---

# apt update
- name: "apt update"
  tags: "apt-update"
  when: 'ansible_os_family == "Debian"'
  block:

    # run apt update
    - name: "apt update"
      ansible.builtin.apt:
        upgrade: "yes"
        cache_valid_time: 60
      failed_when: false

    # cleanup apt
    - name: "apt cleanup"
      ansible.builtin.apt:
        autoclean: true
        autoremove: true
        clean: true
      changed_when: false
      failed_when: false

    # cleanup journal
    - name: "cleanup journal"
      ansible.builtin.command:
        cmd: "journalctl --flush --rotate --vacuum-time=1s"
      changed_when: false
      failed_when: false

    # run fstrim on vms
    - name: "run fstrim on vm"
      ansible.builtin.command:
        cmd: "fstrim /"
      changed_when: false
      failed_when: false
      when: "ansible_virtualization_type == 'kvm'"

    # check for reboots
    - name: "check if reboot required"
      ansible.builtin.stat:
        path: "/var/run/reboot-required"
      changed_when: false
      failed_when: false
      register: "reboot_required"

    # execute reboot
    - name: "execute reboot"
      when: "reboot_required.stat.exists"
      block:

        # reboot
        - name: "reboot now"
          ansible.builtin.reboot:
          when: 'inventory_hostname != "ansible.siempie.internal"'

        # schedule reboot
        - name: "schedule reboot"
          ansible.builtin.command:
            cmd: 'shutdown -r +1 "Ansible: Reboot after updates"'
          changed_when: false
          when: 'inventory_hostname == "ansible.siempie.internal"'