computer-playbook/roles/web-app-bigbluebutton/tasks/02_administrator.yml

---
- name: "Wait until Greenlight is reachable via Nginx"
  uri:
    url: "{{ domains | get_url(application_id, WEB_PROTOCOL) }}"
    validate_certs: true
    status_code: 200
    return_content: true
  register: greenlight_http
  until:
    - greenlight_http.status == 200
    - "'Greenlight' in greenlight_http.content or 'Sign in' in greenlight_http.content"
  retries: 30
  delay: 5
  changed_when: false

- block:
    - name: "Create admin with primary password"
      command:
        cmd: >
          {{ docker_compose_command_exec }}
          greenlight
          bundle exec rake
          admin:create['{{ users.administrator.username | upper }}','{{ users.administrator.email }}','{{ users.administrator.password }}']
        chdir: "{{ docker_compose.directories.instance }}"
      register: admin_create_primary
      when: not BBB_OIDC_ENABLED | bool

    - name: "Retry with starred password when invalid and OIDC enabled"
      when: BBB_OIDC_ENABLED | bool
      command:
        cmd: >
          {{ docker_compose_command_exec }}
          greenlight
          bundle exec rake
          admin:create['{{ users.administrator.username | upper }}','{{ users.administrator.email }}','{{ users.administrator.password ~ '*' }}']
        chdir: "{{ docker_compose.directories.instance }}"
      register: admin_create_retry
      failed_when: admin_create_retry.rc not in [0, 2]

  rescue:
    - name: "Make existing user administrator (fallback)"
      command:
        cmd: >
          {{ docker_compose_command_exec }}
          greenlight
          bundle exec rake
          user:set_admin_role['{{ users.administrator.email }}']
        chdir: "{{ docker_compose.directories.instance }}"