---

- name: (apt.yml) update configuration file - /etc/apt/sources.list
  template:
    src: "etc/apt/sources.list.{{ ansible_distribution }}.j2"
    dest: /etc/apt/sources.list
    owner: root
    group: root
    mode: 0644
  register: apt_config_updated
  when: apt_manage_sources_list|bool
  tags:
    - apt-configuration

- name: (apt.yml) apt update
  apt:
    update_cache: true
    cache_valid_time: "{{ 0 if apt_config_updated is defined and apt_config_updated.changed else apt_update_cache_valid_time }}"
  when: apt_update|bool
  tags:
    - apt-update
    - apt-upgrade
    - apt-dpkg-configure
    - apt-initial-install
    - apt-microcode
    - apt-compiler-pkgs
    - apt-webserver-pkgs


- name: (apt.yml) dpkg --configure
  command: >
    dpkg --configure -a
  args:
    warn: false
  changed_when: _dpkg_configure.stdout_lines | length
  register: _dpkg_configure
  when: apt_dpkg_configure|bool
  tags:
    - apt-dpkg-configure
    - apt-initial-install
    - apt-microcode
    - apt-compiler-pkgs
    - apt-webserver-pkgs


- name: (apt.yml) apt upgrade
  apt:
    upgrade: "{{ apt_upgrade_type }}"
    update_cache: true
    dpkg_options: "{{ apt_upgrade_dpkg_options | join(',') }}"
  when: apt_upgrade|bool
  tags:
    - apt-upgrade
    - apt-initial-install
    - apt-microcode
    - apt-compiler-pkgs
    - apt-webserver-pkgs


- name: (apt.yml) Initial install debian packages (stretch)
  apt:
    name: "{{ apt_initial_install_stretch }}"
    state: "{{ apt_install_state }}"
  when:
    - apt_initial_install_stretch is defined and apt_initial_install_stretch|length > 0
    - ansible_facts['distribution'] == "Debian"
    - ansible_facts['distribution_major_version'] == "9"
  tags:
    - apt-initial-install


- name: (apt.yml) Initial install debian packages (buster)
  apt:
    name: "{{ apt_initial_install_buster }}"
    state: "{{ apt_install_state }}"
  when:
    - apt_initial_install_buster is defined and apt_initial_install_buster|length > 0
    - ansible_facts['distribution'] == "Debian"
    - ansible_facts['distribution_major_version'] == "10"
  tags:
    - apt-initial-install


- name: (apt.yml) Initial install debian packages (bullseye)
  apt:
    name: "{{ apt_initial_install_bullseye }}"
    state: "{{ apt_install_state }}"
  when:
    - apt_initial_install_bullseye is defined and apt_initial_install_bullseye|length > 0
    - ansible_facts['distribution'] == "Debian"
    - ansible_facts['distribution_major_version'] == "11"
  tags:
    - apt-initial-install


- name: (apt.yml) Initial install ubuntu packages (bionic)
  apt:
    name: "{{ apt_initial_install_bionic }}"
    state: "{{ apt_install_state }}"
  when:
    - ansible_facts['distribution'] == "Ubuntu"
    - ansible_facts['distribution_release'] == "bionic"
  tags:
    - apt-initial-install

- name: (apt.yml) Initial install ubuntu packages (xenial)
  apt:
    name: "{{ apt_initial_install_xenial }}"
    state: "{{ apt_install_state }}"
  when:
    - ansible_facts['distribution'] == "Ubuntu"
    - ansible_facts['distribution_release'] == "xenial"
  tags:
    - apt-initial-install

- name: (apt.yml) Initial install ubuntu packages (jammy)
  apt:
    name: "{{ apt_initial_install_jammy }}"
    state: "{{ apt_install_state }}"
  when:
    - ansible_facts['distribution'] == "Ubuntu"
    - ansible_facts['distribution_release'] == "jammy"
  tags:
    - apt-initial-install


# ---
# Microcode
# ---

- name: (apt.yml) Ensure we have CPU microcode from backports (debian stretch)
  apt:
    name: "{{ microcode_package }}"
    state: present
    default_release: "{{ ansible_distribution_release }}-backports"
  when:
    - ansible_facts['distribution'] == "Debian"
    - ansible_facts['distribution_major_version'] == "9"
    - ansible_facts['processor']|string is search("Intel")
  tags:
    - apt-initial-install
    - apt-microcode


- name: (apt.yml) Install CPU microcode (debian buster/bullseye)
  apt:
    name: "{{ microcode_package }}"
    state: present
    default_release: "{{ ansible_distribution_release }}"
  when:
    - ansible_facts['distribution'] == "Debian"
    - ansible_facts['distribution_major_version'] == "10" or ansible_facts['distribution_major_version'] == "11"
    - ansible_facts['processor']|string is search("Intel")
  tags:
    - apt-initial-install
    - apt-microcode


- name: (apt.yml) Install CPU microcode (ubuntu bionic)
  apt:
    name: "{{ microcode_package }}"
    state: present
    default_release: "{{ ansible_distribution_release }}"
  when:
    - ansible_facts['distribution'] == "Ubuntu"
    - ansible_facts['distribution_release'] == "bionic"
    - ansible_facts['processor']|string is search("Intel")
  tags:
    - apt-initial-install
    - apt-microcode


- name: (apt.yml) Install CPU microcode (ubuntu xenial)
  apt:
    name: "{{ microcode_package }}"
    state: present
    default_release: "{{ ansible_distribution_release }}"
  when:
    - ansible_facts['distribution'] == "Ubuntu"
    - ansible_facts['distribution_release'] == "xenial"
    - ansible_facts['processor']|string is search("Intel")
  tags:
    - apt-initial-install
    - apt-microcode


