Initial commit

Signed-off-by: Julien Riou <julien@riou.xyz>
2024-04-27 15:18:41 +02:00 · 2024-04-27 15:18:41 +02:00 · 096a3e0540
commit 096a3e0540
parent d547c7f607
69 changed files with 1650 additions and 0 deletions
--- a/tasks/openvpn.yml
+++ b/tasks/openvpn.yml
@ -0,0 +1,38 @@
+---
+- name: Install OpenVPN
+  ansible.builtin.apt:
+    name: openvpn
+    state: latest
+
+- name: Deploy OpenVPN configuration
+  ansible.builtin.template:
+    src: openvpn/client.conf.j2
+    dest: /etc/openvpn/client.conf
+
+- name: Deploy OpenVPN CA cert
+  ansible.builtin.copy:
+    content: "{{ openvpn_ca }}"
+    dest: /etc/openvpn/ca.crt
+
+- name: Deploy OpenVPN TLS auth
+  ansible.builtin.copy:
+    content: "{{ openvpn_ta }}"
+    dest: /etc/openvpn/ta.key
+
+- name: Deploy OpenVPN client cert
+  ansible.builtin.copy:
+    content: "{{ openvpn_cert }}"
+    dest: /etc/openvpn/client.crt
+    mode: '0644'
+
+- name: Deploy OpenVPN client key
+  ansible.builtin.copy:
+    content: "{{ openvpn_key }}"
+    dest: /etc/openvpn/client.key
+    mode: '0600'
+
+- name: Start OpenVPN
+  ansible.builtin.systemd:
+    name: "openvpn@client.service"
+    state: started
+    enabled: true