pleroma: read secrets from password-store

commit 884d24c917eac39fea7dc255449f45c1f1a1b18d
parent 28744e28d992677a6f7eaa88a10f321619fdc08e
Author: Leah Thein <leah@toaster.fritz.box>
Date: Wed, 2 Dec 2020 17:11:04 +0100

pleroma: read secrets from password-store

1 file changed, 9 insertions(+), 1 deletion(-)

roles/pleroma/tasks/main.yml

+++++++++-

diff --git a/roles/pleroma/tasks/main.yml b/roles/pleroma/tasks/main.yml
@@ -20,6 +20,14 @@
     owner: pleroma
     group: pleroma
 
+- name: create secrets.exs from passwordstore
+  copy:
+    content: "{{ lookup('community.general.passwordstore', 'server/{{network.hostname}}/pleroma.secrets returnall=true')}}"
+    dest:    /var/lib/pleroma/secret.exs
+    owner:   pleroma
+    group:   pleroma
+    mode:    0700
+
 - name: copy nginx-vhost for pleroma to destination host
   template:
     src: pleroma-vhost.conf.j2

@@ -36,7 +44,7 @@
 - service:
    name: pleroma
    enabled: yes
-   state: started
+   state: restarted
 
 - service:
    name: nginx