| ansible/configs/ocp-ha-lab/env_vars.yml | ●●●●● patch | view | raw | blame | history | |
| ansible/configs/ocp-ha-lab/files/hosts_template.3.10.14.j2 | ●●●●● patch | view | raw | blame | history | |
| ansible/configs/ocp-ha-lab/files/labs_hosts_template.3.10.14.j2 | ●●●●● patch | view | raw | blame | history | |
| ansible/configs/ocp-ha-lab/files/labs_hosts_template.3.9.30.j2 | ●●●●● patch | view | raw | blame | history | |
| ansible/configs/ocp-ha-lab/post_infra.yml | ●●●●● patch | view | raw | blame | history | |
| ansible/configs/ocp-ha-lab/post_software.yml | ●●●●● patch | view | raw | blame | history | |
| ansible/configs/ocp-ha-lab/pre_software.yml | ●●●●● patch | view | raw | blame | history | |
| ansible/workdir/.gitignore | ●●●●● patch | view | raw | blame | history |
ansible/configs/ocp-ha-lab/env_vars.yml
@@ -26,6 +26,7 @@ deploy_openshift_post: false deploy_env_post: false install_metrics: true install_prometheus: true install_logging: true ovs_plugin: "subnet" # This can also be set to: "multitenant" or "networkpolicy" multi_tenant_setting: "os_sdn_network_plugin_name='redhat/openshift-ovs-{{ovs_plugin}}'" @@ -33,28 +34,32 @@ cloudapps_suffix: 'apps.{{subdomain_base}}' openshift_master_ldap_ca_file: 'openshift_master_ldap_ca_file=/root/ca.crt' ## If you are not part of GPTE you don't need this. # Options for container_runtime: docker, cri-o container_runtime: "docker" docker_version: "{{ '1.12.6' if repo_version | version_compare('3.9', '<') else '1.13.1' }}" docker_device: /dev/xvdb ## If you are not part of GPTE you don't need this. opentlc_integration: true ################################################################################ #### GENERIC EXAMPLE #### ################################################################################ install_common: true install_nfs: true install_glusterfs: false glusterfs_hosted_device_name: /dev/xvdc glusterfs_hosted_device_size: 300 glusterfs_app_device_name: /dev/xvdd glusterfs_app_device_size: 300 install_bastion: false env_authorized_key: "{{guid}}key" set_env_authorized_key: true software_to_deploy: "openshift" ################################################################################ #### OCP IMPLEMENATATION LAB ################################################################################ repo_version: '3.10' repo_version: '3.10.14' cloudapps_dns: '*.apps.{{subdomain_base}}.' master_public_dns: "loadbalancer.{{subdomain_base}}." @@ -70,21 +75,26 @@ - tmux - bind-utils - wget - nano - ansible - git - vim-enhanced - ansible - at - sysstat - strace - net-tools - iptables-services - bridge-utils - kexec-tools - sos - psacct - iotop rhel_repos: - rhel-7-server-rpms - rhel-7-server-extras-rpms - rhel-7-server-ose-{{repo_version}}-rpms - rhel-7-server-ansible-2.4-rpms - rh-gluster-3-client-for-rhel-7-server-rpms use_subscription_manager: false use_own_repos: true @@ -131,20 +141,20 @@ bastion_instance_type: "t2.xlarge" support_instance_type: "t2.medium" support_instance_count: 3 node_instance_type: "t2.large" node_instance_count: 3 infranode_instance_type: "t2.xlarge" infranode_instance_count: 2 loadbalancer_instance_count: 1 loadbalancer_instance_type: "t2.small" master_instance_type: "t2.large" master_instance_count: 3 loadbalancer_instance_count: 1 loadbalancer_instance_type: "t2.small" infranode_instance_type: "t2.xlarge" infranode_instance_count: 2 node_instance_type: "t2.large" node_instance_count: 3 support_instance_type: "t2.medium" support_instance_count: 3 ansible_ssh_private_key_file: ~/.ssh/{{key_name}}.pem
