53 lines
1.4 KiB
YAML
53 lines
1.4 KiB
YAML
---
|
|
# tasks file for roles/tor
|
|
- name: Add Tor Project GPG key
|
|
block:
|
|
- name: Download Tor Project GPG key
|
|
get_url:
|
|
url: https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc
|
|
dest: /tmp/torproject.asc
|
|
mode: '0644'
|
|
|
|
- name: Import Tor Project GPG key
|
|
shell: |
|
|
gpg -o /usr/share/keyrings/deb.torproject.org-keyring.gpg --dearmor /tmp/torproject.asc
|
|
args:
|
|
creates: /usr/share/keyrings/deb.torproject.org-keyring.gpg
|
|
|
|
- name: Remove temporary GPG key file
|
|
file:
|
|
path: /tmp/torproject.asc
|
|
state: absent
|
|
become: yes
|
|
|
|
- name: Add Tor Project deb and deb-src repositories
|
|
apt_repository:
|
|
repo: |
|
|
deb [signed-by=/usr/share/keyrings/deb.torproject.org-keyring.gpg] https://deb.torproject.org/torproject.org {{ ansible_distribution_release }} main
|
|
deb-src [signed-by=/usr/share/keyrings/deb.torproject.org-keyring.gpg] https://deb.torproject.org/torproject.org {{ ansible_distribution_release }} main
|
|
state: present
|
|
filename: tor
|
|
become: yes
|
|
|
|
- name: Update package cache
|
|
apt:
|
|
update_cache: yes
|
|
when: ansible_os_family == 'Debian'
|
|
become: yes
|
|
|
|
- name: Install Tor packages
|
|
package:
|
|
name:
|
|
- tor
|
|
- deb.torproject.org-keyring
|
|
- nyx
|
|
state: present
|
|
become: yes
|
|
|
|
- name: Enable and start Tor service
|
|
service:
|
|
name: tor
|
|
state: started
|
|
enabled: yes
|
|
become: yes
|