# @NOTE run 'ansible-playbook' command on this using 'sudo'
- name: Initialize VPS
  # hosts: sukaato
  hosts: "{{ chosen_host | default('sukaato') }}"
  remote_user: root
  vars:
    harden: true
  vars_files:
    - vars/local_facts.yml # REQUIRED
    - vars/vim_settings.yml # REQUIRED
    - vars/tail_net.yml
    - vars/crowdsec.yml
    - vars/users@{{ inventory_hostname | default('vps') }}.yml
    - vars/config@{{ inventory_hostname | default('vps') }}.yml
  tasks:
    - name: Hardening SSH server
      ansible.builtin.include_role:
        name: init-server  # required. The name of the role to be executed.
        # apply:  # not required. Accepts a hash of task keywords (e.g. C(tags), C(become)) that will be applied to all tasks within the included role.
        tasks_from: harden # not required. File to load from a role's C(tasks/) directory.
        # vars_from: main # not required. File to load from a role's C(vars/) directory.
        # defaults_from: main # not required. File to load from a role's C(defaults/) directory.
        # allow_duplicates: True # not required. Overrides the role's metadata setting to allow using a role more than once with the same parameters.
        # handlers_from: main # not required. File to load from a role's C(handlers/) directory.
    - name: Installing requisite packages
      ansible.builtin.include_role:
        name: init-server
        tasks_from: core@install-pkgs
        handlers_from: core
    - name: Initializing groups and users
      ansible.builtin.include_role:
        name: init-server
        tasks_from: ssh-users
    - name: Update hostname
      become: true
      ansible.builtin.hostname:
        name: "{{ inventory_hostname }}"
    - name: Update host icon name
      become: true
      ansible.builtin.command:
        cmd: "hostnamectl set-icon-name computer-server"
    - name: Rebooting machine for hostname change
      become: true
      ansible.builtin.reboot:
        msg: "Rebooting machine"