RedHatTraining/agnosticd.git

parent: d9b7f378 | patch | commit | ignore whitespace

Erik Jacobs

2019-11-08 09cb5ea194bfe196ce0fcf2c2931d7e6b40e509d

Ocp admin workshop updates (#817)

* removes elasticsearch operator which is unused

* switches mechanism for deploying workshop labguide

1 files deleted

2 files added

2 files modified

	ansible/roles/ocp4-workload-workshop-admin-storage/files/production-cluster-admin.json	392 ●●●●● patch \| view \| raw \| blame \| history
	ansible/roles/ocp4-workload-workshop-admin-storage/files/workshop-settings.j2	9 ●●●●● patch \| view \| raw \| blame \| history
	ansible/roles/ocp4-workload-workshop-admin-storage/tasks/clean-admin.yml	49 ●●●●● patch \| view \| raw \| blame \| history
	ansible/roles/ocp4-workload-workshop-admin-storage/tasks/pre_workload.yml	4 ●●●●● patch \| view \| raw \| blame \| history
	ansible/roles/ocp4-workload-workshop-admin-storage/tasks/workload.yml	376 ●●●●● patch \| view \| raw \| blame \| history

 ansible/roles/ocp4-workload-workshop-admin-storage/files/production-cluster-admin.json

New file
@@ -0,0 +1,392 @@
{
    "kind": "Template",
    "apiVersion": "v1",
    "metadata": {
        "name": "workshop-dashboard-production-cluster-admin",
        "annotations": {
            "openshift.io/display-name": "Workshop Dashboard (Production/Cluster Admin)"
        }
    },
    "parameters": [
        {
            "name": "APPLICATION_NAME",
            "value": "dashboard",
            "required": true
        },
        {
            "name": "PROJECT_NAME",
            "value": "",
            "required": true
        },
        {
            "name": "TERMINAL_IMAGE",
            "value": "quay.io/openshifthomeroom/workshop-dashboard:4.3.0",
            "required": true
        },
        {
            "name": "AUTH_USERNAME",
            "value": ""
        },
        {
            "name": "AUTH_PASSWORD",
            "generate": "expression",
            "from": "[a-zA-Z0-9]{16}"
        },
        {
            "name": "CLUSTER_SUBDOMAIN",
            "value": ""
        },
        {
            "name": "OPENSHIFT_PROJECT",
            "value": ""
        },
        {
            "name": "TERMINAL_ENVVARS",
            "value": ""
        },
        {
            "name": "WORKSHOP_ENVVARS",
            "value": ""
        },
        {
            "name": "GATEWAY_ENVVARS",
            "value": ""
        },
        {
            "name": "DOWNLOAD_URL",
            "value": ""
        },
        {
            "name": "WORKSHOP_FILE",
            "value": ""
        },
        {
            "name": "WORKSHOPPER_URLS",
            "value": "",
            "description": "OBSOLETE: See DOWNLOAD_URL instead."
        },
        {
            "name": "OC_VERSION",
            "value": ""
        },
        {
            "name": "ODO_VERSION",
            "value": ""
        },
        {
            "name": "KUBECTL_VERSION",
            "value": ""
        },
        {
            "name": "CONSOLE_VERSION",
            "value": "",
            "description": "OBSOLETE: See CONSOLE_IMAGE instead."
        },
        {
            "name": "CONSOLE_IMAGE",
            "value": "quay.io/openshift/origin-console:4.1",
            "required": true
        },
        {
            "name": "CONSOLE_BRANDING",
            "value": "openshift",
            "required": true
        }
    ],
    "objects": [
        {
            "kind": "ServiceAccount",
            "apiVersion": "v1",
            "metadata": {
                "name": "${APPLICATION_NAME}-user",
                "labels": {
                    "app": "${APPLICATION_NAME}"
                },
                "annotations": {
                    "serviceaccounts.openshift.io/oauth-redirectreference.first": "{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"${APPLICATION_NAME}\"}}",
                    "serviceaccounts.openshift.io/oauth-redirecturi.first": "oauth_callback",
                    "serviceaccounts.openshift.io/oauth-want-challenges": "false"
                }
            }
        },
        {
            "kind": "ClusterRoleBinding",
            "apiVersion": "v1",
            "metadata": {
                "name": "${APPLICATION_NAME}-cluster-admin",
                "labels": {
                    "app": "${APPLICATION_NAME}"
                }
            },
            "subjects": [
                {
                    "kind": "ServiceAccount",
                    "name": "${APPLICATION_NAME}-user",
                    "namespace": "${PROJECT_NAME}"
                }
            ],
            "roleRef": {
                "apiGroup": "rbac.authorization.k8s.io",
                "kind": "ClusterRole",
                "name": "cluster-admin"
            }
        },
        {
            "kind": "ImageStream",
            "apiVersion": "v1",
            "metadata": {
                "name": "${APPLICATION_NAME}",
                "labels": {
                    "app": "${APPLICATION_NAME}"
                }
            },
            "spec": {
                "lookupPolicy": {
                    "local": true
                },
                "tags": [
                    {
                        "name": "latest",
                        "from": {
                            "kind": "DockerImage",
                            "name": "${TERMINAL_IMAGE}"
                        }
                    }
                ]
            }
        },
        {
            "kind": "ConfigMap",
            "apiVersion": "v1",
            "metadata": {
                "name": "${APPLICATION_NAME}-env",
                "labels": {
                    "app": "${APPLICATION_NAME}"
                }
            },
            "data": {
                "terminal.sh": "${TERMINAL_ENVVARS}",
                "workshop.sh": "${WORKSHOP_ENVVARS}",
                "gateway.sh": "${GATEWAY_ENVVARS}"
            }
        },
        {
            "kind": "DeploymentConfig",
            "apiVersion": "v1",
            "metadata": {
                "name": "${APPLICATION_NAME}",
                "labels": {
                    "app": "${APPLICATION_NAME}"
                }
            },
            "spec": {
                "strategy": {
                    "type": "Recreate"
                },
                "triggers": [
                    {
                        "type": "ConfigChange"
                    },
                    {
                        "type": "ImageChange",
                        "imageChangeParams": {
                            "automatic": true,
                            "containerNames": [
                                "terminal"
                            ],
                            "from": {
                                "kind": "ImageStreamTag",
                                "name": "${APPLICATION_NAME}:latest"
                            }
                        }
                    }
                ],
                "replicas": 1,
                "selector": {
                    "app": "${APPLICATION_NAME}",
                    "deploymentconfig": "${APPLICATION_NAME}"
                },
                "template": {
                    "metadata": {
                        "labels": {
                            "app": "${APPLICATION_NAME}",
                            "deploymentconfig": "${APPLICATION_NAME}"
                        }
                    },
                    "spec": {
                        "serviceAccountName": "${APPLICATION_NAME}-user",
                        "containers": [
                            {
                                "name": "terminal",
                                "image": "${APPLICATION_NAME}:latest",