@@ -1,5 +1,5 @@ # # /etc/ansible/hosts file for OpenShift Container Platform 3.10.14 # ansible inventory for OpenShift Container Platform 3.10.14 # [OSEv3:vars] @@ -29,6 +29,7 @@ openshift_crio_docker_gc_node_selector={'runtime': 'cri-o'} {% endif %} # Node Groups openshift_node_groups=[{'name': 'node-config-master', 'labels': ['node-role.kubernetes.io/master=true','runtime={{container_runtime}}']}, {'name': 'node-config-infra', 'labels': ['node-role.kubernetes.io/infra=true','runtime={{container_runtime}}']}, {'name': 'node-config-glusterfs', 'labels': ['runtime={{container_runtime}}']}, {'name': 'node-config-compute', 'labels': ['node-role.kubernetes.io/compute=true','runtime={{container_runtime}}'], 'edits': [{ 'key': 'kubeletArguments.pods-per-core','value': ['20']}]}] # Configure node kubelet arguments. pods-per-core is valid in OpenShift Origin 1.3 or OpenShift Container Platform 3.3 and later. -> These need to go into the above # openshift_node_kubelet_args={'pods-per-core': ['10'], 'max-pods': ['250'], 'image-gc-high-threshold': ['85'], 'image-gc-low-threshold': ['75']} @@ -37,34 +38,6 @@ # See: https://github.com/nickhammond/ansible-logrotate logrotate_scripts=[{"name": "syslog", "path": "/var/log/cron\n/var/log/maillog\n/var/log/messages\n/var/log/secure\n/var/log/spooler\n", "options": ["daily", "rotate 7","size 500M", "compress", "sharedscripts", "missingok"], "scripts": {"postrotate": "/bin/kill -HUP `cat /var/run/syslogd.pid 2> /dev/null` 2> /dev/null || true"}}] {% if install_glusterfs|bool %} ########################################################################### ### OpenShift Container Storage ########################################################################### openshift_master_dynamic_provisioning_enabled=True # CNS storage cluster # From https://github.com/red-hat-storage/openshift-cic openshift_storage_glusterfs_namespace=openshift-storage openshift_storage_glusterfs_storageclass=true openshift_storage_glusterfs_storageclass_default=true openshift_storage_glusterfs_block_deploy=true openshift_storage_glusterfs_block_host_vol_create=true openshift_storage_glusterfs_block_host_vol_size=200 openshift_storage_glusterfs_block_storageclass=true openshift_storage_glusterfs_block_storageclass_default=false # Container image to use for glusterfs pods openshift_storage_glusterfs_image="registry.access.redhat.com/rhgs3/rhgs-server-rhel7:v3.9" # Container image to use for glusterblock-provisioner pod openshift_storage_glusterfs_block_image="registry.access.redhat.com/rhgs3/rhgs-gluster-block-prov-rhel7:v3.9" # Container image to use for heketi pods openshift_storage_glusterfs_heketi_image="registry.access.redhat.com/rhgs3/rhgs-volmanager-rhel7:v3.9" {% endif %} {% if install_nfs|bool %} # Set this line to enable NFS @@ -87,16 +60,11 @@ openshift_master_console_port={{master_api_port}} openshift_master_cluster_method=native openshift_master_cluster_hostname={{master_lb_dns}} openshift_master_cluster_hostname=loadbalancer1.{{guid}}.internal openshift_master_cluster_public_hostname={{master_lb_dns}} openshift_master_default_subdomain={{cloudapps_suffix}} #openshift_master_ca_certificate={'certfile': '/root/intermediate_ca.crt', 'keyfile': '/root/intermediate_ca.key'} openshift_master_overwrite_named_certificates={{openshift_master_overwrite_named_certificates}} {% if install_lets_encrypt_certificates|bool %} openshift_master_named_certificates={{lets_encrypt_openshift_master_named_certificates|to_json}} {% endif %} openshift_set_hostname=True ########################################################################### ### OpenShift Network Vars @@ -112,23 +80,13 @@ ### OpenShift Authentication Vars ########################################################################### {% if install_idm == "ldap" or 'ldap' in install_idms|d([]) %} {{openshift_master_ldap_ca_file}} {% endif %} {% if install_idm == "htpasswd" or 'htpasswd' in install_idms|d([]) %} # htpasswd Authentication openshift_master_identity_providers=[{'name': 'htpasswd_auth', 'login': 'true', 'challenge': 'true', 'kind': 'HTPasswdPasswordIdentityProvider'}] openshift_master_htpasswd_file=/root/htpasswd.openshift {% endif %} openshift_master_identity_providers={{identity_providers|to_json}} {% if admission_plugin_config is defined %} ########################################################################### ### OpenShift admission plugin config ########################################################################### openshift_master_admission_plugin_config={{admission_plugin_config|to_json}} {% endif %} # LDAP Authentication (download ipa-ca.crt first) # openshift_master_identity_providers=[{'name': 'ldap', 'challenge': 'true', 'login': 'true', 'kind': 'LDAPPasswordIdentityProvider','attributes': {'id': ['dn'], 'email': ['mail'], 'name': ['cn'], 'preferredUsername': ['uid']}, 'bindDN': 'uid=admin,cn=users,cn=accounts,dc=shared,dc=example,dc=opentlc,dc=com', 'bindPassword': 'r3dh4t1!', 'ca': '/etc/origin/master/ipa-ca.crt','insecure': 'false', 'url': 'ldaps://ipa.shared.example.opentlc.com:636/cn=users,cn=accounts,dc=shared,dc=example,dc=opentlc,dc=com?uid?sub?(memberOf=cn=ocp-users,cn=groups,cn=accounts,dc=shared,dc=example,dc=opentlc,dc=com)'}] # openshift_master_ldap_ca_file=/root/ipa-ca.crt ########################################################################### ### OpenShift Metrics and Logging Vars @@ -139,7 +97,6 @@ ######################## openshift_metrics_install_metrics={{install_metrics}} {% if install_nfs|bool and not install_glusterfs|bool %} openshift_metrics_storage_kind=nfs openshift_metrics_storage_access_modes=['ReadWriteOnce'] openshift_metrics_storage_nfs_directory=/srv/nfs @@ -148,13 +105,6 @@ openshift_metrics_storage_volume_size=10Gi openshift_metrics_storage_labels={'storage': 'metrics'} openshift_metrics_cassanda_pvc_storage_class_name='' {% endif %} {% if install_glusterfs|bool %} openshift_metrics_storage_kind=dynamic openshift_metrics_storage_volume_size=20Gi openshift_metrics_cassandra_pvc_storage_class_name='glusterfs-storage-block' {% endif %} openshift_metrics_hawkular_nodeselector={"node-role.kubernetes.io/infra": "true"} openshift_metrics_cassandra_nodeselector={"node-role.kubernetes.io/infra": "true"} @@ -237,6 +187,7 @@ # Enable cluster logging ######################## openshift_logging_install_logging={{install_logging}} {% if install_nfs|bool and not install_glusterfs|bool %} @@ -269,26 +220,25 @@ openshift_hosted_router_replicas={{infranode_instance_count}} {% if install_lets_encrypt_certificates|bool %} openshift_hosted_router_certificate={{lets_encrypt_openshift_hosted_router_certificate|to_json}} {% endif %} # openshift_hosted_router_certificate={"certfile": "/path/to/router.crt", "keyfile": "/path/to/router.key", "cafile": "/path/to/router-ca.crt"} openshift_hosted_registry_replicas=1 openshift_hosted_registry_pullthrough=true openshift_hosted_registry_acceptschema2=true openshift_hosted_registry_enforcequota=true {% if s3user_access_key is defined %} # Registry AWS S3 # S3 bucket must already exist. openshift_hosted_registry_storage_kind=object openshift_hosted_registry_storage_provider=s3 openshift_hosted_registry_storage_s3_accesskey={{ s3user_access_key }} openshift_hosted_registry_storage_s3_secretkey={{ s3user_secret_access_key }} openshift_hosted_registry_storage_s3_bucket={{ project_tag }} openshift_hosted_registry_storage_s3_region={{ aws_region_final|d(aws_region) }} openshift_hosted_registry_storage_s3_chunksize=26214400 openshift_hosted_registry_storage_s3_rootdirectory=/registry openshift_hosted_registry_replicas=1 {% if install_nfs|bool %} openshift_hosted_registry_storage_kind=nfs openshift_hosted_registry_storage_access_modes=['ReadWriteMany'] openshift_hosted_registry_storage_nfs_directory=/srv/nfs openshift_hosted_registry_storage_nfs_options='*(rw,root_squash)' openshift_hosted_registry_storage_volume_name=registry openshift_hosted_registry_storage_volume_size=20Gi openshift_hosted_registry_pullthrough=true openshift_hosted_registry_acceptschema2=true openshift_hosted_registry_enforcequota=true {% endif %} ########################################################################### @@ -307,6 +257,7 @@ ### OpenShift Hosts ########################################################################### [OSEv3:children] lb masters etcd nodes @@ -314,11 +265,13 @@ nfs {% endif %} {% if install_glusterfs|bool %} glusterfs #glusterfs {% endif %} {% if groups['newnodes']|d([])|length > 0 %} new_nodes {% endif %} [lb] {% for host in groups['loadbalancers'] %} {{ hostvars[host].internaldns }} {% endfor %} [masters] {% for host in groups['masters']|sort %} @@ -342,28 +295,14 @@ {% endfor %} ## These are regular nodes {% for host in groups['nodes']|sort if host not in groups['newnodes']|d([]) and host not in groups['glusterfs']|d([]) %} {% for host in groups['nodes']|sort %} {{ hostvars[host].internaldns }} openshift_node_group_name='node-config-compute' {% endfor %} {% if groups['glusterfs']|d([])|length > 0 %} ## These are glusterfs nodes {% for host in groups['glusterfs']|sort %} {{ hostvars[host].internaldns }} openshift_node_group_name='node-config-compute' ## These are OCS nodes {% for host in groups['support']|sort %} # {{ hostvars[host].internaldns }} openshift_node_group_name='node-config-compute' {% endfor %} {% endif %} {% if groups['newnodes']|d([])|length > 0 %} # scaleup performed, leave an empty group, see: # https://docs.openshift.com/container-platform/3.7/install_config/adding_hosts_to_existing_cluster.html [new_nodes] {% for host in groups['newnodes']|sort %} {{ hostvars[host].internaldns }} ansible_ssh_user={{remote_user}} ansible_ssh_private_key_file=~/.ssh/{{key_name}}.pem openshift_node_group_name='node-config-compute' {% endfor %} {% endif %} {% if install_nfs|bool %} [nfs] @@ -372,21 +311,7 @@ {% endfor %} {% endif %} {% if install_glusterfs|bool %} {% set query = "[?name=='support']|[0].volumes[?purpose=='glusterfs'].device_name" %} [glusterfs] {% for host in groups['glusterfs']|sort %} {% if loop.index % 3 == 1 %} {% set glusterfs_zone = 1 %} {% elif loop.index % 3 == 2 %} {% set glusterfs_zone = 2 %} {% elif loop.index % 3 == 0 %} {% set glusterfs_zone = 3 %} {% endif %} {% if cloud_provider == 'ec2' %} {{ hostvars[host].internaldns }} glusterfs_zone={{ glusterfs_zone }} glusterfs_devices='{{instances|json_query(query)|to_json}}' {% elif cloud_provider == 'azure' %} {{ hostvars[host].internaldns }} glusterfs_zone={{ glusterfs_zone }} glusterfs_devices='{{ [ hostvars[host].glusterfs_device_name ] |to_json}}' {% endif %} #[glusterfs] {% for host in groups['support']|sort %} # {{ hostvars[host].internaldns }} glusterfs_devices='[ "{{ glusterfs_app_device_name }}" ]' {% endfor %} {% endif %} ansible/configs/ocp-ha-lab/files/labs_hosts_template.3.10.14.j2
New file @@ -0,0 +1,90 @@ # # LAB inventory # ansible inventory for OpenShift Container Platform 3.10.14 # [OSEv3:vars] ########################################################################### ### Ansible Vars ########################################################################### timeout=60 ansible_user={{ansible_ssh_user}} ansible_become=yes ########################################################################### ### OpenShift Basic Vars ########################################################################### openshift_disable_check="disk_availability,memory_availability,docker_image_availability" openshift_node_groups=[{'name': 'node-config-master', 'labels': ['node-role.kubernetes.io/master=true','runtime={{container_runtime}}']}, {'name': 'node-config-infra', 'labels': ['node-role.kubernetes.io/infra=true','runtime={{container_runtime}}']}, {'name': 'node-config-glusterfs', 'labels': ['runtime={{container_runtime}}']}, {'name': 'node-config-compute', 'labels': ['node-role.kubernetes.io/compute=true','runtime={{container_runtime}}'], 'edits': [{ 'key': 'kubeletArguments.pods-per-core','value': ['20']}]}] # Configure node kubelet arguments. pods-per-core is valid in OpenShift Origin 1.3 or OpenShift Container Platform 3.3 and later. -> These need to go into the above # openshift_node_kubelet_args={'pods-per-core': ['10'], 'max-pods': ['250'], 'image-gc-high-threshold': ['85'], 'image-gc-low-threshold': ['75']} # Configure logrotate scripts # See: https://github.com/nickhammond/ansible-logrotate