Refactor systemctl services and timers

- Unified service templates into generic systemctl templates
- Introduced reusable filter plugins for script path handling
- Updated path variables and service/timer definitions
- Migrated roles (backup, cleanup, repair, etc.) to use systemctl role
- Added sys-daemon role for core systemd cleanup
- Simplified timer handling via sys-timer role

Note: This is a large refactor and some errors may still exist. Further testing and adjustments will be needed.
This commit is contained in:
2025-08-18 21:22:16 +02:00
parent 3a839cfe37
commit 2569abc0be
219 changed files with 618 additions and 1104 deletions

View File

@@ -1,6 +0,0 @@
- name: "reload certbot service"
systemd:
name: sys-ctl-mtn-cert-renew{{ SYS_SERVICE_SUFFIX }}
state: reloaded
enabled: yes
daemon_reload: yes

View File

@@ -12,19 +12,10 @@
- certbot-nginx
state: present
- name: configure sys-ctl-mtn-cert-renew service
template:
src: sys-ctl-mtn-cert-renew.service.j2
dest: /etc/systemd/system/sys-ctl-mtn-cert-renew{{ SYS_SERVICE_SUFFIX }}
notify: reload certbot service
- name: "set 'service_name' to '{{ role_name }}'"
set_fact:
service_name: "{{ role_name }}"
- name: "include role for sys-timer for {{ service_name }}"
include_role:
name: sys-timer
- include_role:
name: sys-systemctl
vars:
on_calendar: "{{ SYS_SCHEDULE_MAINTANANCE_LETSENCRYPT_RENEW }}"
systemctl_copy_files: false
systemctl_on_calendar: "{{ SYS_SCHEDULE_MAINTANANCE_LETSENCRYPT_RENEW }}"
persistent: "true"
systemctl_timer_enabled: true

View File

@@ -1,6 +1,6 @@
[Unit]
Description=Let's Encrypt renewal
OnFailure=sys-ctl-alm-compose.{{ SOFTWARE_NAME }}@%n.service
OnFailure={{ SYS_SERVICE_ON_FAILURE_COMPOSE }}
[Service]
Type=oneshot

View File

@@ -0,0 +1 @@
systemctl_id: sys-ctl-mtn-cert-renew