- name: (apt.yml) Install CPU microcode (ubuntu jammy)
  apt:
    name: "{{ microcode_package }}"
    state: present
    default_release: "{{ ansible_distribution_release }}"
  when:
    - ansible_facts['distribution'] == "Ubuntu"
    - ansible_facts['distribution_release'] == "jammy"
    - ansible_facts['processor']|string is search("Intel")
  tags:
    - apt-initial-install
    - apt-microcode

- name: (apt.yml) Install lxc_host related packages
  apt:
    name: "{{ apt_lxc_host_pkgs }}"
    state: "{{ apt_install_state }}"
  when: 
    - groups['lxc_host']|string is search(inventory_hostname)
  tags:
    - apt-lxc-hosts-pkgs

- name: (apt.yml) Install kvm_host related packages
  apt:
    name: "{{ apt_kvm_host_pkgs }}"
    state: "{{ apt_install_state }}"
  when: 
    - groups['kvm_host']|string is search(inventory_hostname)
  tags:
    - apt-kvm-hosts-pkgs

- name: (apt.yml) Install kvm_host related packages only debian 10 (buster)
  apt:
    name: "{{ apt_kvm_host_buster_pkgs }}"
    state: "{{ apt_install_state }}"
  when: 
    - groups['kvm_host']|string is search(inventory_hostname)
    - ansible_facts['distribution'] == "Debian"
    - ansible_facts['distribution_major_version'] == "10"
  tags:
    - apt-kvm-hosts-pkgs

- name: (apt.yml) Install compiler related packages
  apt:
    name: "{{ apt_compiler_pkgs }}"
    state: "{{ apt_install_state }}"
  when: install_compiler_pkgs|bool
  tags:
    - apt-compiler-pkgs

- name: (apt.yml) Install postgresql_server related packages
  apt:
    name: "{{ apt_postgresql_pkgs }}"
    state: "{{ apt_install_state }}"
  when: install_postgresql_pkgs|bool
  tags:
    - apt-postgresql-server-pkgs

- name: (apt.yml) Install webserver related packages
  apt:
    name: "{{ apt_webserver_pkgs }}"
    state: "{{ apt_install_state }}"
  when: install_webserver_pkgs|bool
  tags:
    - apt-webserver-pkgs

- name: (apt.yml) Install samba related packages
  package:
    pkg: '{{ apt_install_server_samba }}'
    state: present
  when:
    - "groups['samba_server']|string is search(inventory_hostname)"
  tags:
    - samba-server

- name: (apt.yml) Install extra packages
  apt:
    name: "{{ apt_extra_pkgs }}"
    state: "{{ apt_install_state }}"
  when: apt_install_extra_pkgs|bool
  tags:
    - apt-extra-pkgs

- name: (apt.yml) Remove unwanted packages
  apt:
    name: "{{ apt_remove }}"
    state: absent
    purge: "{{ apt_remove_purge }}"
  tags:
    - apt-remove

- name: (apt.yml) autoremove
  apt:
    autoremove: true
    dpkg_options: "{{ apt_upgrade_dpkg_options | join(',') }}"
  when: apt_autoremove|bool
  tags:
    - apt-autoremove
    - apt-initial-install
    - apt-microcode
    - apt-compiler-pkgs
    - apt-webserver-pkgs

- name: (apt.yml) clean
  command: apt-get -y clean
  args:
    warn: false
  changed_when: false
  when: apt_clean|bool
  tags:
    - apt-clean
    - apt-initial-install
    - apt-microcode
    - apt-compiler-pkgs
    - apt-mysql-server-pkgs
    - apt-webserver-pkgs

# Fix error if install/update of repository mysql-/mariadb-client breaks
# link '/etc/mysql/my.cnf' in case mysql/mariadb was installed from source
#
- name: (apt.yml) Check if file '/usr/local/mysql/etc/my.cnf' exists
  stat:
    path: /usr/local/mysql/etc/my.cnf
  register: usr_local_mysql_etc_my_cnf
  when: groups['mysql_server']|string is search(inventory_hostname) or 
        groups['apache2_webserver']|string is search(inventory_hostname) or
        groups['nextcloud_server']|string is search(inventory_hostname)
  tags:
    - apt-webserver-pkgs
    - apt-mysql-server-pkgs
    - check_mysql_cnf

#- name: debug
#  debug:
#    msg:
#      - usr_local_mysql_etc_my_cnf.stst.exists = {{ usr_local_mysql_etc_my_cnf.stat.exists }}
#      - "Variable usr_local_mysql_etc_my_cnf: {{ usr_local_mysql_etc_my_cnf }}"
#  tags:
#    - check_mysql_cnf

- name: (apt.yml) Create a symbolic link /etc/my.cnf -> /usr/local/mysql/etc/my.cnf
  file:
    src: /usr/local/mysql/etc/my.cnf
    dest: /etc/mysql/my.cnf
    owner: root
    group: root
    state: link
  when: 
    - (groups['mysql_server']|string is search(inventory_hostname) or 
      groups['apache2_webserver']|string is search(inventory_hostname) or
      groups['nextcloud_server']|string is search(inventory_hostname))
    - usr_local_mysql_etc_my_cnf.stat.exists
  tags:
    - apt-webserver-pkgs
    - apt-mysql-server-pkgs
    - check_mysql_cnf