---

- name: Install varnish package
  ansible.builtin.apt:
    name: varnish
    state: present
    update_cache: true
  tags: install

- name: Hold packages
  ansible.builtin.dpkg_selections:
    name: "varnish"
    selection: hold
  tags: install

- name: Disabled default varnish/varnishcsa service
  ansible.builtin.systemd:
    name: "{{ item }}"
    enabled: false
    state: stopped
  with_items:
    - varnish
    - varnishncsa
  tags: install

- name: Ensure ipv4 takes precedence
  ansible.builtin.lineinfile:
    path: /etc/gai.conf
    line: precedence ::ffff:0:0/96  100
  tags: install

- name: Deploy rsyslogd conf
  ansible.builtin.copy:
    src: rsyslog.conf
    dest: /etc/rsyslog.d/10-varnishd.conf
    owner: root
    group: root
    mode: "0644"
  tags: install
  notify: Rsyslogd restart

- name: Deploy logrotate conf
  ansible.builtin.copy:
    src: logrotate.conf
    dest: /etc/logrotate.d/varnishd
    owner: root
    group: root
    mode: "0644"
  tags: install

- name: Deploy varnishncsa logrotate conf
  ansible.builtin.copy:
    src: logrotatencsa.conf
    dest: /etc/logrotate.d/varnishncsa
    owner: root
    group: root
    mode: "0644"
  tags: install

- name: Create varnishncsa log dir
  ansible.builtin.file:
    path: /data/log/web/
    state: directory
    owner: varnishlog
    group: varnish
    mode: "0750"
  tags: install

- name: Deploy custom varnish systemd service file
  ansible.builtin.template:
    src: varnish.service.j2
    dest: /etc/systemd/system/varnish.service
    owner: root
    group: root
    mode: "0644"
  tags: install,config
  notify: Varnish restart

- name: Deploy custom varnishncsa systemd service file
  ansible.builtin.template:
    src: "{{ env }}-varnishncsa-{{ item }}.service.j2"
    dest: "/etc/systemd/system/varnishncsa-{{ item }}.service"
    owner: root
    group: root
    mode: "0644"
  tags: install,config
  with_items: "{{ varnish_varnishncsa_custom_items }}"
  notify: Varnishncsa restart

- name: Enabled custom varnish systemd service
  ansible.builtin.systemd:
    name: varnish
    enabled: true
  tags: install

- name: Start varnish on install
  ansible.builtin.systemd:
    name: varnish
    state: started
  tags: install

- name: Enabled custom varnishncsa services
  ansible.builtin.systemd:
    name: "varnishncsa-{{ item }}"
    enabled: true
  with_items: "{{ varnish_varnishncsa_custom_items }}"
  tags: install

- name: Deploy varnish config file
  ansible.builtin.template:
    src: default.vcl.j2
    dest: /etc/varnish/default.vcl
    owner: root
    group: root
    mode: "0644"
  tags: install,config
  notify: Varnish reload