5265993134
In certain environments, a user's primary group doesn't necessarily match that of their username. This change updates various playbooks to make use of the `ansible_user_gid` fact instead. This change also makes ownership explicit by using `ansible_user_uid` instead of `ansible_user` or `ansible_user_id`, where appropriate. Change-Id: Ifc2ea7d95ec90e91791ccb10772b15d991379479 Story: 2002770 Task: 22636
76 lines
2.4 KiB
YAML
76 lines
2.4 KiB
YAML
---
|
|
# Create a virtualenv for ansible modules to use on the remote target systems
|
|
# when running kayobe.
|
|
|
|
- name: Ensure a virtualenv exists for kayobe
|
|
hosts: seed:seed-hypervisor:overcloud
|
|
gather_facts: False
|
|
tags:
|
|
- kayobe-target-venv
|
|
tasks:
|
|
- name: Set a fact about the kayobe target virtualenv
|
|
set_fact:
|
|
virtualenv: "{{ ansible_python_interpreter | dirname | dirname }}"
|
|
when:
|
|
- ansible_python_interpreter is defined
|
|
- not ansible_python_interpreter.startswith('/bin')
|
|
- not ansible_python_interpreter.startswith('/usr/bin')
|
|
|
|
- block:
|
|
# This will cause ansible to use the system python interpreter.
|
|
- name: Deactivate the virtualenv
|
|
include_role:
|
|
name: deactivate-virtualenv
|
|
|
|
- name: Gather facts
|
|
setup:
|
|
|
|
- name: Ensure the python-virtualenv package is installed
|
|
package:
|
|
name: python-virtualenv
|
|
state: installed
|
|
become: True
|
|
|
|
- name: Ensure global virtualenv directory exists
|
|
file:
|
|
path: "{{ virtualenv_path }}"
|
|
state: directory
|
|
owner: "{{ ansible_user_uid }}"
|
|
group: "{{ ansible_user_gid }}"
|
|
mode: 0755
|
|
# Check whether the virtualenv directory is a subdirectory of the
|
|
# global virtualenv directory.
|
|
when: virtualenv.startswith(virtualenv_path)
|
|
become: True
|
|
|
|
- name: Ensure kayobe virtualenv directory exists
|
|
file:
|
|
path: "{{ virtualenv }}"
|
|
state: directory
|
|
owner: "{{ ansible_user_uid }}"
|
|
group: "{{ ansible_user_gid }}"
|
|
mode: 0700
|
|
become: True
|
|
|
|
- name: Ensure kayobe virtualenv has the latest version of pip installed
|
|
pip:
|
|
name: pip
|
|
state: latest
|
|
virtualenv: "{{ virtualenv }}"
|
|
# Site packages are required for using the yum and selinux python
|
|
# modules, which are not available via PyPI.
|
|
virtualenv_site_packages: True
|
|
|
|
- name: Activate the virtualenv
|
|
include_role:
|
|
name: activate-virtualenv
|
|
vars:
|
|
activate_virtualenv_path: "{{ virtualenv }}"
|
|
when: virtualenv is defined
|
|
|
|
- name: Ensure pip is installed
|
|
easy_install:
|
|
name: pip
|
|
become: True
|
|
when: virtualenv is not defined
|