Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 1 | --- |
| 2 | # cord-profile/tasks/main.yml |
| 3 | # Constructs a CORD service profile directory and configuration files |
| 4 | |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 5 | - name: Create and copy XOS admin password |
| 6 | copy: |
| 7 | content: "{{ xos_admin_pass }}" |
| 8 | dest: "{{ cord_dir }}/build/platform-install/credentials/{{ xos_admin_user }}" |
| 9 | |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 10 | - name: Create cord_profile directory |
| 11 | become: yes |
| 12 | file: |
| 13 | path: "{{ cord_profile_dir }}" |
| 14 | state: directory |
| 15 | mode: 0755 |
| 16 | owner: "{{ ansible_user_id }}" |
| 17 | group: "{{ ansible_user_gid }}" |
| 18 | |
Zack Williams | 44845c6 | 2017-04-21 13:57:14 -0700 | [diff] [blame] | 19 | - name: Create cord_profile/profile_name, containing profile name |
Zack Williams | 2478b30 | 2017-02-14 10:42:55 -0700 | [diff] [blame] | 20 | copy: |
| 21 | dest: "{{ cord_profile_dir }}/profile_name" |
| 22 | content: "{{ cord_profile }}" |
| 23 | mode: 0644 |
| 24 | |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 25 | - name: Create subdirectories inside cord_profile directory |
| 26 | file: |
| 27 | path: "{{ cord_profile_dir }}/{{ item }}" |
| 28 | state: directory |
| 29 | mode: 0755 |
| 30 | with_items: |
| 31 | - key_import |
| 32 | - onboarding-docker-compose |
| 33 | - images |
| 34 | |
Andy Bavier | 1ff4b48 | 2017-03-24 09:20:36 -0400 | [diff] [blame] | 35 | # *** This should be revisited. *** |
| 36 | # Currently the key pair is generated on the head node by the |
| 37 | # "prep" role in the "maas" repo, invoked during the "deployBase" Gradle task. |
| 38 | # The keys should probably be generated earlier, in the corddev VM, and copied over. |
| 39 | # The /opt/credentials directory might be a good place to keep the generated keys. |
| 40 | # |
| 41 | # Ensure a keypair exists in case we're not running on MaaS. |
| 42 | - name: Ensure keypair |
| 43 | user: |
| 44 | name: "{{ ansible_user_id }}" |
| 45 | generate_ssh_key: yes |
| 46 | |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 47 | - name: Copy ssh keys to key_import directory |
| 48 | copy: |
Andy Bavier | 4b490d7 | 2017-03-25 07:59:21 -0400 | [diff] [blame] | 49 | # 'expanduser' won't work below, it expands on control machine |
Andy Bavier | 53b03f6 | 2017-03-25 11:42:23 -0400 | [diff] [blame] | 50 | src: "{{ item.source_path | replace('~', ansible_user_dir, 1) }}" |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 51 | dest: "{{ cord_profile_dir }}/key_import/{{ item.name }}" |
| 52 | mode: 0600 |
Andy Bavier | 1ff4b48 | 2017-03-24 09:20:36 -0400 | [diff] [blame] | 53 | remote_src: True |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 54 | with_items: "{{ xos_service_sshkeys }}" |
| 55 | |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 56 | - name: Copy cert chain and core api key and cert |
Andy Bavier | f0b5d7d | 2017-03-15 16:19:03 -0400 | [diff] [blame] | 57 | copy: |
Zack Williams | 44845c6 | 2017-04-21 13:57:14 -0700 | [diff] [blame] | 58 | src: "{{ pki_dir }}/{{ item.src }}" |
| 59 | dest: "{{ cord_profile_dir }}/{{ item.dest }}" |
Andy Bavier | f0b5d7d | 2017-03-15 16:19:03 -0400 | [diff] [blame] | 60 | mode: 0600 |
| 61 | with_items: |
Zack Williams | 44845c6 | 2017-04-21 13:57:14 -0700 | [diff] [blame] | 62 | - src: "{{ site_name }}_im_ca/private/xos-core.{{ site_suffix }}_key.pem" |
| 63 | dest: "core_api_key.pem" |
| 64 | - src: "{{ site_name }}_im_ca/certs/xos-core.{{ site_suffix }}_cert_chain.pem" |
| 65 | dest: "core_api_cert.pem" |
| 66 | - src: "{{ site_name }}_im_ca/certs/im_cert_chain.pem" |
| 67 | dest: "im_cert_chain.pem" |
Andy Bavier | f0b5d7d | 2017-03-15 16:19:03 -0400 | [diff] [blame] | 68 | |
Andy Bavier | 53b03f6 | 2017-03-25 11:42:23 -0400 | [diff] [blame] | 69 | - name: Get localhost facts (to get local uid and gid) |
| 70 | setup: |
| 71 | delegate_to: localhost |
| 72 | delegate_facts: True |
| 73 | |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 74 | - name: Make local images directory |
| 75 | delegate_to: localhost |
Zack Williams | c6ff6b3 | 2017-02-10 16:35:29 -0700 | [diff] [blame] | 76 | become: yes |
| 77 | file: |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 78 | path: "{{ image_dir }}" |
Zack Williams | c6ff6b3 | 2017-02-10 16:35:29 -0700 | [diff] [blame] | 79 | state: directory |
| 80 | mode: 0755 |
