Add hidden_services keys in torrelay role

2 files changed, 26 insertions, 0 deletions

diff --git a/.gitignore b/.gitignore
index 8846e89..83e5a52 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,6 +1,7 @@
 roles/dnsserver/vars/keys.yml
 roles/torrelay/vars/email.yml
 roles/torrelay/vars/keys.yml
+roles/torrelay/files/rendezvous
 roles/mtaserver/files/virtual
 roles/mtaserver/files/credentials
 roles/reverseproxy/vars/email.yml
diff --git a/roles/torrelay/tasks/config.yml b/roles/torrelay/tasks/config.yml
index f236881..9847255 100644
--- a/roles/torrelay/tasks/config.yml
+++ b/roles/torrelay/tasks/config.yml
@@ -31,3 +31,28 @@
     group: root
     mode: 0644
   notify: restart tor
+
+- name: Création des répertoires hidden_services
+  file:
+    path: "/var/lib/tor/hidden_service{{ item.number }}"
+    state: directory
+    owner: toranon
+    group: toranon
+    mode: 0700
+  with_items:
+    - "{{ hiddenservices }}"
+  when: hiddenservices is defined
+  notify: restart tor
+
+- name: Installation des clés hidden_services
+  copy:
+    src: "rendezvous/hidden_service{{ item[0].number }}/{{ item[1] }}"
+    dest: "/var/lib/tor/hidden_service{{ item[0].number }}/{{ item[1] }}"
+    owner: toranon
+    group: toranon
+    mode: 0600
+  with_nested:
+    - "{{ hiddenservices }}"
+    - [ 'hostname', 'private_key' ]
+  when: hiddenservices is defined
+  notify: restart tor