                                "ports": [
                                    {
                                        "containerPort": 10080,
                                        "protocol": "TCP"
                                    }
                                ],
                                "env": [
                                    {
                                        "name": "PROJECT_NAMESPACE",
                                        "valueFrom": {
                                            "fieldRef": {
                                                "fieldPath": "metadata.namespace"
                                            }
                                        }
                                    },
                                    {
                                        "name": "APPLICATION_NAME",
                                        "value": "${APPLICATION_NAME}"
                                    },
                                    {
                                        "name": "CONFIGURATION_TYPE",
                                        "value": "cluster-admin"
                                    },
                                    {
                                        "name": "AUTH_USERNAME",
                                        "value": "${AUTH_USERNAME}"
                                    },
                                    {
                                        "name": "AUTH_PASSWORD",
                                        "value": "${AUTH_PASSWORD}"
                                    },
                                    {
                                        "name": "CLUSTER_SUBDOMAIN",
                                        "value": "${CLUSTER_SUBDOMAIN}"
                                    },
                                    {
                                        "name": "OPENSHIFT_PROJECT",
                                        "value": "${OPENSHIFT_PROJECT}"
                                    },
                                    {
                                        "name": "OAUTH_SERVICE_ACCOUNT",
                                        "value": "${APPLICATION_NAME}-user"
                                    },
                                    {
                                        "name": "DOWNLOAD_URL",
                                        "value": "${DOWNLOAD_URL}"
                                    },
                                    {
                                        "name": "WORKSHOP_FILE",
                                        "value": "${WORKSHOP_FILE}"
                                    },
                                    {
                                        "name": "CONSOLE_URL",
                                        "value": "http://0.0.0.0:10083"
                                    },
                                    {
                                        "name": "OC_VERSION",
                                        "value": "${OC_VERSION}"
                                    },
                                    {
                                        "name": "ODO_VERSION",
                                        "value": "${ODO_VERSION}"
                                    },
                                    {
                                        "name": "KUBECTL_VERSION",
                                        "value": "${KUBECTL_VERSION}"
                                    }
                                ],
                                "volumeMounts": [
                                    {
                                        "name": "envvars",
                                        "mountPath": "/opt/workshop/envvars"
                                    }
                                ]
                            },
                            {
                                "name": "console",
                                "image": "${CONSOLE_IMAGE}",
                                "command": [ "/opt/bridge/bin/bridge" ],
                                "env": [
                                    {
                                        "name": "BRIDGE_K8S_MODE",
                                        "value": "in-cluster"
                                    },
                                    {
                                        "name": "BRIDGE_LISTEN",
                                        "value": "http://0.0.0.0:10083"
                                    },
                                    {
                                        "name": "BRIDGE_BASE_PATH",
                                        "value": "/console/"
                                    },
                                    {
                                        "name": "BRIDGE_PUBLIC_DIR",
                                        "value": "/opt/bridge/static"
                                    },
                                    {
                                        "name": "BRIDGE_USER_AUTH",
                                        "value": "disabled"
                                    },
                                    {
                                        "name": "BRIDGE_BRANDING",
                                        "value": "${CONSOLE_BRANDING}"
                                    }
                                ]
                            }
                        ],
                        "volumes": [
                            {
                                "name": "envvars",
                                "configMap": {
                                    "name": "${APPLICATION_NAME}-env",
                                    "defaultMode": 420
                                }
                            }
                        ]
                    }
                }
            }
        },
        {
            "kind": "Service",
            "apiVersion": "v1",
            "metadata": {
                "name": "${APPLICATION_NAME}",
                "labels": {
                    "app": "${APPLICATION_NAME}"
                }
            },
            "spec": {
                "ports": [
                    {
                        "name": "10080-tcp",
                        "protocol": "TCP",
                        "port": 10080,
                        "targetPort": 10080
                    }
                ],
                "selector": {
                    "app": "${APPLICATION_NAME}",
                    "deploymentconfig": "${APPLICATION_NAME}"
                }
            }
        },
        {
            "kind": "Route",
            "apiVersion": "v1",
            "metadata": {
                "name": "${APPLICATION_NAME}",
                "labels": {
                    "app": "${APPLICATION_NAME}"
                }
            },
            "spec": {
                "host": "",
                "to": {
                    "kind": "Service",
                    "name": "${APPLICATION_NAME}",
                    "weight": 100
                },
                "port": {
                    "targetPort": "10080-tcp"
                },
                "tls": {
                    "termination": "edge",
                    "insecureEdgeTerminationPolicy": "Redirect"
                }
            }
        }
    ]
}

 ansible/roles/ocp4-workload-workshop-admin-storage/files/workshop-settings.j2

New file
@@ -0,0 +1,9 @@
API_URL={{ api_url }}
MASTER_URL={{ master_url }}
KUBEADMIN_PASSWORD={{ kubeadmin_password }}
SSH_USERNAME={{ student_name }}
SSH_PASSWORD={{ student_password }}
BASTION_FQDN={{ bastion_fqdn }}
GUID={{ guid }}
ROUTE_SUBDOMAIN={{ route_subdomain }}
HOME_PATH=/opt/app-root/src