Andy Bavier | 53b03f6 | 2017-03-25 11:42:23 -0400 | [diff] [blame] | 81 | owner: "{{ hostvars['localhost']['ansible_user_id'] }}" |
| 82 | group: "{{ hostvars['localhost']['ansible_user_gid'] }}" |
Zack Williams | c6ff6b3 | 2017-02-10 16:35:29 -0700 | [diff] [blame] | 83 | |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 84 | - name: Download Glance VM images |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 85 | when: use_openstack |
| 86 | delegate_to: localhost |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 87 | get_url: |
| 88 | url: "{{ item.url }}" |
| 89 | checksum: "{{ item.checksum }}" |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 90 | dest: "{{ image_dir }}/{{ item.name }}.qcow2" |
Zack Williams | c6ff6b3 | 2017-02-10 16:35:29 -0700 | [diff] [blame] | 91 | with_items: "{{ xos_images }}" |
Zack Williams | 275e48b | 2017-03-24 12:16:00 -0700 | [diff] [blame] | 92 | register: glance_vm_result |
| 93 | until: glance_vm_result|success |
| 94 | retries: 5 |
| 95 | delay: 10 |
Zack Williams | c6ff6b3 | 2017-02-10 16:35:29 -0700 | [diff] [blame] | 96 | |
| 97 | - name: Copy Glance VM images to profile directory |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 98 | when: use_openstack |
Zack Williams | c6ff6b3 | 2017-02-10 16:35:29 -0700 | [diff] [blame] | 99 | copy: |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 100 | src: "{{ image_dir }}/{{ item.name }}.qcow2" |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 101 | dest: "{{ cord_profile_dir }}/images/{{ item.name }}.qcow2" |
| 102 | with_items: "{{ xos_images }}" |
| 103 | |
| 104 | - name: Copy over commonly used and utility TOSCA files |
| 105 | copy: |
| 106 | src: "{{ item }}" |
| 107 | dest: "{{ cord_profile_dir }}/{{ item }}" |
| 108 | with_items: |
| 109 | - fixtures.yaml |
| 110 | - enable-onboarding.yaml |
| 111 | - disable-onboarding.yaml |
| 112 | |
| 113 | - name: Create templated XOS configuration files |
| 114 | template: |
| 115 | src: "{{ item }}.j2" |
| 116 | dest: "{{ cord_profile_dir }}/{{ item }}" |
| 117 | mode: 0644 |
| 118 | with_items: |
| 119 | - xos_common_config |
Matteo Scandolo | d222134 | 2017-05-25 18:16:57 -0700 | [diff] [blame] | 120 | - xos_config.yaml |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 121 | - deployment.yaml |
| 122 | - xos.yaml |
Scott Baker | 970f24b | 2017-02-13 14:16:40 -0800 | [diff] [blame] | 123 | - gateway-config.yml |
Matteo Scandolo | 667334f | 2017-02-26 10:58:08 -0800 | [diff] [blame] | 124 | - style.config.js |
| 125 | - app.config.js |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 126 | - Dockerfile.xos |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 127 | - xos-gui-extensions.yml |
Andy Bavier | 9e7d54a | 2017-04-17 11:37:02 -0400 | [diff] [blame] | 128 | - docker-compose.yml |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 129 | |
| 130 | - name: Create profile specific templated TOSCA config files |
| 131 | template: |
| 132 | src: "{{ item }}.j2" |
| 133 | dest: "{{ cord_profile_dir }}/{{ item }}" |
| 134 | with_items: "{{ xos_tosca_config_templates }}" |
| 135 | |
| 136 | - name: Create profile specific templated non-TOSCA files |
| 137 | template: |
| 138 | src: "{{ item }}.j2" |
| 139 | dest: "{{ cord_profile_dir }}/{{ item }}" |
| 140 | with_items: "{{ xos_other_templates }}" |
| 141 | |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 142 | - name: Copy node key |
| 143 | when: not on_maas and use_openstack |
Zack Williams | a276311 | 2017-01-03 11:38:38 -0700 | [diff] [blame] | 144 | copy: |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 145 | src: "{{ ansible_user_dir }}/.ssh/id_rsa" |
| 146 | dest: "{{ item }}/node_key" |
| 147 | owner: "{{ ansible_user }}" |
Zack Williams | 2a5f686 | 2017-02-09 16:39:52 -0700 | [diff] [blame] | 148 | mode: 0600 |
Andy Bavier | 1ff4b48 | 2017-03-24 09:20:36 -0400 | [diff] [blame] | 149 | remote_src: True |
Andy Bavier | a6cffe1 | 2017-03-15 17:33:42 -0400 | [diff] [blame] | 150 | with_items: |
| 151 | - "{{ ansible_user_dir }}" |
| 152 | - "{{ cord_profile_dir }}" |
| 153 | |
| 154 | - name: Copy node key (MaaS) |
| 155 | when: on_maas and use_openstack |
| 156 | become: yes |
| 157 | copy: |
| 158 | src: "{{ maas_node_key }}" |
| 159 | dest: "{{ item }}/node_key" |
| 160 | owner: "{{ ansible_user }}" |
| 161 | mode: 0600 |
| 162 | remote_src: True |
| 163 | with_items: |
| 164 | - "{{ ansible_user_dir }}" |
| 165 | - "{{ cord_profile_dir }}" |