy linbo-torrent defaults
  copy:
    src: linbo-torrent
    dest: /etc/default/
    owner: root
    group: root
    mode: '0755'

- name: Deploy vmimage-torrent.service
  copy:
    src: vmimage-torrent.service
    dest: /etc/systemd/system/
    owner: root
    group: root
    mode: '0755'
  notify: "enable vmimage-torrent.service"

- name: Deploy bridge.conf needed for qemu session mode
  lineinfile:
    path: /etc/qemu/bridge.conf
    line: 'allow virbr0'
    create: True
    mode: '0655'

- name: Deploy rsync.secret
  lineinfile:
    path: /etc/rsync.secret
    line: "{{ rsyncsecret }}"
    create: True
    mode: '0600'

- name: Allow users to attach to bridge
  file:
    path: /usr/lib/qemu/qemu-bridge-helper
    mode: '4755'

- name: Deploy http proxy config
  copy:
    src: lmn-proxy.sh
    dest: /etc/profile.d/
    mode: '0644'

- name: Create directory for local .desktop-Files
  ansible.builtin.file:
    path: "{ item }"
    state: directory
    mode: '0755'
  loop:
    - /usr/local/share/applications
    - /usr/local/share/desktop-directories
  notify: Run update-desktop-database

- name: set owner lmnsynci for menu entry directory
  file:
    path: /usr/local/share/applications
    state: directory
    owner: lmnsynci

- name: Copy fvs.directory
  ansible.builtin.copy:
    src: fvs.directory
    dest: /usr/local/share/desktop-directories/
  notify: Run update-desktop-database

- name: Copy fvs.menu
  ansible.builtin.copy:
    src: fvs.menu
    dest: /etc/xdg/menus/applications-merged/
  notify: Run update-desktop-database

- name: sync .torrent, .xml and .desktop files and run update-desktop-database
  command: /usr/local/bin/sync-vm.sh -t
  become: true
  become_user: lmnsynci
  register: result
  changed_when: result.stdout | length > 0

#### VMs
#- name: Deploy initial image list
#  copy:
#    src: images.list
#    dest: /var/lib/libvirt/images/images.list
#    force: false
#
#- name: rsync VM image definitions
#  command: >
#    rsync -a --itemize-changes
#    rsync://server:/vmimages-download/xml /var/lib/libvirt/images/
#  become: true
#  become_user: lmnsynci
#  register: result
#  changed_when: result.stdout | length > 0
#  when: not run_in_installer | default(false) | bool
#
#- name: rsync VM images
#  command: >
#    rsync -a -i --files-from=/lmn/lib/libvirt/images/images.list
#    rsync://server:/vmimages-download/ /var/lib/libvirt/images/
#  become: true
#  become_user: lmnsynci
#  register: result
#  changed_when: result.stdout | length > 0
#  when: >
#    false and not run_in_installer | default(false) | bool and (ansible_mounts |
#    selectattr("mount", "equalto", "/") | list)[0].size_available > 80000000000