 ansible/roles/ocp4-workload-workshop-admin-storage/tasks/clean-admin.yml

File was deleted

 ansible/roles/ocp4-workload-workshop-admin-storage/tasks/pre_workload.yml

@@ -1,10 +1,6 @@
---
# Implement your Pre Workload deployment tasks here

- name: Cleaning admin
  include_tasks:
    file: ./clean-admin.yml

- name: extract api_url
  command: oc whoami --show-server
  register: api_url_r

 ansible/roles/ocp4-workload-workshop-admin-storage/tasks/workload.yml

@@ -3,339 +3,67 @@

# Implement your Workload deployment tasks here

# Equivalent instruction to the following
# oc new-app https://raw.githubusercontent.com/openshift-labs/workshop-dashboard/3.5.0/templates/production-cluster-admin.json -n labguide \
#    --param APPLICATION_NAME=admin \
#    --param WORKSHOPPER_URLS=https://raw.githubusercontent.com/openshift/openshift-cns-testdrive/ocp4-prod/labguide/_ocp_admin_testdrive.yaml \
#    --param PROJECT_NAME=labguide \
#    --param WORKSHOP_ENVVARS="
# API_URL=$API_URL \
# MASTER_URL=$MASTER_URL \
# KUBEADMIN_PASSWORD=$KUBEADMIN_PASSWORD \
# SSH_USERNAME=$SSH_USERNAME \
# SSH_PASSWORD=$SSH_PASSWORD \
# BASTION_FQDN=$BASTION_FQDN \
# GUID=$GUID \
# ROUTE_SUBDOMAIN=$ROUTE_SUBDOMAIN \
# HOME_PATH=$HOME_PATH"
#
# oc new-app https://raw.githubusercontent.com/openshift-homeroom/workshop-dashboard/4.3.0/templates/production-cluster-admin.json \
# --param TERMINAL_IMAGE="quay.io/thoraxe/lab-ocp-cns:production" --param PROJECT_NAME="lab-ocp-cns" \
# --param WORKSHOP_ENVVARS="`cat /tmp/settings.sh`"

- name: set variables
  set_fact:
    project_name: labguide
    app_name: admin #don't forget to replace this value under ServiceAccount.metadata.annotations.
    terminal_image: quay.io/openshiftlabs/workshop-dashboard:3.5.0
    # console_version: 4.1.0 replaced by grabbing exact quay image.
    workshop_env: "API_URL={{ api_url }} \
          MASTER_URL={{ master_url }} \
          KUBEADMIN_PASSWORD={{ kubeadmin_password }} \
          SSH_USERNAME={{ student_name }} \
          SSH_PASSWORD={{ student_password }} \
          BASTION_FQDN={{ bastion_fqdn }} \
          GUID={{ guid }} \
          ROUTE_SUBDOMAIN={{ route_subdomain }} \
          HOME_PATH=/opt/app-root/src"
    serviceaccounts_oauth_redirectref_first: "'{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"admin\"}}'"
    download_url: https://raw.githubusercontent.com/openshift/openshift-cns-testdrive/ocp4-prod/labguide
    workshop_file: _ocp_admin_testdrive.yaml
  register: facts_set
- debug:
    var: facts_set
- name: create the variable template file
  template: 
    src: files/workshop-settings.j2
    dest: /tmp/workshop-settings.sh

- name: copy the openshift template to the remote host
  copy:
    src: files/production-cluster-admin.json
    dest: /tmp/production-cluster-admin.json

#- name: set variables
#  set_fact:
#    project_name: labguide
#    app_name: admin #don't forget to replace this value under ServiceAccount.metadata.annotations.
#    terminal_image: quay.io/openshiftlabs/workshop-dashboard:3.5.0
#    # console_version: 4.1.0 replaced by grabbing exact quay image.
#    workshop_env: "API_URL={{ api_url }} \
#          MASTER_URL={{ master_url }} \
#          KUBEADMIN_PASSWORD={{ kubeadmin_password }} \
#          SSH_USERNAME={{ student_name }} \
#          SSH_PASSWORD={{ student_password }} \
#          BASTION_FQDN={{ bastion_fqdn }} \
#          GUID={{ guid }} \
#          ROUTE_SUBDOMAIN={{ route_subdomain }} \
#          HOME_PATH=/opt/app-root/src"
#    serviceaccounts_oauth_redirectref_first: "'{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"admin\"}}'"
#    download_url: https://raw.githubusercontent.com/openshift/openshift-cns-testdrive/ocp4-prod/labguide
#    workshop_file: _ocp_admin_testdrive.yaml
#  register: facts_set
#- debug:
#    var: facts_set

- name: create the Project
  k8s:
    state: present
    name: "{{ project_name }}"
    kind: ProjectRequest
    name: lab-ocp-cns
    kind: Project
    api_version: project.openshift.io/v1
  register: ProjectRequest
- debug:
    var: ProjectRequest
  when: not silent|bool
  

- name: create the ServiceAccount
  k8s:
    namespace: "{{ project_name }}"
    state: present
    api_version: v1
    definition:
      kind: ServiceAccount
      metadata:
        name: "{{ app_name }}-user"
        labels:
          app: "{{ app_name }}"
        annotations:
          serviceaccounts.openshift.io/oauth-redirectreference.first: "{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"admin\"}}"
          serviceaccounts.openshift.io/oauth-redirecturi.first: oauth_callback
          serviceaccounts.openshift.io/oauth-want-challenges: 'false'
  register: ServiceAccount
- debug:
    var: ServiceAccount
  when: not silent|bool

- name: "create the ClusterRoleBinding {{ app_name }}-admin"
  k8s:
    namespace: "{{ project_name }}"
    state: present
    definition:
      apiVersion: rbac.authorization.k8s.io/v1
      kind: ClusterRoleBinding
      metadata:
        name: "{{ app_name }}-cluster-admin"
        labels:
          app: "{{ app_name }}"
      subjects:
      - kind: ServiceAccount
        name: "{{ app_name }}-user"
        namespace: "{{ project_name }}"
      roleRef:
        apiVersion: rbac.authorization.k8s.io/v1
        kind: ClusterRole
        name: cluster-admin
  register: ClusterRoleBinding
- debug:
    var: ClusterRoleBinding
  when: not silent|bool

- name: create the ImageStream
  k8s:
    state: present
    namespace: "{{ project_name }}"
    definition:
      apiVersion: image.openshift.io/v1
      kind: ImageStream
      metadata:
        name: "{{ app_name }}"
        labels:
          app: "{{ app_name }}"
      spec:
        lookupPolicy:
          local: true
        tags:
        - name: latest
          from:
            kind: DockerImage
            name: "{{ terminal_image }}"
  register: ImageStream
- debug:
    var: ImageStream
  when: not silent|bool

