openstack/openstack-ansible-os_neutron
Code Issues Proposed changes
a277ebd2cf
openstack-ansible-os_neutron/tasks/neutron_install.yml
Kevin Carter 94994ef2e7 Add options to auto enable VPNaaS 
This change makes it possible for the neutron role to enable VPNaaS using
the reference OpenSwan driver by simply setting the `vpnaas` option within
the **neutron_plugin_base** list. This capability has been within the role
for some time however never specifically configured.

The change will bind the vpnaas agent to any location that is within the
neutron_l3_agent group. The agnet brings with it a new ini file and a new
entry point for config_template overrides. The vpnaas packages will be
installed when the agent is enabled within the target location of the
running agent services.

Change-Id: Ie9f89f7d2a942df40841d72c82f3a34315c6bed9
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
2016-04-18 15:52:27 +01:00

287 lines
7.6 KiB
YAML
Raw Blame History

---
# Copyright 2014, Rackspace US, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#TODO(evrardjp): Replace the next 2 tasks by a standard apt with cache
#when https://github.com/ansible/ansible-modules-core/pull/1517 is merged
#in 1.9.x or we move to 2.0 (if tested working)
- name: Check apt last update file
stat:
path: /var/cache/apt
register: apt_cache_stat
tags:
- neutron-apt-packages
- name: Update apt if needed
apt:
update_cache: yes
when: "ansible_date_time.epoch|float - apt_cache_stat.stat.mtime > {{cache_timeout}}"
tags:
- neutron-apt-packages
- name: Install apt packages
apt:
pkg: "{{ item }}"
state: latest
register: install_packages
until: install_packages|success
retries: 5
delay: 2
with_items: neutron_apt_packages
tags:
- neutron-install
- neutron-apt-packages
- name: Install apt packages for LBaaS
apt:
pkg: "{{ item }}"
state: latest
register: install_packages
until: install_packages|success
retries: 5
delay: 2
with_items: neutron_lbaas_apt_packages
when:
- inventory_hostname in groups[neutron_services['neutron-lbaas-agent']['group']]
- neutron_lbaas | bool or neutron_lbaasv2 | bool
tags:
- neutron-install
- neutron-apt-packages
- name: Install apt packages for VPNaaS
apt:
pkg: "{{ item }}"
state: latest
register: install_packages
until: install_packages|success
retries: 5
delay: 2
with_items: neutron_vpnaas_apt_packages
when:
- inventory_hostname in groups[neutron_services['neutron-vpnaas-agent']['group']]
- neutron_vpnaas | bool
tags:
- neutron-install
- neutron-apt-packages
- name: remove specific apt packages
apt:
pkg: "{{ item }}"
state: absent
register: remove_packages
until: remove_packages|success
retries: 5
delay: 2
with_items: neutron_apt_remove_packages
tags:
- neutron-install
- neutron-apt-packages
- name: Create developer mode constraint file
copy:
dest: "/opt/developer-pip-constraints.txt"
content: |
{% for item in neutron_developer_constraints %}
{{ item }}
{% endfor %}
when:
- neutron_developer_mode | bool
tags:
- neutron-install
- neutron-pip-packages
- name: Clone requirements git repository
git:
repo: "{{ neutron_requirements_git_repo }}"
dest: "/opt/requirements"
clone: yes
update: yes
version: "{{ neutron_requirements_git_install_branch }}"
when:
- neutron_developer_mode | bool
tags:
- neutron-install
- neutron-pip-packages
- name: Add constraints to pip_install_options fact for developer mode
set_fact:
pip_install_options_fact: "{{ pip_install_options|default('') }} --constraint /opt/developer-pip-constraints.txt --constraint /opt/requirements/upper-constraints.txt"
when:
- neutron_developer_mode | bool
tags:
- neutron-install
- neutron-pip-packages
- name: Set pip_install_options_fact when not in developer mode
set_fact:
pip_install_options_fact: "{{ pip_install_options|default('') }}"
when:
