configpolicy/roles/homeassistant/tasks/main.yml

- name: load architecture-specific values
  include_vars: '{{ item }}'
  with_first_found:
  - '{{ ansible_architecture }}.yml'
  - defaults.yml

- name: ensure system dependencies are installed
  package:
    name: >-
      {{ homeassistant_common_system_deps + homeassistant_arch_system_deps }}
    state: present
  tags:
  - install

- name: ensure homeassistant user exists
  user:
    name: homeassistant
    system: true
    home: /var/lib/homeassistant

- name: ensure homeassistant tmp dir exists
  file:
    path: /var/lib/homeassistant/tmp
    mode: '0700'
    owner: homeassistant
    group: homeassistant
    state: directory

- name: ensure homeassistant install dir exists
  file:
    path: /usr/local/homeassistant
    mode: '0755'
    owner: homeassistant
    group: homeassistant
    state: directory
- name: ensure homeassistant is installed
  environment:
    TMPDIR: /var/lib/homeassistant/tmp
  become: true
  become_user: homeassistant
  pip:
    name: homeassistant
    extra_args: >-
      --prefer-binary
    virtualenv: /usr/local/homeassistant
    virtualenv_command: '/usr/bin/python3 -m venv'

- name: ensure selinux file context map is correct for home assistant dir
  sefcontext:
    ftype: a
    setype: bin_t
    target: /usr/local/homeassistant/bin(/.*)?
    state: present
  notify: relabel home assistant dir

- name: ensure homeassistant entry point is installed
  copy:
    src: hass.sh
    dest: /usr/local/bin/hass
    setype: bin_t
    mode: '0755'
  notify:
  - restart homeassistant
- name: ensure homeassistant systemd unit is installed
  copy:
    src: homeassistant.service
    dest: /etc/systemd/system/homeassistant.service
    mode: '0644'
  notify:
  - reload systemd
  - restart homeassistant
- name: ensure homeassistant starts at boot
  service:
    name: homeassistant
    enabled: true

- name: ensure apache is configured to proxy for homeassistant
  template:
    src: homeassistant.httpd.conf.j2
    dest: /etc/httpd/conf.d/homeassistant.conf
    mode: '0644'
  notify:
  - restart httpd
- name: ensure selinux allows apache to proxy
  seboolean:
    name: httpd_can_network_connect
    state: true
    persistent: true