- name: create the ConfigMap
  k8s:
    namespace: "{{ project_name }}"
    state: present
    definition:
      kind: ConfigMap
      metadata:
        name: "{{ app_name }}-env"
        labels:
          app: "{{ app_name }}"
      data:
        workshop.sh: "{{ workshop_env }}"
  register: ConfigMap
- debug:
    var: ConfigMap
  when: not silent|bool

- name: Grab openshift-console console quay.io image to be embedded in homeroom
  k8s_facts:
    kind: Deployment
    api_version: apps/v1
    namespace: openshift-console
    name: console
  register: console_image_url_raw
- debug:
    var: console_image_url_raw.resources[0].spec.template.spec.containers[0].image
- name: set fact console_image_url
  set_fact:
    console_image_url: "{{ console_image_url_raw.resources[0].spec.template.spec.containers[0].image }}"

- name: create the DeploymentConfig
  k8s:
    namespace: "{{ project_name }}"
    definition:
      kind: DeploymentConfig
      apiVersion: v1
      metadata:
        name: "{{ app_name }}"
        labels:
          app: "{{ app_name }}"
      spec:
        strategy:
          type: Recreate
        triggers:
        - type: ConfigChange
        - type: ImageChange
          imageChangeParams:
            automatic: true
            containerNames:
            - terminal
            from:
              kind: ImageStreamTag
              name: "{{ app_name }}:latest"
        replicas: 1
        selector:
          app: "{{ app_name }}"
          deploymentconfig: "{{ app_name }}"
        template:
          metadata:
            labels:
              app: "{{ app_name }}"
              deploymentconfig: "{{ app_name }}"
          spec:
            serviceAccountName: "{{ app_name }}-user"
            initContainers:
            - name: setup-console
              image: "{{ terminal_image }}"
              command:
              - "/opt/workshop/bin/setup-console.sh"
              # env:
              # - name: OPENSHIFT_USERNAME
              #   value: "${OPENSHIFT_USERNAME}"
              # - name: OPENSHIFT_PASSWORD
              #   value: "${OPENSHIFT_PASSWORD}"
              # - name: OPENSHIFT_TOKEN
              #   value: "${OPENSHIFT_TOKEN}"
              # - name: OC_VERSION
              #   value: "${OC_VERSION}"
              # - name: ODO_VERSION
              #   value: "${ODO_VERSION}"
              # - name: KUBECTL_VERSION
              #   value: "${KUBECTL_VERSION}"
              volumeMounts:
              - name: shared
                mountPath: "/var/run/workshop"
            containers:
            - name: terminal
              image: "{{ app_name }}:latest"
              ports:
              - containerPort: 10080
                protocol: TCP
              env:
              - name: PROJECT_NAMESPACE
                valueFrom:
                  fieldRef:
                    fieldPath: metadata.namespace
              - name: APPLICATION_NAME
                value: "{{ app_name }}"
              # - name: AUTH_USERNAME
              #   value: "${AUTH_USERNAME}"
              # - name: AUTH_PASSWORD
              #   value: "${AUTH_PASSWORD}"
              - name: OAUTH_SERVICE_ACCOUNT
                value: "{{ app_name }}-user"
              - name: DOWNLOAD_URL
                value: "{{ download_url }}"
              - name: WORKSHOP_FILE
                value: "{{ workshop_file }}"
              # - name: WORKSHOPPER_URLS
              #   value: "${WORKSHOPPER_URLS}"
              - name: CONSOLE_URL
                value: http://0.0.0.0:10083
              # - name: OC_VERSION
              #   value: "${OC_VERSION}"
              # - name: ODO_VERSION
              #   value: "${ODO_VERSION}"
              # - name: KUBECTL_VERSION
              #   value: "${KUBECTL_VERSION}"
              volumeMounts:
              - name: envvars
                mountPath: "/opt/workshop/envvars"
              - name: shared
                mountPath: "/var/run/workshop"
            - name: console
              image: "{{ console_image_url }}"
              #image: "quay.io/openshift/origin-console:{{ console_version }}"
              command:
              - "/var/run/workshop/start-console.sh"
              env:
              - name: BRIDGE_K8S_MODE
                value: in-cluster
              - name: BRIDGE_LISTEN
                value: http://0.0.0.0:10083
              - name: BRIDGE_BASE_PATH
                value: "/console/"
              - name: BRIDGE_PUBLIC_DIR
                value: "/opt/bridge/static"
              - name: BRIDGE_USER_AUTH
                value: disabled
              - name: BRIDGE_BRANDING
                value: "openshift"
              volumeMounts:
              - name: shared
                mountPath: "/var/run/workshop"
            volumes:
            - name: envvars
              configMap:
                name: "{{ app_name }}-env"
                defaultMode: 420
            - name: shared
              emptyDir: {}

  register: DeploymentConfig
- debug:
    var: DeploymentConfig
  when: not silent|bool

- name: create the Service
  k8s:
    namespace: "{{ project_name }}"
    state: present
    kind: Service
    definition:
      metadata:
        name: "{{ app_name }}"
        labels:
          app: "{{ app_name }}"
      spec:
        ports:
        - name: 10080-tcp
          protocol: TCP
          port: 10080
          targetPort: 10080
        selector:
          app: "{{ app_name }}"
          deploymentconfig: "{{ app_name }}"
  register: Service
- debug:
    var: Service
  when: not silent|bool

- name: create the Route
  k8s:
    namespace: "{{ project_name }}"
    state: present
    kind: Route
    definition:
      metadata:
        name: "{{ app_name }}"
        labels:
          app: "{{ app_name }}"
      spec:
        host: ''
        to:
          kind: Service
          name: "{{ app_name }}"
          weight: 100
        port:
          targetPort: 10080-tcp
        tls:
          termination: edge
          insecureEdgeTerminationPolicy: Redirect
  register: Route
- name: deploy the labguide with the params file
  shell: |
    oc new-app -n lab-ocp-cns /tmp/production-cluster-admin.json \
    --param TERMINAL_IMAGE="quay.io/thoraxe/lab-ocp-cns:production" --param PROJECT_NAME="lab-ocp-cns" \
    --param WORKSHOP_ENVVARS="`cat /tmp/workshop-settings.sh`"

