Startsida Utforska Hjälp
Registrera dig Logga in
shixiong
/
okd
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: 01ae634a0b
Grenar Taggar
okd
/
roles
/
openshift_aws
/
tasks
/
security_group.yml

security_group.yml 1.0 KB
Historik

1234567891011121314151617181920212223242526272829303132 
  1. ---
    2. 

  2. - name: Fetch the VPC for the vpc.id
    3. 

  3.   ec2_vpc_net_facts:
    4. 

  4.     region: "{{ openshift_aws_region }}"
    5. 

  5.     filters:
    6. 

  6.       "tag:Name": "{{ openshift_aws_clusterid }}"
    7. 

  7.   register: vpcout
    8. 

  8. 

  9. - name: create the node group sgs
    10. 

  10.   oo_ec2_group:
    11. 

  11.     name: "{{ item.value.name}}"
    12. 

  12.     description: "{{ item.value.desc }}"
    13. 

  13.     rules: "{{ item.value.rules if 'rules' in item.value else [] }}"
    14. 

  14.     region: "{{ openshift_aws_region }}"
    15. 

  15.     vpc_id: "{{ vpcout.vpcs[0].id }}"
    16. 

  16.   with_dict: "{{ openshift_aws_node_security_groups }}"
    17. 

  17. 

  18. - name: create the k8s sgs for the node group
    19. 

  19.   oo_ec2_group:
    20. 

  20.     name: "{{ item.value.name }}_k8s"
    21. 

  21.     description: "{{ item.value.desc }} for k8s"
    22. 

  22.     region: "{{ openshift_aws_region }}"
    23. 

  23.     vpc_id: "{{ vpcout.vpcs[0].id }}"
    24. 

  24.   with_dict: "{{ openshift_aws_node_security_groups }}"
    25. 

  25.   register: k8s_sg_create
    26. 

  26. 

  27. - name: tag sg groups with proper tags
    28. 

  28.   ec2_tag:
    29. 

  29.     tags: "{{ openshift_aws_security_groups_tags }}"
    30. 

  30.     resource: "{{ item.group_id }}"
    31. 

  31.     region: "{{ openshift_aws_region }}"
    32. 

  32.   with_items: "{{ k8s_sg_create.results }}"
    33.