roles/juju-setup/tasks/main.yml - platform-install - Gitiles

 ---
 # roles/juju-setup/main/tasks.yml

 - name: Get ubuntu image for uvtool
   become: yes
   command: uvt-simplestreams-libvirt sync --source http://cloud-images.ubuntu.com/daily \
     release={{ ansible_distribution_release }} arch=amd64

 - name: create Virtual Machines with uvt-kvm
   shell: uvt-kvm create {{ item.name }} --cpu={{ item.cpu }} --memory={{ item.memMB }} --disk={{ item.diskGB }} ; \
     uvt-kvm wait --insecure {{ item.name }}
     creates=/var/lib/uvtool/libvirt/images/{{ item.name }}.qcow
   with_items: "{{ head_vm_list }}"

 - name: Have VMs autostart on reboot
   command: virsh autostart {{ item.name }}
   with_items: "{{ head_vm_list }}"

 - name: Create /etc/ansible/hosts file
   become: yes
   template:
     src=ansible_hosts.j2
     dest=/etc/ansible/hosts

 - name: Verify that we can log into every VM
   command: ansible services -m ping -u ubuntu

 - name: Update software in all the VMs
   command: ansible services -m apt -b -u ubuntu -a "upgrade=dist update_cache=yes cache_valid_time=3600"

 - name: Create VM's eth0 interface config file for DNS config via resolvconf program
   template:
     src=eth0.cfg.j2
     dest={{ ansible_user_dir }}/eth0.cfg

 - name: Copy eth0 interface config file to all VMs
   command: ansible services -b -u ubuntu -m copy -a "src={{ ansible_user_dir }}/eth0.cfg dest=/etc/network/interfaces.d/eth0.cfg owner=root group=root mode=0644"

 - name: Restart eth0 interface on all VMs
   command: ansible services -b -u ubuntu -m shell -a "ifdown eth0 ; ifup eth0"

 - name: Initialize Juju
   command: juju generate-config
     creates={{ ansible_user_dir }}/.juju/environments.yaml

 - name: Create Juju config file from template
   template:
     src=environments.yaml.j2
     dest={{ ansible_user_dir }}/.juju/environments.yaml

 - name: Bootstrap Juju
   command: juju bootstrap
     creates={{ ansible_user_dir }}/.juju/environments/manual.jenv

 - name: Create openstack.cfg for Juju from template
   become: yes
   template:
     src=openstack.cfg.j2
     dest={{ openstack_cfg_path }}

 # Code for this is in library/juju_facts.py
 - name: Obtain Juju Facts for creating machines
   juju_facts:

 # For setwise operations on desired vs Juju state:
 # list of VM names in head_vm_list dict: head_vm_list | map(attribute='name') | list
 # list of active juju_machines names: juju_machines.keys()
 # list of active juju_services names: juju_services.keys()

 - name: Add machines to Juju
   command: "juju add-machine ssh:{{ item }}"
   with_items: "{{ head_vm_list | map(attribute='service') | list | difference( juju_machines.keys() ) }}"

 # run this again, so machines will be in the juju_machines list
 - name: Obtain Juju Facts after machine creation
   juju_facts:

 - name: Deploy services that are hosted in their own VM
   command: "juju deploy {{ item }} --to {{ juju_machines[item]['machine_id'] }} --config={{ openstack_cfg_path }}"
   with_items: "{{ vm_service_list | difference( juju_services.keys() ) }}"

 - name: Deploy mongodb to ceilometer VM
   command: "juju deploy mongodb --to {{ juju_machines['ceilometer']['machine_id'] }} --config={{ openstack_cfg_path }}"
   when: juju_services['mongodb'] is undefined

 - name: Deploy services that don't have their own VM
   command: "juju deploy {{ item }} --config={{ openstack_cfg_path }}"
   with_items: "{{ standalone_service_list | difference( juju_services.keys() ) }}"

 # FIXME: ignoring errors when creating relationships.
 # Previous method wasn't idempotent either
 - name: Create relations between services
   command: "juju add-relation '{{ item.0.name }}' '{{ item.1 }}'"
   register: juju_relation
   failed_when: "juju_relation|failed and 'relation already exists' not in juju_relation.stderr"
   with_subelements:
     - "{{ service_relations }}"
     - relations

 # run another time, so services will be in juju_services list
 - name: Obtain Juju Facts after service creation
   juju_facts:

 # This should be able to test for the VM's coming up, but not working right now
 #- name: Wait for juju services on VM's to come up
 #  wait_for:
 #    port={{ item.ext }}
 #    timeout=10
 #  with_items: "{{ head_vm_list | map(attribute='forwarded_ports') | reject('undefined') | list }}"

 # - name: Obtain keystone admin password
 #   command: "juju run --unit={{ juju_services['keystone']['units'].keys()[0] }} 'sudo cat /var/lib/keystone/keystone.passwd'"
 #   register: keystone_password

 - name: Create admin-openrc.sh credentials file
   template:
    src=admin-openrc.sh.j2
    dest={{ ansible_user_dir }}/admin-openrc.sh

 - name: Copy nova-cloud-controller CA certificate to head
   command: juju scp {{ juju_services['nova-cloud-controller']['units'].keys()[0] }}:/usr/local/share/ca-certificates/keystone_juju_ca_cert.crt {{ ansible_user_dir }}
     creates={{ ansible_user_dir }}/keystone_juju_ca_cert.crt

 - name: Move cert to system location
   become: yes
   command: mv {{ ansible_user_dir }}/keystone_juju_ca_cert.crt /usr/local/share/ca-certificates
     creates=/usr/local/share/ca-certificates/keystone_juju_ca_cert.crt
   notify: update-ca-certificates
	---
	# roles/juju-setup/main/tasks.yml