- name: add kubeadmin to RoleBinding admin enabling route access
  k8s:
    namespace: "{{ project_name }}"
    namespace: lab-ocp-cns
    state: present
    definition:
      apiVersion: rbac.authorization.k8s.io/v1
      kind: RoleBinding
      metadata:
        name: "{{ app_name }}"
        name: dashboard-admin
        labels:
          app: "{{ app_name }}"
          app: dashboard
      subjects:
      - kind: User
        apiGroup: rbac.authorization.k8s.io
@@ -345,18 +73,22 @@
        kind: ClusterRole
        name: admin
  register: RoleBinding
- debug:
    var: RoleBinding
  when: not silent|bool

- name: fetch the created route for output
  k8s_facts:
    api_version: route.openshift.io/v1
    kind: Route
    name: dashboard
    namespace: lab-ocp-cns
  register: Route

- debug:
    msg:
    - "user.info: "
    - "user.info: Access the workshop at '{{ Route.result.spec.host }}'"
    - "user.info: Access the workshop at '{{ Route.resources[0].spec.host }}'"
    - "user.info: Login with 'kubeadmin' and '{{ kubeadmin_password }}'"
    - "user.info: "
    - "user.info: Workshop may not be accessible until rollout finishes shortly."
  when: not silent|bool

# Leave this as the last task in the playbook.

New file
			@@ -0,0 +1,392 @@
			{
			"kind": "Template",
			"apiVersion": "v1",
			"metadata": {
			"name": "workshop-dashboard-production-cluster-admin",
			"annotations": {
			"openshift.io/display-name": "Workshop Dashboard (Production/Cluster Admin)"
			}
			},
			"parameters": [
			{
			"name": "APPLICATION_NAME",
			"value": "dashboard",
			"required": true
			},
			{
			"name": "PROJECT_NAME",
			"value": "",
			"required": true
			},
			{
			"name": "TERMINAL_IMAGE",
			"value": "quay.io/openshifthomeroom/workshop-dashboard:4.3.0",
			"required": true
			},
			{
			"name": "AUTH_USERNAME",
			"value": ""
			},
			{
			"name": "AUTH_PASSWORD",
			"generate": "expression",
			"from": "[a-zA-Z0-9]{16}"
			},
			{
			"name": "CLUSTER_SUBDOMAIN",
			"value": ""
			},
			{
			"name": "OPENSHIFT_PROJECT",
			"value": ""
			},
			{
			"name": "TERMINAL_ENVVARS",
			"value": ""
			},
			{
			"name": "WORKSHOP_ENVVARS",
			"value": ""
			},
			{
			"name": "GATEWAY_ENVVARS",
			"value": ""
			},
			{
			"name": "DOWNLOAD_URL",
			"value": ""
			},
			{
			"name": "WORKSHOP_FILE",
			"value": ""
			},
			{
			"name": "WORKSHOPPER_URLS",
			"value": "",
			"description": "OBSOLETE: See DOWNLOAD_URL instead."
			},
			{
			"name": "OC_VERSION",
			"value": ""
			},
			{
			"name": "ODO_VERSION",
			"value": ""
			},
			{
			"name": "KUBECTL_VERSION",
			"value": ""
			},
			{
			"name": "CONSOLE_VERSION",
			"value": "",
			"description": "OBSOLETE: See CONSOLE_IMAGE instead."
			},
			{
			"name": "CONSOLE_IMAGE",
			"value": "quay.io/openshift/origin-console:4.1",
			"required": true
			},
			{
			"name": "CONSOLE_BRANDING",
			"value": "openshift",
			"required": true
			}
			],
			"objects": [
			{
			"kind": "ServiceAccount",
			"apiVersion": "v1",
			"metadata": {
			"name": "${APPLICATION_NAME}-user",
			"labels": {
			"app": "${APPLICATION_NAME}"
			},
			"annotations": {
			"serviceaccounts.openshift.io/oauth-redirectreference.first": "{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"${APPLICATION_NAME}\"}}",
			"serviceaccounts.openshift.io/oauth-redirecturi.first": "oauth_callback",
			"serviceaccounts.openshift.io/oauth-want-challenges": "false"
			}
			}
			},
			{
			"kind": "ClusterRoleBinding",
			"apiVersion": "v1",
			"metadata": {
			"name": "${APPLICATION_NAME}-cluster-admin",
			"labels": {
			"app": "${APPLICATION_NAME}"
			}
			},
			"subjects": [
			{
			"kind": "ServiceAccount",
			"name": "${APPLICATION_NAME}-user",
			"namespace": "${PROJECT_NAME}"
			}
			],
			"roleRef": {
			"apiGroup": "rbac.authorization.k8s.io",
			"kind": "ClusterRole",
			"name": "cluster-admin"
			}
			},
			{
			"kind": "ImageStream",
			"apiVersion": "v1",
			"metadata": {
			"name": "${APPLICATION_NAME}",
			"labels": {
			"app": "${APPLICATION_NAME}"
			}
			},
			"spec": {
			"lookupPolicy": {
			"local": true
			},
			"tags": [
			{
			"name": "latest",
			"from": {
			"kind": "DockerImage",
			"name": "${TERMINAL_IMAGE}"
			}
			}
			]
			}
			},
			{
			"kind": "ConfigMap",
			"apiVersion": "v1",
			"metadata": {
			"name": "${APPLICATION_NAME}-env",
			"labels": {
			"app": "${APPLICATION_NAME}"
			}
			},
			"data": {
			"terminal.sh": "${TERMINAL_ENVVARS}",
			"workshop.sh": "${WORKSHOP_ENVVARS}",
			"gateway.sh": "${GATEWAY_ENVVARS}"
			}
			},
			{
			"kind": "DeploymentConfig",
			"apiVersion": "v1",
			"metadata": {
			"name": "${APPLICATION_NAME}",
			"labels": {
			"app": "${APPLICATION_NAME}"
			}
			},
			"spec": {
			"strategy": {
			"type": "Recreate"
			},
			"triggers": [
			{
			"type": "ConfigChange"
			},
			{
			"type": "ImageChange",
			"imageChangeParams": {
			"automatic": true,
			"containerNames": [
			"terminal"
			],
			"from": {
			"kind": "ImageStreamTag",
			"name": "${APPLICATION_NAME}:latest"
			}
			}
			}
			],
			"replicas": 1,
			"selector": {
			"app": "${APPLICATION_NAME}",
			"deploymentconfig": "${APPLICATION_NAME}"
			},
			"template": {
			"metadata": {
			"labels": {
			"app": "${APPLICATION_NAME}",
			"deploymentconfig": "${APPLICATION_NAME}"
			}
			},
			"spec": {
			"serviceAccountName": "${APPLICATION_NAME}-user",
			"containers": [
			{
			"name": "terminal",
			"image": "${APPLICATION_NAME}:latest",
			"ports": [
			{
			"containerPort": 10080,
			"protocol": "TCP"
			}
			],
			"env": [
			{
			"name": "PROJECT_NAMESPACE",
			"valueFrom": {
			"fieldRef": {
			"fieldPath": "metadata.namespace"
			}
			}
			},
			{
			"name": "APPLICATION_NAME",
			"value": "${APPLICATION_NAME}"
			},
			{
			"name": "CONFIGURATION_TYPE",
			"value": "cluster-admin"
			},
			{
			"name": "AUTH_USERNAME",
			"value": "${AUTH_USERNAME}"
			},
			{
			"name": "AUTH_PASSWORD",
			"value": "${AUTH_PASSWORD}"
			},
			{
			"name": "CLUSTER_SUBDOMAIN",
			"value": "${CLUSTER_SUBDOMAIN}"
			},
			{
			"name": "OPENSHIFT_PROJECT",
			"value": "${OPENSHIFT_PROJECT}"
			},
			{
			"name": "OAUTH_SERVICE_ACCOUNT",
			"value": "${APPLICATION_NAME}-user"
			},
			{
			"name": "DOWNLOAD_URL",
			"value": "${DOWNLOAD_URL}"
			},
			{
			"name": "WORKSHOP_FILE",
			"value": "${WORKSHOP_FILE}"
			},
			{
			"name": "CONSOLE_URL",
			"value": "http://0.0.0.0:10083"
			},
			{
			"name": "OC_VERSION",
			"value": "${OC_VERSION}"
			},
			{
			"name": "ODO_VERSION",
			"value": "${ODO_VERSION}"
			},
			{
			"name": "KUBECTL_VERSION",
			"value": "${KUBECTL_VERSION}"
			}
			],
			"volumeMounts": [
			{
			"name": "envvars",
			"mountPath": "/opt/workshop/envvars"
			}
			]
			},
			{
			"name": "console",
			"image": "${CONSOLE_IMAGE}",
			"command": [ "/opt/bridge/bin/bridge" ],
			"env": [
			{
			"name": "BRIDGE_K8S_MODE",
			"value": "in-cluster"
			},
			{
			"name": "BRIDGE_LISTEN",
			"value": "http://0.0.0.0:10083"
			},
			{
			"name": "BRIDGE_BASE_PATH",
			"value": "/console/"
			},
			{
			"name": "BRIDGE_PUBLIC_DIR",
			"value": "/opt/bridge/static"
			},
			{
			"name": "BRIDGE_USER_AUTH",
			"value": "disabled"
			},
			{
			"name": "BRIDGE_BRANDING",
			"value": "${CONSOLE_BRANDING}"
			}
			]
			}
			],
			"volumes": [
			{
			"name": "envvars",
			"configMap": {
			"name": "${APPLICATION_NAME}-env",
			"defaultMode": 420
			}
			}
			]
			}
			}
			}
			},
			{
			"kind": "Service",
			"apiVersion": "v1",
			"metadata": {
			"name": "${APPLICATION_NAME}",
			"labels": {
			"app": "${APPLICATION_NAME}"
			}
			},
			"spec": {
			"ports": [
			{
			"name": "10080-tcp",
			"protocol": "TCP",
			"port": 10080,
			"targetPort": 10080
			}
			],
			"selector": {
			"app": "${APPLICATION_NAME}",
			"deploymentconfig": "${APPLICATION_NAME}"
			}
			}
			},
			{
			"kind": "Route",
			"apiVersion": "v1",
			"metadata": {
			"name": "${APPLICATION_NAME}",
			"labels": {
			"app": "${APPLICATION_NAME}"
			}
			},
			"spec": {
			"host": "",
			"to": {
			"kind": "Service",
			"name": "${APPLICATION_NAME}",
			"weight": 100
			},
			"port": {
			"targetPort": "10080-tcp"
			},
			"tls": {
			"termination": "edge",
			"insecureEdgeTerminationPolicy": "Redirect"
			}
			}
			}
			]
			}

