blob: 2a63cddf011cea7e3ee6509932673d13b669e3ef [file] [log] [blame]
---
# file: roles/head-prep/tasks/main.yml
- name: Install prerequisites for using PPA repos
apt:
name: "{{ item }}"
update_cache: yes
cache_valid_time: 3600
with_items:
- python-pycurl
- software-properties-common
- name: Add Ansible PPA
apt_repository:
repo={{ item }}
with_items:
- "{{ ansible_apt_repo | default('ppa:ansible/ansible') }}"
register: result
until: result | success
retries: 3
delay: 10
- name: Install packages
apt:
name: "{{ item }}"
update_cache: yes
cache_valid_time: 3600
with_items:
- bridge-utils
- dnsutils
- git
- juju-core
- libssl-dev
- libvirt-bin
- python-dev
- python-glanceclient
- python-keystoneclient
- python-lxml
- python-neutronclient
- python-novaclient
- python-pip
- sshpass
- virt-top
- name: Install Ansible via pip
pip: name=ansible version=2.2.3.0
# - name: Make sure Ansible is newest version
# apt:
# name: "ansible"
# state: latest
# update_cache: yes
# cache_valid_time: 3600
# tags:
# - skip_ansible_lint # ansible-lint complains about latest, need this as distro provided 1.5.x version may be used if already installed.
- name: Install Python packages
pip:
name: "{{ item }}"
with_items:
- ndg-httpsclient
- passlib
- pyasn1
- pyopenssl
- urllib3
- gitpython
- graphviz
- name: Add pod ssh private key to head node user
copy:
src: "{{ ssh_pki_dir }}/client_certs/{{ pod_sshkey_name }}_sshkey"
dest: "{{ ansible_user_dir }}/.ssh/id_{{ ssh_keytype }}"
owner: "{{ ansible_user_id }}"
group: "{{ ansible_user_gid }}"
mode: 0600
- name: Add pod ssh public key to head user
copy:
src: "{{ ssh_pki_dir }}/client_certs/{{ pod_sshkey_name }}_sshkey.pub"
dest: "{{ ansible_user_dir }}/.ssh/id_{{ ssh_keytype }}.pub"
owner: "{{ ansible_user_id }}"
group: "{{ ansible_user_gid }}"
mode: 0644
- name: Add pod ssh signed public key to head node user
copy:
src: "{{ ssh_pki_dir }}/client_certs/{{ pod_sshkey_name }}_sshkey-cert.pub"
dest: "{{ ansible_user_dir }}/.ssh/id_{{ ssh_keytype }}-cert.pub"
owner: "{{ ansible_user_id }}"
group: "{{ ansible_user_gid }}"
mode: 0644
- name: Disable host key checking in ~/.ssh/config
lineinfile:
dest: "{{ ansible_user_dir }}/.ssh/config"
line: "StrictHostKeyChecking no"
create: yes
owner: "{{ ansible_user_id }}"
group: "{{ ansible_user_gid }}"
mode: 0600
- name: Disable host key checking in ~/.ansible.cfg
copy:
src: ansible.cfg
dest: "{{ ansible_user_dir }}/.ansible.cfg"
owner: "{{ ansible_user_id }}"
group: "{{ ansible_user_gid }}"
mode: 0644