logrotate_scripts=[{"name": "syslog", "path": "/var/log/cron\n/var/log/maillog\n/var/log/messages\n/var/log/secure\n/var/log/spooler\n", "options": ["daily", "rotate 7","size 500M", "compress", "sharedscripts", "missingok"], "scripts": {"postrotate": "/bin/kill -HUP `cat /var/run/syslogd.pid 2> /dev/null` 2> /dev/null || true"}}] ########################################################################### ### OpenShift Hosts ########################################################################### [OSEv3:children] lb masters etcd nodes {% if install_nfs|bool %} nfs {% endif %} {% if install_glusterfs|bool %} #glusterfs {% endif %} [lb] {% for host in groups['loadbalancers'] %} {{ hostvars[host].internaldns }} {% endfor %} [masters] {% for host in groups['masters']|sort %} {{ hostvars[host].internaldns }} {% endfor %} [etcd] {% for host in groups['masters']|sort %} {{ hostvars[host].internaldns }} {% endfor %} [nodes] ## These are the masters {% for host in groups['masters']|sort %} {{ hostvars[host].internaldns }} openshift_node_group_name='node-config-master' {% endfor %} ## These are infranodes {% for host in groups['infranodes']|sort %} {{ hostvars[host].internaldns }} openshift_node_group_name='node-config-infra' {% endfor %} ## These are regular nodes {% for host in groups['nodes']|sort %} {{ hostvars[host].internaldns }} openshift_node_group_name='node-config-compute' {% endfor %} ## These are OCS nodes {% for host in groups['support']|sort %} # {{ hostvars[host].internaldns }} openshift_node_group_name='node-config-compute' {% endfor %} {% if install_nfs|bool %} [nfs] {% for host in [groups['support']|sort|first] %} {{ hostvars[host].internaldns }} {% endfor %} {% endif %} #[glusterfs] {% for host in groups['support']|sort %} # {{ hostvars[host].internaldns }} glusterfs_devices='[ "{{ glusterfs_app_device_name }}" ]' {% endfor %} ansible/configs/ocp-ha-lab/files/labs_hosts_template.3.9.30.j2
New file @@ -0,0 +1,71 @@ [OSEv3:vars] ########################################################################### ### Ansible Vars ########################################################################### timeout=60 ansible_become=yes ansible_ssh_user={{ansible_ssh_user}} # disable memory check, as we are not a production environment openshift_disable_check="memory_availability" # Set this line to enable NFS openshift_enable_unsupported_configurations=True ########################################################################### ### OpenShift Hosts ########################################################################### [OSEv3:children] lb masters etcd nodes nfs #glusterfs [lb] {% for host in groups['loadbalancers'] %} {{ hostvars[host].internaldns }} {% endfor %} [masters] {% for host in groups['masters']|sort %} {{ hostvars[host].internaldns }} {% endfor %} [etcd] {% for host in groups['masters']|sort %} {{ hostvars[host].internaldns }} {% endfor %} [nodes] ## These are the masters {% for host in groups['masters']|sort %} {{ hostvars[host].internaldns }} openshift_hostname={{ hostvars[host].internaldns }} openshift_node_labels="{'env': 'master', 'cluster': '{{guid}}'}" {% endfor %} ## These are infranodes {% for host in groups['infranodes']|sort %} {{ hostvars[host].internaldns }} openshift_hostname={{ hostvars[host].internaldns }} openshift_node_labels="{'env':'infra', 'cluster': '{{guid}}'}" {% endfor %} ## These are regular nodes {% for host in groups['nodes']|sort %} {{ hostvars[host].internaldns }} openshift_hostname={{ hostvars[host].internaldns }} openshift_node_labels="{'env':'app', 'cluster': '{{guid}}'}" {% endfor %} ## These are CNS nodes {% for host in groups['support']|sort %} # {{ hostvars[host].internaldns }} openshift_hostname={{ hostvars[host].internaldns }} openshift_node_labels="{'env':'glusterfs', 'cluster': '{{guid}}'}" {% endfor %} [nfs] {% set nfshost = groups['support']|sort|first %} {{ hostvars[nfshost].internaldns }} openshift_hostname={{ hostvars[nfshost].internaldns }} #[glusterfs] {% for host in groups['support']|sort %} # {{ hostvars[host].internaldns }} glusterfs_devices='[ "{{ glusterfs_app_device_name }}" ]' {% endfor %} ansible/configs/ocp-ha-lab/post_infra.yml