New file
			@@ -0,0 +1,9 @@
			API_URL={{ api_url }}
			MASTER_URL={{ master_url }}
			KUBEADMIN_PASSWORD={{ kubeadmin_password }}
			SSH_USERNAME={{ student_name }}
			SSH_PASSWORD={{ student_password }}
			BASTION_FQDN={{ bastion_fqdn }}
			GUID={{ guid }}
			ROUTE_SUBDOMAIN={{ route_subdomain }}
			HOME_PATH=/opt/app-root/src

			@@ -1,10 +1,6 @@
			---
			# Implement your Pre Workload deployment tasks here

			- name: Cleaning admin
			include_tasks:
			file: ./clean-admin.yml

			- name: extract api_url
			command: oc whoami --show-server
			register: api_url_r

			@@ -3,339 +3,67 @@

			# Implement your Workload deployment tasks here

			# Equivalent instruction to the following
			# oc new-app https://raw.githubusercontent.com/openshift-labs/workshop-dashboard/3.5.0/templates/production-cluster-admin.json -n labguide \
			# --param APPLICATION_NAME=admin \
			# --param WORKSHOPPER_URLS=https://raw.githubusercontent.com/openshift/openshift-cns-testdrive/ocp4-prod/labguide/_ocp_admin_testdrive.yaml \
			# --param PROJECT_NAME=labguide \
			# --param WORKSHOP_ENVVARS="
			# API_URL=$API_URL \
			# MASTER_URL=$MASTER_URL \
			# KUBEADMIN_PASSWORD=$KUBEADMIN_PASSWORD \
			# SSH_USERNAME=$SSH_USERNAME \
			# SSH_PASSWORD=$SSH_PASSWORD \
			# BASTION_FQDN=$BASTION_FQDN \
			# GUID=$GUID \
			# ROUTE_SUBDOMAIN=$ROUTE_SUBDOMAIN \
			# HOME_PATH=$HOME_PATH"
			#
			# oc new-app https://raw.githubusercontent.com/openshift-homeroom/workshop-dashboard/4.3.0/templates/production-cluster-admin.json \
			# --param TERMINAL_IMAGE="quay.io/thoraxe/lab-ocp-cns:production" --param PROJECT_NAME="lab-ocp-cns" \
			# --param WORKSHOP_ENVVARS="`cat /tmp/settings.sh`"

