Refactor systemctl services and timers

- Unified service templates into generic systemctl templates
- Introduced reusable filter plugins for script path handling
- Updated path variables and service/timer definitions
- Migrated roles (backup, cleanup, repair, etc.) to use systemctl role
- Added sys-daemon role for core systemd cleanup
- Simplified timer handling via sys-timer role

Note: This is a large refactor and some errors may still exist. Further testing and adjustments will be needed.

roles/sys-ctl-mtn-cert-deploy/handlers/main.yml

@@ -1,7 +0,0 @@
----
-- name: "restart tls deploy to docker service"
-  systemd:
-    name:           "{{ CERT_SYNC_DOCKER_SERVICE_NAME_FULL }}"
-    state:          restarted
-    enabled:        yes
-    daemon_reload:  yes

roles/sys-ctl-mtn-cert-deploy/tasks/01_core.yml

@@ -3,11 +3,10 @@
     name: sys-ctl-alm-compose
   when: run_once_sys_ctl_alm_compose is not defined
 
-- name: "Install '{{ CERT_SYNC_DOCKER_SCRIPT_FILE }}'"
-  ansible.builtin.copy:
-    src:  "{{ CERT_SYNC_DOCKER_SCRIPT_FILE }}"
-    dest: "{{ CERT_SYNC_DOCKER_SCRIPT_PATH }}"
-    mode: "0755"
-    owner: root
-    group: root
-  notify: restart tls deploy to docker service
+- include_role:
+    name: sys-systemctl
+  vars:
+    systemctl_state: restarted
+    systemctl_on_calendar:  "{{ SYS_SCHEDULE_MAINTANANCE_LETSENCRYPT_DEPLOY }}"
+    persistent:   "true"
+    systemctl_timer_enabled:  true

roles/sys-ctl-mtn-cert-deploy/tasks/main.yml

@@ -4,24 +4,4 @@
       run_once_sys_ctl_mtn_cert_deploy: true
   when: run_once_sys_ctl_mtn_cert_deploy is not defined
 
-- name: "create {{ cert_mount_directory }}"
-  file:
-    path: "{{ cert_mount_directory }}"
-    state: directory
-    mode: "0755"
-  notify: restart tls deploy to docker service
-
-- name: Copy {{ CERT_SYNC_DOCKER_SERVICE_NAME_FULL }}
-  template:
-    src: "{{ CERT_SYNC_DOCKER_BASE }}.service.j2"
-    dest: "/etc/systemd/system/{{ CERT_SYNC_DOCKER_SERVICE_NAME_FULL }}"
-  notify: restart tls deploy to docker service
-
-- name: "include role for sys-timer for {{ CERT_SYNC_DOCKER_SERVICE_NAME_FULL }}"
-  include_role:
-    name: sys-timer
-  vars:
-    on_calendar: "{{ SYS_SCHEDULE_MAINTANANCE_LETSENCRYPT_DEPLOY }}"
-    service_name: "{{ CERT_SYNC_DOCKER_SERVICE_NAME_BASE }}"
-    persistent: "true"
 

roles/sys-ctl-mtn-cert-deploy/templates/sys-ctl-mtn-cert-deploy.service.j2

@@ -1,7 +0,0 @@
-[Unit]
-Description=Let's Encrypt deploy to {{ docker_compose.directories.instance }}
-OnFailure=sys-ctl-alm-compose.{{ SOFTWARE_NAME }}@%n.service
-
-[Service]
-Type=oneshot
-ExecStart={{ PATH_ADMINISTRATOR_SCRIPTS }}/{{ CERT_SYNC_DOCKER_SCRIPT_FILE }} {{ ssl_cert_folder }} {{ docker_compose.directories.instance }} {{ LETSENCRYPT_LIVE_PATH }}

roles/sys-ctl-mtn-cert-deploy/templates/systemctl.service.j2

@@ -0,0 +1,7 @@
+[Unit]
+Description=Let's Encrypt deploy to {{ docker_compose.directories.instance }}
+OnFailure={{ SYS_SERVICE_ON_FAILURE_COMPOSE }}
+
+[Service]
+Type=oneshot
+ExecStart={{ systemctl_id | get_service_script_path('sh') }} {{ ssl_cert_folder }} {{ docker_compose.directories.instance }} {{ LETSENCRYPT_LIVE_PATH }}

roles/sys-ctl-mtn-cert-deploy/vars/main.yml

@@ -1,6 +1 @@
-
-CERT_SYNC_DOCKER_BASE:               "sys-ctl-mtn-cert-deploy"
-CERT_SYNC_DOCKER_SCRIPT_FILE:        "{{ CERT_SYNC_DOCKER_BASE }}.sh"
-CERT_SYNC_DOCKER_SCRIPT_PATH:        "{{ PATH_ADMINISTRATOR_SCRIPTS }}{{ CERT_SYNC_DOCKER_SCRIPT_FILE }}"
-CERT_SYNC_DOCKER_SERVICE_NAME_BASE:  "{{ application_id | get_entity_name }}.{{ CERT_SYNC_DOCKER_BASE }}"
-CERT_SYNC_DOCKER_SERVICE_NAME_FULL:  "{{ CERT_SYNC_DOCKER_SERVICE_NAME_BASE }}{{ SYS_SERVICE_SUFFIX }}"
+systemctl_id:                        "sys-ctl-mtn-cert-deploy"