openstack/openstack-ansible-os_keystone
Code Issues Proposed changes
openstack-ansible-os_keystone/tasks/main.yml
Markos Chandras 1460a23423 Add support for using distribution packages for OpenStack services 
Distributions provide packages for the OpenStack services so we add
support for using these instead of the pip ones.

Depends-On: I5a78e2120e596d36629b4ba978b2b5df76b149b0
Depends-On: Ib64dcbc960df7d369d202ce8cf7bdc29b3ee0e0a
Depends-On: Id9dd2dea146709414ab9ce8d439f1587e6776fd4
Depends-On: I2ba89e25c0010c9a5b515a3d0c9c731b30876e74
Depends-On: I0442b0aa94c3d0882d1118ad0c824d123bd21c88
Change-Id: I26848678dd07a409ef3e159cffb4ba6f0a228ab4
Implements: blueprint openstack-distribution-packages
2018-05-14 13:13:41 +01:00

171 lines
4.8 KiB
YAML
Raw Blame History

---
# Copyright 2014, Rackspace US, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
- name: Fail if our required secrets are not present
fail:
msg: "Please set the {{ item }} variable prior to applying this role."
when: (item is undefined) or (item is none)
with_items: "{{ keystone_required_secrets }}"
tags:
- always
- name: Handle deprecation of keystone_memcached_servers
set_fact:
keystone_cache_servers: "{{ keystone_cache_servers + (_ | deprecated(keystone_memcached_servers, 'keystone_memcached_servers', 'keystone_cache_servers', 'queens')).split(',') }}"
when: keystone_memcached_servers is defined
tags:
- always
- name: Handle deprecation of keystone_cache_backend_argument
set_fact:
keystone_cache_servers: "{{ keystone_cache_servers + (_ | deprecated(keystone_cache_backend_argument.replace('url:',''), 'keystone_cache_backend_argument', 'keystone_cache_servers', 'queens')).split(',') }}"
when: keystone_cache_backend_argument is defined
tags:
- always
- name: Fail if service was deployed using a different installation method
fail:
msg: "Switching installation methods for OpenStack services is not supported"
when:
- ansible_local is defined
- ansible_local.openstack_ansible is defined
- ansible_local.openstack_ansible.keystone is defined
- ansible_local.openstack_ansible.keystone.install_method is defined
- ansible_local.openstack_ansible.keystone.install_method != keystone_install_method
- name: Gather variables for each operating system
include_vars: "{{ item }}"
with_first_found:
- "{{ ansible_distribution | lower }}-{{ ansible_distribution_version | lower }}.yml"
- "{{ ansible_distribution | lower }}-{{ ansible_distribution_major_version | lower }}.yml"
- "{{ ansible_os_family | lower }}-{{ ansible_distribution_major_version | lower }}.yml"
- "{{ ansible_distribution | lower }}.yml"
- "{{ ansible_os_family | lower }}-{{ ansible_distribution_version.split('.')[0] }}.yml"
- "{{ ansible_os_family | lower }}.yml"
tags:
- always
- name: Gather variables for installation method
include_vars: "{{ keystone_install_method }}_install.yml"
tags:
- always
- include_tasks: keystone_pre_install.yml
tags:
- keystone-install
- include_tasks: keystone_install.yml
tags:
- keystone-install
- name: refresh local facts
setup:
filter: ansible_local
gather_subset: "!all"
tags:
- keystone-config
- include_tasks: keystone_post_install.yml
tags:
- keystone-config
- include_tasks: keystone_key_setup.yml
tags:
- keystone-config
- include_tasks: keystone_fernet.yml
when:
- "'fernet' in keystone_token_provider"
- keystone_service_setup | bool
tags:
- keystone-config
- include_tasks: keystone_credential.yml
when: keystone_service_setup | bool
tags:
- keystone-config
- include_tasks: keystone_federation_sp_setup.yml
when: keystone_sp != {}
tags:
- keystone-config
- include_tasks: keystone_db_setup.yml
when:
- "keystone_database_enabled | bool"
tags:
- keystone-config
- include_tasks: keystone_token_cleanup.yml
when:
- "'uuid' in keystone_token_provider"
run_once: yes
tags:
- keystone-install
- include_tasks: keystone_ssl.yml
tags:
- keystone-config
- include_tasks: "keystone_{{ keystone_web_server }}.yml"
tags:
- keystone-config
- include_tasks: keystone_uwsgi.yml
tags:
- keystone-config
- name: Flush handlers
meta: flush_handlers
- include_tasks: keystone_service_setup.yml
when:
- keystone_service_setup | bool
run_once: yes
tags:
- keystone-config
- include_tasks: keystone_ldap_setup.yml
when: keystone_service_setup | bool
tags:
- keystone-config
- include_tasks: keystone_federation_sp_idp_setup.yml
when:
- keystone_service_setup | bool
- keystone_sp != {}
run_once: yes
tags:
- keystone-config
- name: Flush handlers
meta: flush_handlers
- include_tasks: keystone_idp_setup.yml
when: keystone_idp != {}
tags:
- keystone-config
- name: Diagnose common problems with keystone deployments
command: "{{ keystone_bin }}/keystone-manage doctor"
become: yes
become_user: "{{ keystone_system_user_name }}"
register: keystone_doctor
failed_when: not debug and keystone_doctor.rc != 0
changed_when: false
run_once: yes
tags:
- keystone-config
View Git Blame Copy Permalink