---

- name: Load variables
  include_vars: "{{ ansible_os_family }}.yml"

- name: "Remove existing systemd-networkd configuration"
  file:
    path: "/etc/systemd/network"
    state: absent

- name: "Create systemd-networkd directory"
  file:
    path: "/etc/systemd/network"
    owner: root
    group: root
    mode: 0755
    state: directory

- name: Create systemd.netdev files
  block:
  - name: Create systemd.netdev files
    template:
      src: systemd.netdev.j2
      dest: "/etc/systemd/network/{{ item.filename }}"
      owner: "{{ systemd_networkd_unix_user }}"
      group: "{{ systemd_networkd_unix_user }}"
      mode: 0644
    when: item.netdev_options is defined and
          item.netdev_options | selectattr("key", "==", "Kind") and
          item.netdev_options | selectattr("value", "!=", "wireguard")
    with_items: "{{ systemd_networkd_netdev }}"

  - name: Create sensitive systemd.netdev files
    template:
      src: systemd.netdev.j2
      dest: "/etc/systemd/network/{{ item.filename }}"
      owner: "{{ systemd_networkd_unix_user }}"
      group: "{{ systemd_networkd_unix_user }}"
      mode: 0600
    when: item.netdev_options is defined and
          item.netdev_options | selectattr("key", "equalto", "Kind") and
          item.netdev_options | selectattr("value", "equalto", "wireguard")
    with_items: "{{ systemd_networkd_netdev }}"
    no_log: true
    notify: restart networkd

- name: Create systemd.networkd files
  template:
    src: systemd.network.j2
    dest: "/etc/systemd/network/{{ item.filename }}"
    owner: "{{ systemd_networkd_unix_user }}"
    group: "{{ systemd_networkd_unix_user }}"
    mode: 0644
  with_items: "{{ systemd_networkd_network }}"
  notify: restart networkd

- name: Create symlink to use systemd-resolved's stub-listener
  file:
    src: /run/systemd/resolve/stub-resolv.conf
    dest: /etc/resolv.conf
    state: link
    force: yes
    follow: no
    owner: root
    group: root

- name: Start and enable systemd-networkd
  service:
    name: systemd-networkd
    state: started
    enabled: yes
    daemon_reload: yes

- name: Start and enable systemd-resolved
  service:
    name: systemd-resolved
    state: started
    enabled: yes
    daemon_reload: yes

- name: Set system timezone
  timezone:
    name: "{{ systemd_timesyncd_timezone }}"

- name: Start and enable systemd-timesyncd
  service:
    name: systemd-timesyncd
    state: started
    enabled: yes
    daemon_reload: yes