configpolicy/roles/useproxy/tasks/main.yml

- name: ensure environment.d directory exists
  file:
    path: /etc/environment.d
    owner: root
    group: root
    mode: u=rwx,go=rx
    state: directory
  tags:
  - config
- name: ensure proxy environment variables are set
  template:
    src: proxy.env.j2
    dest: /etc/environment.d/40-proxy.env
    owner: root
    group: root
    mode: u=rw,go=r
  tags:
  - config

- name: ensure /etc/environment is assembled
  assemble:
    src: /etc/environment.d
    dest: /etc/environment
    owner: root
    group: root
    mode: u=rw,go=r
  notify:
  - reset connection
  tags:
  - config

- name: ensure systemd default service drop-in directory exists
  file:
    path: /etc/systemd/system/service.d
    owner: root
    group: root
    mode: u=rwx,go=rx
    state: directory
  tags:
  - systemd
- name: ensure proxy is configured for systemd services
  copy:
    dest: /etc/systemd/system/service.d/40-proxy.conf
    content: |
      [Service]
      EnvironmentFile=-/etc/environment.d/40-proxy.env
  notify:
  - reload systemd
  tags:
  - systemd

- name: ensure dnf is configured to use proxy
  ini_file:
    path: /etc/dnf/dnf.conf
    section: main
    option: proxy
    value: '{{ dnf_proxy|d(yum_proxy|d(http_proxy)) }}'
    state: present
  tags:
  - yum

- name: ensure yum repos are configured to use baseurl
  ini_file:
    path: /etc/yum.repos.d/{{ item.file }}.repo
    section: '{{ item.name }}'
    option: baseurl
    value: '{{ item.baseurl }}'
    state: present
  loop: '{{ useproxy_yum_repos }}'
  tags:
  - yum
- name: ensure yum repos are configured to not use metalink
  ini_file:
    path: /etc/yum.repos.d/{{ item.file }}.repo
    section: '{{ item.name }}'
    option: metalink
    state: absent
  loop: '{{ useproxy_yum_repos }}'
  tags:
  - yum

- name: flush handlers
  meta: flush_handlers