			- name: set variables
			set_fact:
			project_name: labguide
			app_name: admin #don't forget to replace this value under ServiceAccount.metadata.annotations.
			terminal_image: quay.io/openshiftlabs/workshop-dashboard:3.5.0
			# console_version: 4.1.0 replaced by grabbing exact quay image.
			workshop_env: "API_URL={{ api_url }} \
			MASTER_URL={{ master_url }} \
			KUBEADMIN_PASSWORD={{ kubeadmin_password }} \
			SSH_USERNAME={{ student_name }} \
			SSH_PASSWORD={{ student_password }} \
			BASTION_FQDN={{ bastion_fqdn }} \
			GUID={{ guid }} \
			ROUTE_SUBDOMAIN={{ route_subdomain }} \
			HOME_PATH=/opt/app-root/src"
			serviceaccounts_oauth_redirectref_first: "'{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"admin\"}}'"
			download_url: https://raw.githubusercontent.com/openshift/openshift-cns-testdrive/ocp4-prod/labguide
			workshop_file: _ocp_admin_testdrive.yaml
			register: facts_set
			- debug:
			var: facts_set
			- name: create the variable template file
			template:
			src: files/workshop-settings.j2
			dest: /tmp/workshop-settings.sh

			- name: copy the openshift template to the remote host
			copy:
			src: files/production-cluster-admin.json
			dest: /tmp/production-cluster-admin.json

			#- name: set variables
			# set_fact:
			# project_name: labguide
			# app_name: admin #don't forget to replace this value under ServiceAccount.metadata.annotations.
			# terminal_image: quay.io/openshiftlabs/workshop-dashboard:3.5.0
			# # console_version: 4.1.0 replaced by grabbing exact quay image.
			# workshop_env: "API_URL={{ api_url }} \
			# MASTER_URL={{ master_url }} \
			# KUBEADMIN_PASSWORD={{ kubeadmin_password }} \
			# SSH_USERNAME={{ student_name }} \
			# SSH_PASSWORD={{ student_password }} \
			# BASTION_FQDN={{ bastion_fqdn }} \
			# GUID={{ guid }} \
			# ROUTE_SUBDOMAIN={{ route_subdomain }} \
			# HOME_PATH=/opt/app-root/src"
			# serviceaccounts_oauth_redirectref_first: "'{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"admin\"}}'"
			# download_url: https://raw.githubusercontent.com/openshift/openshift-cns-testdrive/ocp4-prod/labguide
			# workshop_file: _ocp_admin_testdrive.yaml
			# register: facts_set
			#- debug:
			# var: facts_set

			- name: create the Project
			k8s:
			state: present
			name: "{{ project_name }}"
			kind: ProjectRequest
			name: lab-ocp-cns
			kind: Project
			api_version: project.openshift.io/v1
			register: ProjectRequest
			- debug:
			var: ProjectRequest
			when: not silent\|bool


			- name: create the ServiceAccount
			k8s:
			namespace: "{{ project_name }}"
			state: present
			api_version: v1
			definition:
			kind: ServiceAccount
			metadata:
			name: "{{ app_name }}-user"
			labels:
			app: "{{ app_name }}"
			annotations:
			serviceaccounts.openshift.io/oauth-redirectreference.first: "{\"kind\":\"OAuthRedirectReference\",\"apiVersion\":\"v1\",\"reference\":{\"kind\":\"Route\",\"name\":\"admin\"}}"
			serviceaccounts.openshift.io/oauth-redirecturi.first: oauth_callback
			serviceaccounts.openshift.io/oauth-want-challenges: 'false'
			register: ServiceAccount
			- debug:
			var: ServiceAccount
			when: not silent\|bool

			- name: "create the ClusterRoleBinding {{ app_name }}-admin"
			k8s:
			namespace: "{{ project_name }}"
			state: present
			definition:
			apiVersion: rbac.authorization.k8s.io/v1
			kind: ClusterRoleBinding
			metadata:
			name: "{{ app_name }}-cluster-admin"
			labels:
			app: "{{ app_name }}"
			subjects:
			- kind: ServiceAccount
			name: "{{ app_name }}-user"
			namespace: "{{ project_name }}"
			roleRef:
			apiVersion: rbac.authorization.k8s.io/v1
			kind: ClusterRole
			name: cluster-admin
			register: ClusterRoleBinding
			- debug:
			var: ClusterRoleBinding
			when: not silent\|bool

			- name: create the ImageStream
			k8s:
			state: present
			namespace: "{{ project_name }}"
			definition:
			apiVersion: image.openshift.io/v1
			kind: ImageStream
			metadata:
			name: "{{ app_name }}"
			labels:
			app: "{{ app_name }}"
			spec:
			lookupPolicy:
			local: true
			tags:
			- name: latest
			from:
			kind: DockerImage
			name: "{{ terminal_image }}"
			register: ImageStream
			- debug:
			var: ImageStream
			when: not silent\|bool

			- name: create the ConfigMap
			k8s:
			namespace: "{{ project_name }}"
			state: present
			definition:
			kind: ConfigMap
			metadata:
			name: "{{ app_name }}-env"
			labels:
			app: "{{ app_name }}"
			data:
			workshop.sh: "{{ workshop_env }}"
			register: ConfigMap
			- debug:
			var: ConfigMap
			when: not silent\|bool

			- name: Grab openshift-console console quay.io image to be embedded in homeroom
			k8s_facts:
			kind: Deployment
			api_version: apps/v1
			namespace: openshift-console
			name: console
			register: console_image_url_raw
			- debug:
			var: console_image_url_raw.resources[0].spec.template.spec.containers[0].image
			- name: set fact console_image_url
			set_fact:
			console_image_url: "{{ console_image_url_raw.resources[0].spec.template.spec.containers[0].image }}"

