---
- name: Update apt cache
  apt:
    update_cache: yes
  become: True
  when: ansible_os_family == 'Debian'

# TODO(inc0): Gates don't seem to have ufw executable, check for it instead of ignore errors
- name: Set firewall default policy
  become: True
  ufw:
    state: disabled
    policy: allow
  when: ansible_os_family == 'Debian'
  ignore_errors: yes

- name: Check if firewalld is installed
  command: rpm -q firewalld
  register: firewalld_check
  failed_when: firewalld_check.rc > 1
  when: ansible_os_family == 'RedHat'

- name: Disable firewalld
  become: True
  service:
    name: "{{ item }}"
    enabled: false
    state: stopped
  with_items:
    - firewalld
  when:
    - ansible_os_family == 'RedHat'
    - firewalld_check.rc == 0

- name: Install apt packages
  package:
    name: "{{ item }}"
    state: present
  become: True
  with_items: "{{ debian_pkg_install }}"
  when: ansible_os_family == 'Debian'

- name: Install deltarpm packages
  package:
    name: "{{ item }}"
    state: installed
  become: True
  with_items:
    - deltarpm
  when: ansible_os_family == 'RedHat'

- name: Install yum packages
  package:
    name: "{{ item }}"
    state: present
  become: True
  with_items: "{{ redhat_pkg_install }}"
  when: ansible_os_family == 'RedHat'

- name: Install virtualenv packages
  package:
    name: python-virtualenv
    state: present
  become: True
  when: virtualenv is not none

- name: Install pip
  easy_install:
    name: pip
    virtualenv: "{{ virtualenv is none | ternary(omit, virtualenv) }}"
    virtualenv_site_packages: "{{ virtualenv is none | ternary(omit, virtualenv_site_packages) }}"
  become: True

- name: Install latest pip in the virtualenv
  pip:
    name: pip
    state: latest
    virtualenv: "{{ virtualenv }}"
    virtualenv_site_packages: "{{ virtualenv_site_packages }}"
  become: True
  when: virtualenv is not none

- name: Install docker SDK for python
  pip:
    name: docker
    state: latest
    virtualenv: "{{ virtualenv is none | ternary(omit, virtualenv) }}"
    virtualenv_site_packages: "{{ virtualenv is none | ternary(omit, virtualenv_site_packages) }}"
  become: True

- name: Ensure virtualenv has correct ownership
  file:
    path: "{{ virtualenv }}"
    recurse: True
    state: directory
    owner: kolla
    group: kolla
  become: True
  when: virtualenv is not none

- name: Remove packages
  package:
    name: "{{ item }}"
    state: absent
  with_items: "{{ ubuntu_pkg_removals }}"
  become: True
  when: ansible_distribution|lower == "ubuntu"

- name: Remove packages
  package:
    name: "{{ item }}"
    state: absent
  with_items: "{{ redhat_pkg_removals }}"
  become: True
  when: ansible_os_family == 'RedHat'