69 lines
2.3 KiB
YAML
69 lines
2.3 KiB
YAML
# Build and install a docker image for keystone.
|
|
---
|
|
- name: Make build and persistent directories
|
|
file:
|
|
path: "{{ item }}"
|
|
state: directory
|
|
mode: 0777
|
|
with_items:
|
|
- /srv/keystone
|
|
- /srv/keystone/fernet-keys
|
|
|
|
- name: install Dockerfile
|
|
copy:
|
|
src: files/
|
|
dest: /srv/keystone
|
|
|
|
- name: keystone credentials file
|
|
template:
|
|
src: templates/admin-openrc.sh
|
|
dest: /srv/keystone
|
|
|
|
- name: build keystone image
|
|
docker_image:
|
|
path: /srv/keystone
|
|
name: hpc/keystone
|
|
|
|
- name: install service file.
|
|
template:
|
|
src: templates/keystone.service
|
|
dest: /etc/systemd/system/keystone.service
|
|
mode: 644
|
|
owner: root
|
|
group: root
|
|
|
|
- name: install service file
|
|
command: systemctl daemon-reload
|
|
|
|
- name: Initialize db
|
|
script: scripts/initialize_db.sh {{ hostvars[groups['databases'][0]]['ansible_default_ipv4']['address'] }}
|
|
|
|
- name: keystone manage commands to setup db
|
|
command: >
|
|
/usr/bin/docker run --rm
|
|
--add-host=mariadb:{{ hostvars[groups['databases'][0]]['ansible_default_ipv4']['address'] }}
|
|
-v /srv/keystone/fernet-keys:/etc/keystone/fernet-keys
|
|
hpc/keystone keystone-manage {{ item }}
|
|
with_items:
|
|
- db_sync
|
|
- fernet_setup --keystone-user keystone --keystone-group keystone
|
|
- credential_setup --keystone-user keystone --keystone-group keystone
|
|
- >
|
|
bootstrap --bootstrap-password geheim
|
|
--bootstrap-admin-url http://{{ hostvars[groups['keystone'][0]]['ansible_default_ipv4']['address'] }}:35357/v3/
|
|
--bootstrap-internal-url http://{{ hostvars[groups['keystone'][0]]['ansible_default_ipv4']['address'] }}:35357/v3/
|
|
--bootstrap-public-url http://{{ hostvars[groups['keystone'][0]]['ansible_default_ipv4']['address'] }}:5000/v3/
|
|
--bootstrap-region-id RegionOne
|
|
|
|
- name: Create a domain, projects users and roles
|
|
command: >
|
|
/usr/bin/docker run --rm
|
|
--add-host=mariadb:{{ hostvars[groups['databases'][0]]['ansible_default_ipv4']['address'] }}
|
|
-v /srv/keystone/fernet-keys:/etc/keystone/fernet-keys
|
|
hpc/keystone bash /etc/bootstrap.sh
|
|
|
|
- name: make sure service is started
|
|
systemd:
|
|
name: keystone.service
|
|
state: restarted
|