| commit | author | age | ||
| 1874b6 | 1 | --- |
| GC | 2 | - name: Step 003 - Create env key |
| 3 | hosts: localhost | |
| 4 | connection: local | |
| 5 | gather_facts: false | |
| 6 | become: false | |
| 7 | tags: | |
| 8 | - step003 | |
| 9 | - generate_env_keys | |
| 10 | tasks: | |
| 11 | - name: Generate SSH keys | |
| 12 | shell: ssh-keygen -b 2048 -t rsa -f "{{output_dir}}/{{env_authorized_key}}" -q -N "" | |
| 13 | args: | |
| 14 | creates: "{{output_dir}}/{{env_authorized_key}}" | |
| e669cf | 15 | when: set_env_authorized_key | bool |
| 1874b6 | 16 | |
| GC | 17 | - name: fix permission |
| 18 | file: | |
| 19 | path: "{{output_dir}}/{{env_authorized_key}}" | |
| 20 | mode: 0400 | |
| e669cf | 21 | when: set_env_authorized_key | bool |
| 1874b6 | 22 | |
| GC | 23 | - name: Generate SSH pub key |
| 24 | shell: ssh-keygen -y -f "{{output_dir}}/{{env_authorized_key}}" > "{{output_dir}}/{{env_authorized_key}}.pub" | |
| 25 | args: | |
| 26 | creates: "{{output_dir}}/{{env_authorized_key}}.pub" | |
| e669cf | 27 | when: set_env_authorized_key | bool |
| 1874b6 | 28 | |
| GC | 29 | # Cloudformation template or equivalent should tag all hosts with Project:{{ env_type }}-{{ guid }} |
| 30 | - name: Configure all hosts with Repositories, Common Files and Set environment key | |
| 31 | hosts: | |
| 32 | - all:!windows | |
| 33 | become: true | |
| 34 | gather_facts: False | |
| 35 | tags: | |
| 36 | - step004 | |
| 37 | - common_tasks | |
| 38 | roles: | |
| 39 | - { role: "set-repositories", when: 'repo_method is defined' } | |
| e669cf | 40 | - { role: "common", when: 'install_common | bool' } |
| WK | 41 | - { role: "set_env_authorized_key", when: 'set_env_authorized_key | bool' } |
| 1874b6 | 42 | |
| GC | 43 | - name: Configuring Bastion Hosts |
| 44 | hosts: bastions | |
| 45 | become: true | |
| 46 | roles: | |
| e669cf | 47 | - { role: "bastion", when: 'install_bastion | bool' } |
| WK | 48 | - { role: "bastion-student-user", when: 'install_student_user | bool' } |
| 49 | - { role: "bastion-opentlc-ipa", when: 'install_ipa_client | bool' } | |
| 1874b6 | 50 | tags: |
| GC | 51 | - step004 |
| 52 | - bastion_tasks | |
| 53 | ||
| 046b05 | 54 | - name: Create a Python3 VirtualEnv for use in the k8s Ansible tasks |
| WK | 55 | hosts: bastions |
| 56 | gather_facts: false | |
| 57 | become: true | |
| 58 | tasks: | |
| 59 | - name: Setup pre-requisite python3 packages | |
| 60 | package: | |
| 61 | state: present | |
| 62 | name: | |
| 63 | - git | |
| 64 | - python3-pip | |
| 65 | ||
| 66 | - name: Setup pre-requisite pip3 packages | |
| 67 | pip: | |
| 68 | name: | |
| 69 | - virtualenv | |
| 70 | state: present | |
| 71 | executable: /usr/bin/pip3 | |
| 72 | ||
| 73 | - name: Copy requirements.txt to target for k8s virtualenv | |
| 74 | copy: | |
| 75 | src: ./files/requirements_k8s.txt | |
| 76 | dest: /tmp/requirements_k8s.txt | |
| 77 | ||
| 78 | - name: "Create virtualenv k8s" | |
| 79 | pip: | |
| 80 | requirements: /tmp/requirements_k8s.txt | |
| 81 | virtualenv: "/opt/virtualenvs/k8s" | |
| 82 | virtualenv_site_packages: no | |
| 83 | virtualenv_command: /usr/local/bin/virtualenv | |
| 84 | ||
| 1874b6 | 85 | - name: PreSoftware flight-check |
| GC | 86 | hosts: localhost |
| 87 | connection: local | |
| 88 | gather_facts: false | |
| 89 | become: false | |
| 90 | tags: | |
| 91 | - flight_check | |
| 92 | tasks: | |
| 93 | - debug: | |
| 94 | msg: "Pre-Software checks completed successfully" | |
