Merge "Use admin user instead of root for galera"

This commit is contained in:
Zuul 2021-03-23 13:43:49 +00:00 committed by Gerrit Code Review
commit d6c8be2477
5 changed files with 12 additions and 3 deletions

View File

@ -33,7 +33,7 @@ rabbitmq_policies:
## Galera options ## Galera options
galera_client_package_state: "{{ package_state }}" galera_client_package_state: "{{ package_state }}"
galera_address: "{{ internal_lb_vip_address }}" galera_address: "{{ internal_lb_vip_address }}"
galera_root_user: "root" galera_root_user: "admin"
## Memcached options ## Memcached options
memcached_port: 11211 memcached_port: 11211

View File

@ -49,7 +49,7 @@
when: "groups['haproxy'] | default([]) | length > 0" when: "groups['haproxy'] | default([]) | length > 0"
- role: "galera_server" - role: "galera_server"
vars: vars:
galera_install_client: true galera_install_client: "{{ (galera_root_user == 'root') }}"
galera_install_server: true galera_install_server: true
- role: haproxy_endpoints - role: haproxy_endpoints
haproxy_state: enabled haproxy_state: enabled

View File

@ -164,6 +164,7 @@
- name: Wait for cluster ready state - name: Wait for cluster ready state
command: | command: |
mysql -h {{ ansible_host }} \ mysql -h {{ ansible_host }} \
-u "{{ galera_root_user | default('root') }}" \
-p"{{ galera_root_password }}" \ -p"{{ galera_root_password }}" \
-e "show status like 'wsrep_incoming_addresses';" \ -e "show status like 'wsrep_incoming_addresses';" \
--silent \ --silent \
@ -181,6 +182,7 @@
- name: Wait for cluster ready state - name: Wait for cluster ready state
command: | command: |
mysql -h {{ ansible_host }} \ mysql -h {{ ansible_host }} \
-u "{{ galera_root_user | default('root') }}" \
-p"{{ galera_root_password }}" \ -p"{{ galera_root_password }}" \
-e "show status like 'wsrep_incoming_addresses';" \ -e "show status like 'wsrep_incoming_addresses';" \
--silent \ --silent \
@ -194,6 +196,7 @@
- name: Check cluster local state - name: Check cluster local state
command: | command: |
mysql -h {{ ansible_host }} \ mysql -h {{ ansible_host }} \
-u "{{ galera_root_user | default('root') }}" \
-p"{{ galera_root_password }}" \ -p"{{ galera_root_password }}" \
-e "show status like 'wsrep_local_state_comment';" \ -e "show status like 'wsrep_local_state_comment';" \
--silent \ --silent \
@ -206,6 +209,7 @@
- name: Check cluster evs state - name: Check cluster evs state
command: | command: |
mysql -h {{ ansible_host }} \ mysql -h {{ ansible_host }} \
-u "{{ galera_root_user | default('root') }}" \
-p"{{ galera_root_password }}" \ -p"{{ galera_root_password }}" \
-e "show status like 'wsrep_evs_state';" \ -e "show status like 'wsrep_evs_state';" \
--silent \ --silent \

View File

@ -16,11 +16,11 @@
- import_playbook: unbound-install.yml - import_playbook: unbound-install.yml
- import_playbook: repo-install.yml - import_playbook: repo-install.yml
- import_playbook: haproxy-install.yml - import_playbook: haproxy-install.yml
- import_playbook: utility-install.yml
- import_playbook: memcached-install.yml - import_playbook: memcached-install.yml
- import_playbook: galera-install.yml - import_playbook: galera-install.yml
- import_playbook: qdrouterd-install.yml - import_playbook: qdrouterd-install.yml
- import_playbook: rabbitmq-install.yml - import_playbook: rabbitmq-install.yml
- import_playbook: utility-install.yml
- import_playbook: etcd-install.yml - import_playbook: etcd-install.yml
- import_playbook: ceph-install.yml - import_playbook: ceph-install.yml
- import_playbook: ceph-nfs-install.yml - import_playbook: ceph-nfs-install.yml

View File

@ -0,0 +1,5 @@
---
upgrade:
- |
Galera privileged username has changed from ``root`` to ``admin``. Old
'root'@'%' user can be removed after upgrade process.