From 915b28eaf23bd6beb9906315eb65dde967a4364b Mon Sep 17 00:00:00 2001
From: Jim Rigsbee <jimrigsbee@gmail.com>
Date: Fri, 16 Aug 2019 20:17:01 +0200
Subject: [PATCH] IdM installation fix and Longer delay for API cert application (#589)
---
ansible/roles/idm-server/tasks/prep.yml | 5 +++++
ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/tasks/workload.yml | 10 +++++-----
2 files changed, 10 insertions(+), 5 deletions(-)
diff --git a/ansible/roles/idm-server/tasks/prep.yml b/ansible/roles/idm-server/tasks/prep.yml
index 6ad4f5c..2d4e382 100644
--- a/ansible/roles/idm-server/tasks/prep.yml
+++ b/ansible/roles/idm-server/tasks/prep.yml
@@ -5,6 +5,11 @@
name: "{{ idm_rpms }}"
state: installed
+- name: Upgrade NSS package
+ package:
+ name: nss
+ state: latest
+
# Cannot use a handler here
- name: Ensure firewalld is running
service:
diff --git a/ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/tasks/workload.yml b/ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/tasks/workload.yml
index b3719ed..f24225f 100644
--- a/ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/tasks/workload.yml
+++ b/ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/tasks/workload.yml
@@ -73,7 +73,7 @@
loop:
- api-certs.j2
- router-certs.j2
-
+
- name: Read Certificate
slurp:
src: "$HOME/certificates/fullchain.pem"
@@ -107,15 +107,15 @@
state: present
definition: "{{ lookup('template', './templates/api-server.j2' ) | from_yaml }}"
- # Sleep 5 minutes per David Eads.
+ # Sleep 6 minutes per David Eads.
# It takes about 70 seconds per API Server to
# restart with certificates (due to AWS
# Load Balancer). Therefore sleep
- # 5 minutes to give the kube-apiserver
+ # 6 minutes to give the kube-apiserver
# cluster operator enough time to progress.
- - name: Wait 5m for all APIservers to be back up
+ - name: Wait 6m for all APIservers to be back up
pause:
- minutes: 5
+ minutes: 6
- name: Find all Kube Configs
become: yes
--
Gitblit v1.9.3