- not neutron_developer_mode | bool
tags:
- neutron-install
- neutron-pip-packages
- name: Install requires pip packages
pip:
name: "{{ item }}"
state: present
extra_args: "{{ pip_install_options_fact }}"
register: install_packages
until: install_packages|success
retries: 5
delay: 2
with_items: neutron_requires_pip_packages
tags:
- neutron-install
- neutron-pip-packages
- name: Get local venv checksum
stat:
path: "/var/cache/{{ neutron_venv_download_url | basename }}"
get_md5: False
when:
- not neutron_developer_mode | bool
- neutron_venv_enabled | bool
register: local_venv_stat
tags:
- neutron-install
- neutron-pip-packages
- name: Get remote venv checksum
uri:
url: "{{ neutron_venv_download_url | replace('tgz', 'checksum') }}"
return_content: True
when:
- not neutron_developer_mode | bool
- neutron_venv_enabled | bool
register: remote_venv_checksum
tags:
- neutron-install
- neutron-pip-packages
# TODO: When project moves to ansible 2 we can pass this a sha256sum which will:
# a) allow us to remove force: yes
# b) allow the module to calculate the checksum of dest file which would
# result in file being downloaded only if provided and dest sha256sum
# checksums differ
- name: Attempt venv download
get_url:
url: "{{ neutron_venv_download_url }}"
dest: "/var/cache/{{ neutron_venv_download_url | basename }}"
force: yes
ignore_errors: true
register: get_venv
when:
- not neutron_developer_mode | bool
- neutron_venv_enabled | bool
- (local_venv_stat.stat.exists == False or
{{ local_venv_stat.stat.checksum is defined and local_venv_stat.stat.checksum != remote_venv_checksum.content | trim }})
tags:
- neutron-install
- neutron-pip-packages
- name: Set neutron get_venv fact
set_fact:
neutron_get_venv: "{{ get_venv }}"
when: neutron_venv_enabled | bool
tags:
- neutron-install
- neutron-pip-packages
- name: Remove existing venv
file:
path: "{{ neutron_venv_bin | dirname }}"
state: absent
when:
- neutron_venv_enabled | bool
- neutron_get_venv | changed
tags:
- neutron-install
- neutron-pip-packages
- name: Create neutron venv dir
file:
path: "{{ neutron_venv_bin | dirname }}"
state: directory
when:
- not neutron_developer_mode | bool
- neutron_venv_enabled | bool
- neutron_get_venv | changed
tags:
- neutron-install
- neutron-pip-packages
- name: Unarchive pre-built venv
unarchive:
src: "/var/cache/{{ neutron_venv_download_url | basename }}"
dest: "{{ neutron_venv_bin | dirname }}"
copy: "no"
when:
- not neutron_developer_mode | bool
- neutron_venv_enabled | bool
- neutron_get_venv | changed
notify: Restart neutron services
tags:
- neutron-install
- neutron-pip-packages
- name: Update virtualenv path
command: >
virtualenv-tools --update-path=auto {{ neutron_venv_bin | dirname }}
when:
- not neutron_developer_mode | bool
- neutron_venv_enabled | bool
- neutron_get_venv | success
tags:
- neutron-install
- neutron-pip-packages
- name: Install pip packages (venv)
pip:
name: "{{ item }}"
state: present
virtualenv: "{{ neutron_venv_bin | dirname }}"
virtualenv_site_packages: "no"
extra_args: "{{ pip_install_options_fact }}"
register: install_packages
until: install_packages|success
retries: 5
delay: 2
with_items: neutron_pip_packages
when:
- neutron_venv_enabled | bool
- neutron_get_venv | failed or neutron_developer_mode | bool
notify: Restart neutron services
tags:
- neutron-install
- neutron-pip-packages
- name: Install pip packages (no venv)
pip:
name: "{{ item }}"
state: present
extra_args: "{{ pip_install_options_fact }}"
register: install_packages
until: install_packages|success
retries: 5
delay: 2
with_items: neutron_pip_packages
when:
- not neutron_developer_mode | bool
- not neutron_venv_enabled | bool
notify: Restart neutron services
tags:
- neutron-install
- neutron-pip-packages
View Git Blame Copy Permalink