ansible-role-gitea/tasks/main.yaml

---
- name: Install Dependencies
  apt:
    pkg:
      - apparmor
      - docker.io
      - python3-docker

- name: Create git USER
  ansible.builtin.user:
    name: git
  register: git_user

- name: Create Data Directory
  file:
    path: "{{ git_user.home }}/gitea/data"
    state: directory
    owner: "{{ git_user.uid }}"
    group: "{{ git_user.group }}"
    mode: '0755'

- name: Create Config Directory
  file:
    path: "{{ git_user.home }}/gitea/config"
    state: directory
    owner: "{{ git_user.uid }}"
    group: "{{ git_user.group }}"
    mode: '0755'

- name: Create SSH Directory
  file:
    path: "{{ git_user.home }}/gitea/ssh"
    state: directory
    owner: "{{ git_user.uid }}"
    group: "{{ git_user.group }}"
    mode: '0755'

- name: Create SSH authorized_keys
  file:
    path: "{{ git_user.home }}/gitea/ssh/authorized_keys"
    state: touch
    owner: "{{ git_user.uid }}"
    group: "{{ git_user.group }}"
    mode: '0600'

- name: Start Docker Daemon
  systemd:
    name: docker
    enabled: yes
    state: started

- name: Create Gitea container
  community.docker.docker_container:
    name: gitea
    image: "gitea/gitea:{{ gitea['version'] }}-rootless"
    comparisons:
      image: strict
      volumes: strict
      env: strict
    restart_policy: unless-stopped
    volumes:
      - "{{ git_user.home }}/gitea/data:/var/lib/gitea"
      - "{{ git_user.home }}/gitea/ssh:/var/lib/gitea/git/.ssh"
      - "{{ git_user.home }}/gitea/config:/etc/gitea"
      #- /data:/var/lib/gitea
      #- /config:/etc/gitea
      - /etc/timezone:/etc/timezone:ro
      - /etc/localtime:/etc/localtime:ro
    ports:
      - "3000:3000"
      - "22:2222"
    user: "{{ git_user.uid }}:{{ git_user.group }}"
    env:
      USER_UID: "{{ git_user.uid }}"
      USER_GID: "{{ git_user.group }}"