squid: Add role and PB to deploy Squid

2018-08-12 15:58:43 -05:00
parent 00b04179b1
commit b86ecb99fd
6 changed files with 147 additions and 0 deletions
--- a/roles/squid/tasks/main.yml
+++ b/roles/squid/tasks/main.yml
@@ -0,0 +1,48 @@
+- name: ensure squid is installed
+  package:
+    name=squid
+    state=present
+  tags:
+  - install
+
+- name: ensure squid cache dir exists
+  file:
+    path={{ squid_cache_dir }}
+    owner=squid
+    group=squid
+    mode=0750
+    setype=squid_cache_t
+    state=directory
+
+- name: ensure squid is configured
+  template:
+    src=squid.conf.j2
+    dest=/etc/squid/squid.conf
+    mode=0640
+    owner=root
+    group=squid
+    setype=squid_conf_t
+  notify: reload squid
+
+- name: ensure squid cache directory exists
+  command:
+    /usr/sbin/squid -N -z -F -f /etc/squid/squid.conf
+    creates={{ squid_cache_dir }}/00
+
+- meta: flush_handlers
+- name: ensure squid service starts at boot
+  service:
+    name=squid
+    enabled=yes
+- name: ensure squid is running
+  service:
+    name=squid
+    state=started
+
+- name: ensure proxy is allowed through firewall
+  firewalld:
+    port=3128/tcp
+    permanent=no
+    immediate=yes
+    state=enabled
+  notify: save firewalld configuration