@@ -3,8 +3,8 @@ connection: local become: false vars_files: - "./env_vars.yml" - "./env_secret_vars.yml" - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_vars.yml" - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_secret_vars.yml" tags: - step002 - post_infrastructure ansible/configs/ocp-ha-lab/post_software.yml
@@ -1,4 +1,4 @@ #vim: set ft=ansible: # vim: set ft=ansible: --- - name: Step 005 - Post Software deployment hosts: localhost @@ -10,10 +10,29 @@ tags: - step005 tasks: - name: Generate /etc/ansible/hosts file with lab hosts template - name: Generate /etc/ansible/hosts file with lab hosts template =< 3.9 template: src: "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/files/labs_hosts_template.j2" src: "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/files/labs_hosts_template.{{ osrelease }}.j2" dest: "{{ ANSIBLE_REPO_PATH }}/workdir/labs_hosts-{{ env_type }}-{{ guid }}" when: - osrelease is version_compare('3.9', '<=') - name: Generate /etc/ansible/hosts file with lab hosts template 3.10+ template: src: "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/files/labs_hosts_template.{{ osrelease }}.j2" dest: "{{ ANSIBLE_REPO_PATH }}/workdir/labs_hosts-{{ env_type }}-{{ guid }}" when: - osrelease is version_compare('3.10', '>=') - name: Run openshift host provision on the bastion gather_facts: False become: yes hosts: - bastions vars_files: - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_vars.yml" roles: - role: "{{ ANSIBLE_REPO_PATH }}/roles/host-ocp-provisioner" - name: Configure NFS host for user-vols if required hosts: support @@ -40,8 +59,10 @@ vars_files: - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_vars.yml" tasks: - name: Move complete inventory file to preserve directory. shell: mv /etc/ansible/hosts /var/preserve/ - name: Copy complete inventory file to bastion:/var/preserve/hosts copy: src: "{{ ANSIBLE_REPO_PATH }}/workdir/hosts-{{ env_type }}-{{ guid }}" dest: /var/preserve/hosts tags: preserve_complete_ansible_inventory - name: Copy over ansible hosts file, lab version @@ -52,7 +73,7 @@ tags: - overwrite_hosts_with_lab_hosts ## Create PVs for uservols if required ## Create PV objects for uservols if required - name: get nfs Hostname set_fact: nfs_host: "{{ groups['support']|sort|first }}" ansible/configs/ocp-ha-lab/pre_software.yml
@@ -1,4 +1,5 @@ # vim: set ft=ansible: # --- - name: Step 003 - Create env key hosts: localhost connection: local @@ -32,7 +33,8 @@ # Cloudformation template or equivalent should tag all hosts with Project:{{ env_type }}-{{ guid }} - name: Configure all hosts with Repositories, Common Files and Set environment key hosts: all hosts: - all:!windows become: true gather_facts: False vars_files: @@ -41,14 +43,23 @@ tags: - step004 - common_tasks pre_tasks: - name: add rhel-7-server-ansible-2.4-rpms repo for OCP 3.9+ set_fact: rhel_repos: "{{ rhel_repos + ['rhel-7-server-ansible-2.4-rpms'] }}" when: osrelease is version_compare('3.9', '>=') roles: - { role: "{{ ANSIBLE_REPO_PATH }}/roles/set-repositories", when: 'repo_method is defined' } - { role: "{{ ANSIBLE_REPO_PATH }}/roles/common", when: 'install_common' } - { role: "{{ ANSIBLE_REPO_PATH }}/roles/set_env_authorized_key", when: 'set_env_authorized_key' } - role: "{{ ANSIBLE_REPO_PATH }}/roles/set-repositories" when: repo_method is defined - role: "{{ ANSIBLE_REPO_PATH }}/roles/common" when: install_common|bool - role: "{{ ANSIBLE_REPO_PATH }}/roles/set_env_authorized_key" when: set_env_authorized_key|bool - name: Configuring Bastion Hosts hosts: bastions become: true gather_facts: false vars_files: - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_vars.yml" - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_secret_vars.yml" @@ -57,7 +68,6 @@ tags: - step004 - bastion_tasks - name: PreSoftware flight-check hosts: localhost ansible/workdir/.gitignore
File was deleted
