feat: Create role

templates/radicale.conf.j2

@@ -0,0 +1,21 @@
+# {{ ansible_managed }}
+
+[auth]
+type = htpasswd
+htpasswd_filename = {{ radicale_root_path }}/users.htpasswd
+
+[encoding]
+request=utf-8
+stock=utf-8
+
+[logging]
+level=debug
+
+[rights]
+type=owner_only
+
+[server]
+hosts=0.0.0.0:5232, [::]:5232
+
+[storage]
+filesystem_folder={{ radicale_root_path }}

templates/radicale.service.j2

@@ -0,0 +1,31 @@
+# {{ ansible_managed }}
+
+[Unit]
+Description=A simple CalDAV (calendar) and CardDAV (contact) server
+After=network.target
+Requires=network.target
+
+[Service]
+Environment="RADICALE_CONFIG={{ radicale_root_path }}/radicale.conf"
+
+ExecStart=/usr/local/bin/radicale
+
+Restart=on-failure
+User=radicale
+
+# Deny other users access to the calendar data
+UMask=0027
+
+# Optional security settings
+PrivateTmp=true
+ProtectSystem=strict
+ProtectHome=true
+PrivateDevices=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectControlGroups=true
+NoNewPrivileges=true
+ReadWritePaths={{ radicale_root_path }}
+
+[Install]
+WantedBy=multi-user.target

templates/users.htpasswd.j2

@@ -0,0 +1,5 @@
+# {{ ansible_managed }}
+
+{% for user in radicale_users %}
+{{ user.name }}:{{ user.password }}
+{% endfor %}