	- name: Get ubuntu image for uvtool
	become: yes
	command: uvt-simplestreams-libvirt sync --source http://cloud-images.ubuntu.com/daily \
	release={{ ansible_distribution_release }} arch=amd64

	- name: create Virtual Machines with uvt-kvm
	shell: uvt-kvm create {{ item.name }} --cpu={{ item.cpu }} --memory={{ item.memMB }} --disk={{ item.diskGB }} ; \
	uvt-kvm wait --insecure {{ item.name }}
	creates=/var/lib/uvtool/libvirt/images/{{ item.name }}.qcow
	with_items: "{{ head_vm_list }}"

	- name: Have VMs autostart on reboot
	command: virsh autostart {{ item.name }}
	with_items: "{{ head_vm_list }}"

	- name: Create /etc/ansible/hosts file
	become: yes
	template:
	src=ansible_hosts.j2
	dest=/etc/ansible/hosts

	- name: Verify that we can log into every VM
	command: ansible services -m ping -u ubuntu

	- name: Update software in all the VMs
	command: ansible services -m apt -b -u ubuntu -a "upgrade=dist update_cache=yes cache_valid_time=3600"

	- name: Create VM's eth0 interface config file for DNS config via resolvconf program
	template:
	src=eth0.cfg.j2
	dest={{ ansible_user_dir }}/eth0.cfg

	- name: Copy eth0 interface config file to all VMs
	command: ansible services -b -u ubuntu -m copy -a "src={{ ansible_user_dir }}/eth0.cfg dest=/etc/network/interfaces.d/eth0.cfg owner=root group=root mode=0644"

	- name: Restart eth0 interface on all VMs
	command: ansible services -b -u ubuntu -m shell -a "ifdown eth0 ; ifup eth0"

	- name: Initialize Juju
	command: juju generate-config
	creates={{ ansible_user_dir }}/.juju/environments.yaml

	- name: Create Juju config file from template
	template:
	src=environments.yaml.j2
	dest={{ ansible_user_dir }}/.juju/environments.yaml

	- name: Bootstrap Juju
	command: juju bootstrap
	creates={{ ansible_user_dir }}/.juju/environments/manual.jenv

	- name: Create openstack.cfg for Juju from template
	become: yes
	template:
	src=openstack.cfg.j2
	dest={{ openstack_cfg_path }}

	# Code for this is in library/juju_facts.py
	- name: Obtain Juju Facts for creating machines
	juju_facts:

	# For setwise operations on desired vs Juju state:
	# list of VM names in head_vm_list dict: head_vm_list \| map(attribute='name') \| list
	# list of active juju_machines names: juju_machines.keys()
	# list of active juju_services names: juju_services.keys()

	- name: Add machines to Juju
	command: "juju add-machine ssh:{{ item }}"
	with_items: "{{ head_vm_list \| map(attribute='service') \| list \| difference( juju_machines.keys() ) }}"

	# run this again, so machines will be in the juju_machines list
	- name: Obtain Juju Facts after machine creation
	juju_facts:

	- name: Deploy services that are hosted in their own VM
	command: "juju deploy {{ item }} --to {{ juju_machines[item]['machine_id'] }} --config={{ openstack_cfg_path }}"
	with_items: "{{ vm_service_list \| difference( juju_services.keys() ) }}"

	- name: Deploy mongodb to ceilometer VM
	command: "juju deploy mongodb --to {{ juju_machines['ceilometer']['machine_id'] }} --config={{ openstack_cfg_path }}"
	when: juju_services['mongodb'] is undefined

	- name: Deploy services that don't have their own VM
	command: "juju deploy {{ item }} --config={{ openstack_cfg_path }}"
	with_items: "{{ standalone_service_list \| difference( juju_services.keys() ) }}"

	# FIXME: ignoring errors when creating relationships.
	# Previous method wasn't idempotent either
	- name: Create relations between services
	command: "juju add-relation '{{ item.0.name }}' '{{ item.1 }}'"
	register: juju_relation
	failed_when: "juju_relation\|failed and 'relation already exists' not in juju_relation.stderr"
	with_subelements:
	- "{{ service_relations }}"
	- relations

	# run another time, so services will be in juju_services list
	- name: Obtain Juju Facts after service creation
	juju_facts:

	# This should be able to test for the VM's coming up, but not working right now
	#- name: Wait for juju services on VM's to come up
	# wait_for:
	# port={{ item.ext }}
	# timeout=10
	# with_items: "{{ head_vm_list \| map(attribute='forwarded_ports') \| reject('undefined') \| list }}"

	# - name: Obtain keystone admin password
	# command: "juju run --unit={{ juju_services['keystone']['units'].keys()[0] }} 'sudo cat /var/lib/keystone/keystone.passwd'"
	# register: keystone_password

	- name: Create admin-openrc.sh credentials file
	template:
	src=admin-openrc.sh.j2
	dest={{ ansible_user_dir }}/admin-openrc.sh

	- name: Copy nova-cloud-controller CA certificate to head
	command: juju scp {{ juju_services['nova-cloud-controller']['units'].keys()[0] }}:/usr/local/share/ca-certificates/keystone_juju_ca_cert.crt {{ ansible_user_dir }}
	creates={{ ansible_user_dir }}/keystone_juju_ca_cert.crt

	- name: Move cert to system location
	become: yes
	command: mv {{ ansible_user_dir }}/keystone_juju_ca_cert.crt /usr/local/share/ca-certificates
	creates=/usr/local/share/ca-certificates/keystone_juju_ca_cert.crt
	notify: update-ca-certificates