			- name: create the DeploymentConfig
			k8s:
			namespace: "{{ project_name }}"
			definition:
			kind: DeploymentConfig
			apiVersion: v1
			metadata:
			name: "{{ app_name }}"
			labels:
			app: "{{ app_name }}"
			spec:
			strategy:
			type: Recreate
			triggers:
			- type: ConfigChange
			- type: ImageChange
			imageChangeParams:
			automatic: true
			containerNames:
			- terminal
			from:
			kind: ImageStreamTag
			name: "{{ app_name }}:latest"
			replicas: 1
			selector:
			app: "{{ app_name }}"
			deploymentconfig: "{{ app_name }}"
			template:
			metadata:
			labels:
			app: "{{ app_name }}"
			deploymentconfig: "{{ app_name }}"
			spec:
			serviceAccountName: "{{ app_name }}-user"
			initContainers:
			- name: setup-console
			image: "{{ terminal_image }}"
			command:
			- "/opt/workshop/bin/setup-console.sh"
			# env:
			# - name: OPENSHIFT_USERNAME
			# value: "${OPENSHIFT_USERNAME}"
			# - name: OPENSHIFT_PASSWORD
			# value: "${OPENSHIFT_PASSWORD}"
			# - name: OPENSHIFT_TOKEN
			# value: "${OPENSHIFT_TOKEN}"
			# - name: OC_VERSION
			# value: "${OC_VERSION}"
			# - name: ODO_VERSION
			# value: "${ODO_VERSION}"
			# - name: KUBECTL_VERSION
			# value: "${KUBECTL_VERSION}"
			volumeMounts:
			- name: shared
			mountPath: "/var/run/workshop"
			containers:
			- name: terminal
			image: "{{ app_name }}:latest"
			ports:
			- containerPort: 10080
			protocol: TCP
			env:
			- name: PROJECT_NAMESPACE
			valueFrom:
			fieldRef:
			fieldPath: metadata.namespace
			- name: APPLICATION_NAME
			value: "{{ app_name }}"
			# - name: AUTH_USERNAME
			# value: "${AUTH_USERNAME}"
			# - name: AUTH_PASSWORD
			# value: "${AUTH_PASSWORD}"
			- name: OAUTH_SERVICE_ACCOUNT
			value: "{{ app_name }}-user"
			- name: DOWNLOAD_URL
			value: "{{ download_url }}"
			- name: WORKSHOP_FILE
			value: "{{ workshop_file }}"
			# - name: WORKSHOPPER_URLS
			# value: "${WORKSHOPPER_URLS}"
			- name: CONSOLE_URL
			value: http://0.0.0.0:10083
			# - name: OC_VERSION
			# value: "${OC_VERSION}"
			# - name: ODO_VERSION
			# value: "${ODO_VERSION}"
			# - name: KUBECTL_VERSION
			# value: "${KUBECTL_VERSION}"
			volumeMounts:
			- name: envvars
			mountPath: "/opt/workshop/envvars"
			- name: shared
			mountPath: "/var/run/workshop"
			- name: console
			image: "{{ console_image_url }}"
			#image: "quay.io/openshift/origin-console:{{ console_version }}"
			command:
			- "/var/run/workshop/start-console.sh"
			env:
			- name: BRIDGE_K8S_MODE
			value: in-cluster
			- name: BRIDGE_LISTEN
			value: http://0.0.0.0:10083
			- name: BRIDGE_BASE_PATH
			value: "/console/"
			- name: BRIDGE_PUBLIC_DIR
			value: "/opt/bridge/static"
			- name: BRIDGE_USER_AUTH
			value: disabled
			- name: BRIDGE_BRANDING
			value: "openshift"
			volumeMounts:
			- name: shared
			mountPath: "/var/run/workshop"
			volumes:
			- name: envvars
			configMap:
			name: "{{ app_name }}-env"
			defaultMode: 420
			- name: shared
			emptyDir: {}

			register: DeploymentConfig
			- debug:
			var: DeploymentConfig
			when: not silent\|bool

			- name: create the Service
			k8s:
			namespace: "{{ project_name }}"
			state: present
			kind: Service
			definition:
			metadata:
			name: "{{ app_name }}"
			labels:
			app: "{{ app_name }}"
			spec:
			ports:
			- name: 10080-tcp
			protocol: TCP
			port: 10080
			targetPort: 10080
			selector:
			app: "{{ app_name }}"
			deploymentconfig: "{{ app_name }}"
			register: Service
			- debug:
			var: Service
			when: not silent\|bool

			- name: create the Route
			k8s:
			namespace: "{{ project_name }}"
			state: present
			kind: Route
			definition:
			metadata:
			name: "{{ app_name }}"
			labels:
			app: "{{ app_name }}"
			spec:
			host: ''
			to:
			kind: Service
			name: "{{ app_name }}"
			weight: 100
			port:
			targetPort: 10080-tcp
			tls:
			termination: edge
			insecureEdgeTerminationPolicy: Redirect
			register: Route
			- name: deploy the labguide with the params file
			shell: \|
			oc new-app -n lab-ocp-cns /tmp/production-cluster-admin.json \
			--param TERMINAL_IMAGE="quay.io/thoraxe/lab-ocp-cns:production" --param PROJECT_NAME="lab-ocp-cns" \
			--param WORKSHOP_ENVVARS="`cat /tmp/workshop-settings.sh`"

			- name: add kubeadmin to RoleBinding admin enabling route access
			k8s:
			namespace: "{{ project_name }}"
			namespace: lab-ocp-cns
			state: present
			definition:
			apiVersion: rbac.authorization.k8s.io/v1
			kind: RoleBinding
			metadata:
			name: "{{ app_name }}"
			name: dashboard-admin
			labels:
			app: "{{ app_name }}"
			app: dashboard
			subjects:
			- kind: User
			apiGroup: rbac.authorization.k8s.io
			@@ -345,18 +73,22 @@
			kind: ClusterRole
			name: admin
			register: RoleBinding
			- debug:
			var: RoleBinding
			when: not silent\|bool

			- name: fetch the created route for output
			k8s_facts:
			api_version: route.openshift.io/v1
			kind: Route
			name: dashboard
			namespace: lab-ocp-cns
			register: Route

			- debug:
			msg:
			- "user.info: "
			- "user.info: Access the workshop at '{{ Route.result.spec.host }}'"
			- "user.info: Access the workshop at '{{ Route.resources[0].spec.host }}'"
			- "user.info: Login with 'kubeadmin' and '{{ kubeadmin_password }}'"
			- "user.info: "
			- "user.info: Workshop may not be accessible until rollout finishes shortly."
			when: not silent\|bool

			# Leave this as the last task in the playbook.