- name: ensure runner group exists
  ansible.builtin.group:
    name: runner
    system: true
  become: true

- name: ensure runner user exists
  ansible.builtin.user:
    name: runner
    group: runner
    password: '!'
    system: true
    create_home: true
    groups:
      - docker
  become: true

- name: ensure the configuration is deployed
  ansible.builtin.copy:
    content: "{{ forgejo_runner__config }}"
    dest: /etc/forgejo-runner-config.yaml
    owner: root
    group: runner
    mode: "0640"
  become: true
  notify:
    - restart the forgejo-runner service

- name: ensure systemd service exists
  ansible.builtin.copy:
    src: forgejo-runner.service
    dest: /etc/systemd/system/forgejo-runner.service
    owner: root
    group: root
    mode: "0644"
  become: true
  notify:
    - systemd daemon reload
    - restart the forgejo-runner service

- name: ensure systemd service is started and enabled
  ansible.builtin.systemd_service:
    name: forgejo-runner.service
    state: started
    enabled: true
  become: true