blame | history | raw
Wolfgang Kulhanek
2019-06-07 91843b287b62f538c7a2af6f5f8ffe7a8bbc4ac2 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57

---


- name: post_workload Tasks Complete


  debug:


    msg: "Pre-Software checks completed successfully - Removed"


 


- name: Remove user from developer group - (remove ability to create projects)


  command: "oc adm groups remove-users {{item}} {{ocp_username}}"


  register: groupadd_register


  with_items: "{{ocp_user_groups}}"


  when:


    - ocp_username is defined


    - ocp_user_groups | default([]) | length > 0


 


- name: Remove user Quota - oc delete clusterresourcequota  "clusterquota-{{ocp_username}}-{{guid}}"


  command: oc delete clusterresourcequota clusterquota-{{ocp_username}}-{{guid}}


  ignore_errors: true


 


- name: Remove user Quota - oc delete clusterresourcequota  "clusterquota-{{ocp_username}}"


  command: oc delete clusterresourcequota clusterquota-{{ocp_username}}


  ignore_errors: true


 


- name: Remove user Projects - oc get projects


  command: "oc get projects -o json"


  register: all_projects


 


- name: Remove user Projects - Convert output to json


  set_fact:


    projects: "{{all_projects.stdout | from_json}}"


 


- name: Remove user Projects -  Debug statement


  debug:


    msg: "found user project: {{item.metadata.name}}"


    verbosity: 1


  when:


    - item.metadata.annotations['openshift.io/requester'] is defined


    - item.metadata.annotations['openshift.io/requester'] == ocp_username


  with_items: "{{projects['items']}}"


 


- name: Remove user Projects - "oc delete project {{item.metadata.name}}"


  command: "oc delete project {{item.metadata.name}}"


  when:


    - item.metadata.annotations['openshift.io/requester'] is defined


    - item.metadata.annotations['openshift.io/requester'] == ocp_username


    - item.status.phase is defined


    - item.status.phase != "Terminating"


  with_items: "{{projects['items']}}"


 


- name: Remove user from Grading Jenkins"


  command: |


        oc policy remove-role-from-user view {{ocp_username}} -n {{gpte_jenkins_project}}


  ignore_errors: true


 


# Leave this as the last task in the playbook.


- name: remove_workload tasks complete


  debug:


    msg: "Remove Workload tasks completed successfully."


  when: not silent|bool