Add variable for the ssh service

The ssh service on ubuntu based systems is "ssh" which is established by the service unit path `/lib/systemd/system/ssh.service`. When running the service will respond to the name "sshd" however this is just an alias. This change adds a variable to set the service unit name based on the distro family which will allow the service to start should it be masked. The change will now delegate to all nodes within the keystone cluster ensuring ssh is enabled and started. If SSH is not running everywhere at the same time keystone key rotation will not be possible later on in the role. Change-Id: I552a6bb09b3ab917bfcad140633fe4662c0c5a82 Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
2018-10-01 19:11:45 -05:00 · 2018-10-01 19:11:45 -05:00 · 2589ce6db0
commit 2589ce6db0
parent 9e778f6e17
4 changed files with 9 additions and 1 deletions
--- a/tasks/keystone_post_install.yml
+++ b/tasks/keystone_post_install.yml
@ -15,11 +15,13 @@

 - name: Enable SSHD
  systemd:
-    name: sshd
+    name: "{{ keystone_sshd }}"
    state: started
    enabled: yes
    masked: no
    daemon_reload: yes
+  delegate_to: "{{ item }}"
+  with_items: "{{ ansible_play_hosts }}"

 - name: Generate the keystone system user ssh key
  user:
--- a/vars/redhat-7.yml
+++ b/vars/redhat-7.yml
@ -83,3 +83,5 @@ keystone_nginx_conf_path: "conf.d"
 keystone_system_service_name: httpd

 keystone_uwsgi_bin: '/usr/sbin'
+
+keystone_sshd: sshd
--- a/vars/suse.yml
+++ b/vars/suse.yml
@ -109,3 +109,5 @@ keystone_nginx_conf_path: 'conf.d'
 keystone_system_service_name: apache2

 keystone_uwsgi_bin: '/usr/sbin'
+
+keystone_sshd: sshd
--- a/vars/ubuntu.yml
+++ b/vars/ubuntu.yml
@ -97,3 +97,5 @@ keystone_nginx_conf_path: "sites-available"
 keystone_system_service_name: apache2

 keystone_uwsgi_bin: '/usr/bin'
+
+keystone_sshd: ssh