fix: load role defaults properly

playbook.yaml

@@ -6,6 +6,10 @@
   serial: 2
   become: true
 
+  # load role defaults
+  vars_files:
+    - "defaults/main.yaml"
+
   # import handlers
   handlers:
     - import_tasks: "handlers/main.yaml"

tasks/firewall.yaml

@@ -5,25 +5,12 @@
   tags: "firewall"
   block:
 
-    # set debug vars
-    - name: "set debug vars"
-      ansible.builtin.set_fact:
-        firewall_host_rules: []
-
     # set vars
     - name: "set vars"
       ansible.builtin.set_fact:
         __firewall_enable: "{{ firewall_enable }}"
         __firewall_all_rules: "{{ firewall_basic_rules | union(firewall_host_rules)}}"
 
-    - name: "debug"
-      ansible.builtin.debug:
-        msg: "outside {{ firewall_enable }}"
-
-    - name: "debug"
-      ansible.builtin.debug:
-        msg: "inside {{ __firewall_enable }}"
-
     # manage firewall for debian
     - name: "firewall - debian family"
       when: "ansible_os_family == 'Debian'"
@@ -31,7 +18,7 @@
 
         # remove and disable firewall
         - name: "remove and disable firewall"
-          when: '__firewall_enable == "false"'
+          when: "not __firewall_enable"
           block:
 
             # stop service
@@ -50,7 +37,7 @@
 
         # install and enable firewall
         - name: "install and enable firewall"
-          when: '__firewall_enable == "true"'
+          when: "__firewall_enable"
           block:
 
             # install ufw