- name: Create directory for Docker systemd override ansible.builtin.file: path: /etc/systemd/system/docker.service.d state: directory mode: '0755' - name: Setup Docker image mirror (SC) when: use_docker_image_mirror | bool and docker_mirror_location == "SC" block: - name: Install CA certificate for Docker image mirror ansible.builtin.get_url: url: http://dim.servercow.com:3128/ca.crt dest: /usr/local/share/ca-certificates/SCOW-DIM-CA.crt mode: '0644' register: sc_ca_cert - name: Register CA certificate ansible.builtin.command: update-ca-certificates when: sc_ca_cert.changed - name: Write Docker proxy configuration (SC) ansible.builtin.copy: dest: /etc/systemd/system/docker.service.d/http-proxy.conf content: | [Service] Environment="HTTP_PROXY=http://dim.servercow.com:3128/" Environment="HTTPS_PROXY=http://dim.servercow.com:3128/" owner: root group: root mode: '0644' notify: - Reload systemd - Restart Docker when: sc_ca_cert.changed - name: Setup Docker Image Mirror (tinc) when: use_docker_image_mirror | bool and docker_mirror_location == "tinc" block: - name: Install CA certificate for Docker image mirror ansible.builtin.get_url: url: http://mirror.tinc.gmbh:3128/ca.crt dest: /usr/local/share/ca-certificates/TINC-DIM-CA.crt mode: '0644' register: tinc_ca_cert - name: Register CA certificate ansible.builtin.command: update-ca-certificates when: tinc_ca_cert.changed - name: Write Docker proxy configuration (tinc) ansible.builtin.copy: dest: /etc/systemd/system/docker.service.d/http-proxy.conf content: | [Service] Environment="HTTP_PROXY=http://mirror.tinc.gmbh:3128/" Environment="HTTPS_PROXY=http://mirror.tinc.gmbh:3128/" owner: root group: root mode: '0644' notify: - Reload systemd - Restart Docker when: tinc_ca_cert.changed