break: change with_items to loop

2018-12-05 10:16:43 +01:00 · 2018-12-05 10:16:43 +01:00 · 769433d20a
commit 769433d20a
parent 2b279efc50
6 changed files with 27 additions and 21 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -4,6 +4,7 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 Which is based on [Keep A Changelog](http://keepachangelog.com/)

 ## [Unreleased]
+- break: change with_items to loop

 ## v1.2.2 (2018-09-07)
 - fix: remove a bug in dnssec cron
--- a/README.md
+++ b/README.md
@ -7,7 +7,7 @@ Install and configure bind with dnssec

 ## Requirements

-* Ansible >= 2.4
+* Ansible >= 2.6
 * bind version >= 9.8
 * Debian Stretch

--- a/meta/main.yml
+++ b/meta/main.yml
@ -2,7 +2,7 @@ galaxy_info:
  author: Adrien Waksberg
  description: Install and configure bind9 with dnssec
  license: Apache2
-  min_ansible_version: 2.4
+  min_ansible_version: 2.6

  platforms:
    - name: Debian
--- a/tasks/base.yml
+++ b/tasks/base.yml
@ -1,8 +1,9 @@
 - name: install packages for bind9
  apt:
-    name: '{{ item }}'
+    name: '{{ packages }}'
    state: present
-  with_items:
+  vars:
+    packages:
      - bind9
      - bind9-host
      - cron
@ -30,7 +31,7 @@
    owner: root
    group: root
    mode: 0644
-  with_items:
+  loop:
    - named.conf
    - named.conf.options
    - named.conf.local
--- a/tasks/keys.yml
+++ b/tasks/keys.yml
@ -5,10 +5,12 @@
    owner: root
    group: bind
    mode: 0640
-#  no_log: true
-  with_nested:
-    - '{{ bind_dnssec }}'
-    - [ 'ksk', 'zsk' ]
+  no_log: true
+  loop: '{{ bind_dnssec|product(file_ext)|list }}'
+  vars:
+    file_ext:
+      - ksk
+      - zsk

 - name: copy public key
  template:
@ -17,7 +19,9 @@
    owner: root
    group: bind
    mode: 0640
-#  no_log: true
-  with_nested:
-    - '{{ bind_dnssec }}'
-    - [ 'ksk', 'zsk' ]
+  no_log: true
+  loop: '{{ bind_dnssec|product(file_ext)|list }}'
+  vars:
+    file_ext:
+      - ksk
+      - zsk
--- a/tasks/zones.yml
+++ b/tasks/zones.yml
@ -1,6 +1,6 @@
 - set_fact:
    bind_zones_play: '{{ bind_zones_play|default([]) + [ item ] }}'
-  with_dict: '{{ bind_zones }}'
+  loop: '{{ bind_zones|dict2items }}'
  when: (item.value.state is not defined or item.value.state != 'absent') and (bind_zones_subset is not defined or item.key in bind_zones_subset)

 - name: create zone folder
@ -10,7 +10,7 @@
    group: bind
    mode: 0755
    state: directory
-  with_items: '{{ bind_zones_play }}'
+  loop: '{{ bind_zones_play }}'

 - name: copy zone files
  template:
@ -19,7 +19,7 @@
    owner: root
    group: root
    mode: 0644
-  with_items: '{{ bind_zones_play }}'
+  loop: '{{ bind_zones_play }}'
  register: zone
  notify: reload bind

@ -27,7 +27,7 @@
  shell: 'dnssec-signzone -3 $(head -n 1000 /dev/urandom | sha1sum | cut -b 1-16) -A -N INCREMENT -o {{ item.item.key }} -t /etc/bind/zones/{{ item.item.key }}/db'
  args:
    chdir: /etc/bind/keys
-  with_items: '{{ zone.results }}'
+  loop: '{{ zone.results }}'
  when: item.changed and item.item.key in bind_dnssec
  notify: reload bind

@ -42,5 +42,5 @@
  file:
    path: '{{ item.path }}'
    state: absent
-  with_items: '{{ zone_folders.files }}'
+  loop: '{{ zone_folders.files }}'
  when: item.path|basename not in bind_zones or ('state' in bind_zones[item.path|basename] and bind_zones[item.path|basename].state == 'absent')