---
# TODO: Use a BTRFS subvolume instead?
- name: "Mount encrypted partition to /srv."
  shell: "mount /srv"
  args:
    creates: "/srv/docker"
- name: "Prepare /srv to encrypt Docker files."
  file:
    state: "directory"
    path: "{{ item }}"
  loop:
  - "/srv/docker"
  - "/var/lib/docker"
- name: "Bind mount /srv/docker to /var/lib/docker."
  shell: "mount /var/lib/docker"
- name: "Start Docker service."
  shell: "/etc/init.d/docker start"