Refactor HAProxy configuration and certificate management

- Updated HAProxy configuration template to reflect changes for the Taurus Production Environment, including SSL settings and rate limiting for specific endpoints.
- Introduced new playbooks for certificate distribution and validation with OCI Vault, ensuring certificates are correctly managed and renewed.
- Added hooks for uploading renewed certificates to OCI Vault and validating their integrity.
- Enhanced the HAProxy configuration playbook to ensure proper service management and verification of the HAProxy service.
- Updated inventory variables for certificate management and ensured compatibility with the new structure.

ansible/certbot/renewal-hook.sh.j2

@@ -5,7 +5,7 @@
 # This script:
 # 1. Combines fullchain.pem + privkey.pem into HAProxy format
 # 2. Sets correct permissions
-# 3. Reloads HAProxy via Docker
+# 3. Reloads HAProxy via systemd
 # 4. Updates certificate metrics for Prometheus
 
 set -euo pipefail
@@ -37,10 +37,9 @@ chmod 640 "${HAPROXY_CERT}"
 echo "[$(date '+%Y-%m-%d %H:%M:%S')] Certificate combined and written to ${HAPROXY_CERT}"
 
 # Reload HAProxy if running
-if docker ps --format '{{ '{{' }}.Names{{ '}}' }}' | grep -q haproxy; then
+if systemctl is-active --quiet haproxy; then
     echo "[$(date '+%Y-%m-%d %H:%M:%S')] Reloading HAProxy..."
-    cd "${HAPROXY_DIR}"
-    docker compose kill -s HUP haproxy || docker-compose kill -s HUP haproxy
+    systemctl reload haproxy
     echo "[$(date '+%Y-%m-%d %H:%M:%S')] HAProxy reloaded"
 else
     echo "[$(date '+%Y-%m-%d %H:%M:%S')] HAProxy not running, skipping reload"
@@ -49,4 +48,4 @@ fi
 # Update certificate metrics
 {{ certbot_directory }}/hooks/cert-metrics.sh
 
-echo "[$(date '+%Y-%m-%d %H:%M:%S')] Renewal hook completed successfully"
+echo "[$(date '+%Y-%m-%d %H:%M:%S')] Renewal hook completed successfully"