fix: Deploy repositories

This reverts commit 5b871f1c48.

defaults/main.yml

@@ -7,18 +7,18 @@ apt_distribution_sections: main
 
 apt_repositories: []
 # Exemple:
-#   - name: sid
+#   - url: http://deb.debian.org/debian
-#     url: http://deb.debian.org/debian
 #     suites: sid
 #     components: main
 #     key_path: /usr/share/keyrings/debian-archive-keyring.gpg
-#   - name: incus
+#   - url: https://pkgs.zabbly.com/incus/stable
-#     url: https://pkgs.zabbly.com/incus/stable
 #     suites: bookworm
 #     components: main
 #     key_url: https://pkgs.zabbly.com/key.asc
 #     key_path: /etc/apt/keyrings/incus.asc
 
+apt_preferences: []
+
 apt_remove: []
 apt_install: []
 

tasks/main.yml

@@ -9,6 +9,11 @@
   ansible.builtin.import_tasks:
     file: repositories.yml
 
+- name: Importer les tâches d'ajout des préférences
+  ansible.builtin.import_tasks:
+    file: preferences.yml
+  when: apt_preferences | length > 0
+
 - name: Exécuter les handlers
   meta: flush_handlers
 

tasks/preferences.yml

@@ -0,0 +1,24 @@
+---
+# tasks file for apt
+
+- name: Construire la liste des règles
+  ansible.builtin.set_fact:
+    nftables_rules: "{{ nftables_rules + specific }}"
+  when: specific | length > 0
+  loop: "{{ lookup('ansible.builtin.varnames', '^nftables_rules_.+', wantlist=True) }}"
+  vars:
+    specific: "{{ lookup('ansible.builtin.vars', item, default='') }}"
+
+- name: Ajouter le fichier de priorité
+  ansible.builtin.template:
+    src: preferences.j2
+    dest: /etc/apt/preferences.d/{{ item.name }}
+    owner: root
+    group: root
+    mode: u=rw,g=r,o=r
+  when: apt_preferences | length > 0
+  loop: "{{ apt_preferences }}"
+  loop_control:
+    label: "{{ item.name }}"
+  become: true
+  notify: Mettre à jour le cache

tasks/repositories.yml

@@ -1,15 +1,21 @@
 ---
 # tasks file for apt
 
+- name: Construire la liste des dépôts
+  ansible.builtin.set_fact:
+    apt_repositories: "{{ apt_repositories + specific }}"
+  when: specific | length > 0
+  loop: "{{ lookup('ansible.builtin.varnames', '^apt_repositories_.+', wantlist=True) }}"
+  vars:
+    specific: "{{ lookup('ansible.builtin.vars', item, default='') }}"
+
 - name: Télécharger la clef du dépôt
   ansible.builtin.get_url:
     url: "{{ item.key_url }}"
     dest: "{{ item.key_path }}"
     mode: u=rw,g=r,o=r
+  when: item.get('key_url', '') | length > 0
   become: true
-  when:
-    - apt_repositories | length > 0
-    - item.get('key_url', '') | length > 0
   loop: "{{ apt_repositories }}"
   loop_control:
     label: "{{ item.name }}"
@@ -22,19 +28,8 @@
     owner: root
     group: root
     mode: u=rw,g=r,o=r
-  when: apt_repositories | length > 0
   become: true
   loop: "{{ apt_repositories }}"
   loop_control:
     label: "{{ item.name }}"
   notify: Mettre à jour le cache
-
-- name: Ajouter le fichier de priorité
-  ansible.builtin.template:
-    src: preferences.j2
-    dest: /etc/apt/preferences.d/40-debian
-    owner: root
-    group: root
-    mode: u=rw,g=r,o=r
-  become: true
-  notify: Mettre à jour le cache

templates/preferences.j2

@@ -1,9 +1,10 @@
 # {{ ansible_managed }}
 
-Package: *
+{% for item in apt_preferences %}
-Pin: release a=testing
+Package: {{ item.package }}
-Pin-Priority: -10
+Pin: {{ item.pin }}
+Pin-Priority: {{ item.priority }}
+{% if not loop.last %}
 
-Package: *
+{% endif %}
-Pin: release a=unstable
+{% endfor %}
-Pin-Priority: -20

templates/repository.sources.j2

@@ -1,7 +1,12 @@
 # {{ ansible_managed }}
 
+{% for item in apt_repositories %}
 Types: deb
 URIs: {{ item.url }}
 Suites: {{ item.suites }}
 Components: {{ item.components }}
 Signed-By: {{ item.key_path }}
+{% if not loop.last %}
+
+{% endif %}
+{% endfor %}