blame | history | raw
Wolfgang Kulhanek
2018-05-18 093010504aa6762d6d471eaa4912aa174131f23d 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166

###### VARIABLES YOU SHOULD CONFIGURE FOR YOUR DEPLOYEMNT


###### OR PASS as "-e" args to ansible-playbook command


 


### Common Host settings


repo_method: file # Other Options are: file, satellite and rhn


# Do you want to run a full yum update


update_packages: true


#If using repo_method: satellite, you must set these values as well.


# satellite_url: https://satellite.example.com


# satellite_org: Sat_org_name


# satellite_activationkey: "rhel7basic"


 


## guid is the deployment unique identifier, it will be appended to all tags,


## files and anything that identifies this environment from another "just like it"


guid: defaultguid


 


install_bastion: true


install_common: true


install_opentlc_integration: true


install_ipa_client: false


docker_device: /dev/xvdb


docker_version: "{{ '1.12.6' if repo_version | version_compare('3.9', '<')  else '1.13.1' }}"


 


### If you want a Key Pair name created and injected into the hosts,


# set `set_env_authorized_key` to true and set the keyname in `env_authorized_key`


# you can use the key used to create the environment or use your own self generated key


# if you set "use_own_key" to false your PRIVATE key will be copied to the bastion. (This is {{key_name}})


 


use_own_key: true


env_authorized_key: "{{guid}}key"


ansible_ssh_private_key_file: ~/.ssh/{{key_name}}.pem


set_env_authorized_key: true


 


# Is this running from Red Hat Ansible Tower


tower_run: false


 


### AWS EC2 Environment settings


 


### Route 53 Zone ID (AWS)


# This is the Route53 HostedZoneId where you will create your Public DNS entries


# This only needs to be defined if your CF template uses route53


HostedZoneId: Z3IHLWJZOU9SRT


# The region to be used, if not specified by -e in the command line


aws_region: us-east-1


# The key that is used to


key_name: "default_key_name"


 


## Networking (AWS)


subdomain_base_short: "{{ guid }}"


subdomain_base_suffix: ".example.opentlc.com"


subdomain_base: "{{subdomain_base_short}}{{subdomain_base_suffix}}"


 


## Environment Sizing


 


clientvm_instance_type: "t2.large"


 


###### VARIABLES YOU SHOULD ***NOT*** CONFIGURE FOR YOUR DEPLOYEMNT


 


## This might get removed


env_specific_images:


#   - "registry.access.redhat.com/jboss-eap-7/eap70-openshift:latest"


#   - "registry.access.redhat.com/openshift3/jenkins-2-rhel7:latest"


#   - "registry.access.redhat.com/openshift3/jenkins-slave-maven-rhel7:latest"


 


#### Vars for the OpenShift Ansible hosts file


## TODO: This should be registered as a variable. Awk for os verions (OCP).


## yum info openshift...


osrelease: 3.9.27


 


###### You can, but you usually wouldn't need to.


ansible_ssh_user: ec2-user


remote_user: ec2-user


 


common_packages:


  - python


  - unzip


  - bash-completion


  - tmux


  - bind-utils


  - wget


  - ansible


  - git


  - vim-enhanced


  - at


  - sysstat


  - strace


  - net-tools


  - iptables-services


  - bridge-utils


  - kexec-tools


  - sos


  - psacct


 


rhel_repos:


  - rhel-7-server-rpms


  - rhel-7-server-extras-rpms


  - rhel-7-server-ose-{{repo_version}}-rpms


  - rhel-7-fast-datapath-rpms


  - rhel-7-server-ansible-2.4-rpms


  


# use_subscription_manager: false


# use_own_repos: true


#


# rhn_pool_id_string: OpenShift Container Platform


 


### CLOUDFORMATIONS vars


 


project_tag: "{{ env_type }}-{{ guid }}"


 


create_internal_dns_entries: false


zone_internal_dns: "{{guid}}.internal."


chomped_zone_internal_dns: "{{guid}}.internal"


zone_public_dns: "{{subdomain_base}}."


 


bastion_public_dns: "bastion.{{subdomain_base}}."


bastion_public_dns_chomped: "bastion.{{subdomain_base}}"


vpcid_name_tag: "{{subdomain_base}}"


 


az_1_name: "{{ aws_region }}a"


az_2_name: "{{ aws_region }}b"


 


subnet_private_1_cidr_block: "192.168.2.0/24"


subnet_private_1_az: "{{ az_2_name }}"


subnet_private_1_name_tag: "{{subdomain_base}}-private"


 


subnet_private_2_cidr_block: "192.168.1.0/24"


subnet_private_2_az: "{{ az_1_name }}"


subnet_private_2_name_tag: "{{subdomain_base}}-private"


 


subnet_public_1_cidr_block: "192.168.10.0/24"


subnet_public_1_az: "{{ az_1_name }}"


subnet_public_1_name_tag: "{{subdomain_base}}-public"


 


subnet_public_2_cidr_block: "192.168.20.0/24"


subnet_public_2_az: "{{ az_2_name }}"


subnet_public_2_name_tag: "{{subdomain_base}}-public"


 


dopt_domain_name: "{{ aws_region }}.compute.internal"


 


rtb_public_name_tag: "{{subdomain_base}}-public"


rtb_private_name_tag: "{{subdomain_base}}-private"


 


cf_template_description: "{{ env_type }}-{{ guid }} template "


 


cloudformation_retries: 2


ocp_report: false


 


rootfs_size_clientvm: 200


 


instances:


  - name: "clientvm"


    count: 1


    unique: true


    public_dns: true


    flavor:


      "ec2": "{{clientvm_instance_type}}"


    tags:


      - key: "AnsibleGroup"


        value: "bastions"


      - key: "ostype"


        value: "linux"


    rootfs_size: "{{ rootfs_size_clientvm }}"


    volumes:


      - device_name: "{{docker_device}}"


        volume_size: 100


        volume_type: gp2