---
- name: create gitea directories
  file:
    path: "{{ item }}"
    state: directory
  with_items:
    - "/srv/gitea"
    - "/srv/gitea/data"
    - "/srv/gitea/config"
    - "/srv/gitea/postgres"

- name: change gitea directories permissions
  file:
    path: "{{ item }}"
    owner: 1000
    group: 1000
  with_items:
    - "/srv/gitea/data"
    - "/srv/gitea/config"

- name: create gitea db container
  community.docker.docker_container:
    name: gitea-db
    image: "docker.io/library/postgres:{{ postgres_version }}"
    env_file: /home/kreamond/instalinks/.env_gitea_db
    restart_policy: always
    volumes:
      - /srv/gitea/postgres:/var/lib/postgresql/data
    ports:
      - "5433:5432"
    networks:
      - name: "app-net"
  tags:
    - never

- name: create gitea container
  community.docker.docker_container:
    name: gitea-server
    image: "docker.gitea.com/gitea:{{ gitea_version }}"
    restart_policy: always
    env:
      GITEA__server__DOMAIN: "gitea.myinstalink.ru"
      GITEA__server__ROOT_URL: "https://gitea.myinstalink.ru/"
    volumes:
      - /srv/gitea/data:/var/lib/gitea
      - /srv/gitea/config:/etc/gitea
      - /etc/timezone:/etc/timezone:ro
      - /etc/localtime:/etc/localtime:ro
    ports:
      - "3000:3000"
      - "2222:2222"
    networks:
      - name: "app-net"
    exposed_ports:
      - 2222
      - 3000

- name: create registry container
  community.docker.docker_container:
    name: registry
    image: "registry:2"
    restart_policy: always
    env:
      REGISTRY_STORAGE_FILESYSTEM_ROOTDIRECTORY: "/var/lib/registry"
      REGISTRY_AUTH: "htpasswd"
      REGISTRY_AUTH_HTPASSWD_REALM: "Registry Realm"
      REGISTRY_AUTH_HTPASSWD_PATH: "/auth/htpasswd"
      REGISTRY_STORAGE_DELETE_ENABLED: "true"
    volumes:
      - /srv/registry:/var/lib/registry
      - /srv/auth:/auth
    ports:
      - "5000:5000"
    networks:
      - name: "app-net"
  tags:
    - registry

- name: create drone-server container
  community.docker.docker_container:
    name: drone-server
    image: "drone/drone:2"
    restart_policy: always
    # DRONE_USER_CREATE, DRONE_GITEA_CLIENT_ID, DRONE_GITEA_CLIENT_SECRET,
    # DRONE_RPC_SECRET are defined in env_file
    env_file: /home/kreamond/instalink/.env_drone_server
    env:
      DRONE_GITEA_SERVER: "https://gitea.myinstalink.ru"
      DRONE_SERVER_HOST: "drone.myinstalink.ru"
      DRONE_SERVER_PROTO: "https"
    volumes:
      - /srv/drone:/data
    ports:
      - "8081:80"
      - "444:443"
    networks:
      - name: "app-net"
    exposed_ports:
      - 8081
      - 444
  tags:
    - drone-server

- name: create drone-runner container
  community.docker.docker_container:
    name: drone-runner
    image: "drone/drone-runner-docker:1"
    # DRONE_RPC_SECRET is defined in env_file
    env_file: /home/kreamond/instalink/.env_runner_server
    env:
      DRONE_RPC_PROTO: "https"
      DRONE_RPC_HOST: "drone.myinstalink.ru"
      DRONE_RUNNER_CAPACITY: "2"
      DRONE_RUNNER_NAME: "runner"
    restart_policy: always
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
      - /srv/drone-runner:/srv/drone-runner
    networks:
      - name: "app-net"