Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
shixiong
/
okd
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: 2bf65cdab4
Gałęzie Tagi
okd
/
roles
/
openshift_management
/
tasks
/
accounts.yml

accounts.yml 1.2 KB
Historia Czysty

12345678910111213141516171819202122232425262728 
  1. ---
    2. 

  2. # This role task file is responsible for user/system account creation,
    3. 

  3. # and ensuring correct access is provided as required.
    4. 

  4. - name: Ensure the CFME system accounts exist
    5. 

  5.   oc_serviceaccount:
    6. 

  6.     namespace: "{{ openshift_management_project }}"
    7. 

  7.     state: present
    8. 

  8.     name: "{{ openshift_management_flavor_short }}{{ item.name }}"
    9. 

  9.   with_items:
    10. 

  10.     - "{{ __openshift_system_account_sccs }}"
    11. 

  11. 

  12. - name: Ensure the CFME system accounts have all the required SCCs
    13. 

  13.   oc_adm_policy_user:
    14. 

  14.     namespace: "{{ openshift_management_project }}"
    15. 

  15.     user: "system:serviceaccount:{{ openshift_management_project }}:{{ openshift_management_flavor_short }}{{ item.name }}"
    16. 

  16.     resource_kind: scc
    17. 

  17.     resource_name: "{{ item.resource_name }}"
    18. 

  18.   with_items:
    19. 

  19.     - "{{ __openshift_system_account_sccs }}"
    20. 

  20. 

  21. - name: Ensure the CFME system accounts have the required roles
    22. 

  22.   oc_adm_policy_user:
    23. 

  23.     namespace: "{{ openshift_management_project }}"
    24. 

  24.     user: "system:serviceaccount:{{ openshift_management_project }}:{{ openshift_management_flavor_short }}{{ item.name }}"
    25. 

  25.     resource_kind: role
    26. 

  26.     resource_name: "{{ item.resource_name }}"
    27. 

  27.   with_items:
    28. 

  28.     - "{{ __openshift_management_system_account_roles }}"
    29.