---
# 1) Deploy the lxc container(s)
- hosts: 'ldap'
  # The host may not exist yet: do not gather facts
  gather_facts: false
  tags:
    - 'lxc'
  tasks:
    # Delegate lxc container deployment to `ansible_lxc_host`
    - import_role: name='lxc_guest'
      vars:
        vm_name: '{{ inventory_hostname }}'
        vm_size: '1G'
      delegate_to: '{{ ansible_lxc_host }}'
    # The host may not be directly reachable: use `ssh_lxc` proxy to
    # gather facts (setup) and configure SSH.
    - set_fact: ansible_connection='ssh_lxc'
    - setup:
    - import_role: name='ssh_server'
    # Now the host should be ssh-reachable
    - set_fact: ansible_connection='ssh'

# 2) Deploy LDAP server(s)
- hosts: 'ldap'
  roles:
      - role: 'dns_record'
      - role: 'ldap'
        ldap_organization: 'LILiK'
        virtual_domains:
          - '{{ domain }}'
        # Default values:
        #ldap_tls_enabled: true
        #renew_rootdn_pw: true
        #check_tree: true

# 3) Enable monitoring
- hosts: 'status'
  roles:
    - role: 'icinga2-monitoring'