Página inicial Explorar Ajuda
Registrar Entrar
shixiong
/
okd
1
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: 651d26c2c0
Branches Tags
okd
/
roles
/
openshift_gcp
/
tasks
/
main.yml

main.yml 6.0 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176 
  1. ---
    2. 

  2. - name: Create GCP network
    3. 

  3.   gcp_compute_network:
    4. 

  4.     auth_kind: serviceaccount
    5. 

  5.     scopes:
    6. 

  6.     - https://www.googleapis.com/auth/compute
    7. 

  7.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    8. 

  8.     project: "{{ openshift_gcp_project }}"
    9. 

  9.     name: "{{ openshift_gcp_network_name }}"
    10. 

  10.     state: present
    11. 

  11.   register: network
    12. 

  12. 

  13. - name: Create GCP firewall
    14. 

  14.   gcp_compute_firewall:
    15. 

  15.     auth_kind: serviceaccount
    16. 

  16.     scopes:
    17. 

  17.     - https://www.googleapis.com/auth/compute
    18. 

  18.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    19. 

  19.     project: "{{ openshift_gcp_project }}"
    20. 

  20.     name: "{{ openshift_gcp_prefix }}{{ item.rule }}"
    21. 

  21.     allowed: "{{ item.allowed }}"
    22. 

  22.     network: "{{ network.selfLink }}"
    23. 

  23.     target_tags: "{{ item.target_tags | default(omit) }}"
    24. 

  24.     source_tags: "{{ item.source_tags | default(omit) }}"
    25. 

  25.     state: present
    26. 

  26.   with_items: "{{ openshift_gcp_firewall_rules }}"
    27. 

  27. 

  28. - import_tasks: provision_ssh_keys.yml
    29. 

  29. 

  30. - name: Find GCP image
    31. 

  31.   gcp_compute_image_facts:
    32. 

  32.     auth_kind: serviceaccount
    33. 

  33.     scopes:
    34. 

  34.     - https://www.googleapis.com/auth/compute
    35. 

  35.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    36. 

  36.     project: "{{ openshift_gcp_project }}"
    37. 

  37.     filters:
    38. 

  38.     - "family = {{ openshift_gcp_image }}"
    39. 

  39.   register: gcp_node_image
    40. 

  40. 

  41. - name: Provision GCP instance templates
    42. 

  42.   gcp_compute_instance_template:
    43. 

  43.     auth_kind: serviceaccount
    44. 

  44.     scopes:
    45. 

  45.     - https://www.googleapis.com/auth/compute
    46. 

  46.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    47. 

  47.     project: "{{ openshift_gcp_project }}"
    48. 

  48.     name: "{{ openshift_gcp_prefix }}instance-template-{{ item.name }}"
    49. 

  49.     properties:
    50. 

  50.       machine_type: "{{ item.machine_type }}"
    51. 

  51.       network_interfaces:
    52. 

  52.       - network: "{{ network }}"
    53. 

  53.         access_configs:
    54. 

  54.         - name: "{{ openshift_gcp_prefix }}instance-template-{{ item.name }}-config"
    55. 

  55.           type: 'ONE_TO_ONE_NAT'
    56. 

  56.       disks:
    57. 

  57.       - auto_delete: true
    58. 

  58.         boot: true
    59. 

  59.         initialize_params:
    60. 

  60.           disk_size_gb: "{{ item.boot_disk_size }}"
    61. 

  61.           source_image: "{{ gcp_node_image['items'][0].selfLink }}"
    62. 

  62.       metadata:
    63. 

  63.         "cluster-id": "{{ openshift_gcp_prefix + openshift_gcp_clusterid }}"
    64. 

  64.         "node-group": "{{ item.name }}"
    65. 

  65.       tags:
    66. 

  66.         items:
    67. 

  67.         - "ocp"
    68. 

  68.         - "{{ openshift_gcp_prefix }}ocp"
    69. 

  69.         - "{{ item.tags }}"
    70. 

  70.     state: present
    71. 

  71.   with_items: "{{ openshift_gcp_node_group_config }}"
    72. 

  72.   register: instance_template
    73. 

  73. 

  74. - name: Create GCP Instance Groups
    75. 

  75.   gcp_compute_instance_group_manager:
    76. 

  76.     auth_kind: serviceaccount
    77. 

  77.     scopes:
    78. 

  78.     - https://www.googleapis.com/auth/compute
    79. 

  79.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    80. 

  80.     project: "{{ openshift_gcp_project }}"
    81. 

  81.     zone: "{{ openshift_gcp_zone }}"
    82. 

  82.     name: "{{ openshift_gcp_prefix }}ig-{{ item.item.suffix }}"
    83. 

  83.     base_instance_name: "{{ openshift_gcp_prefix }}ig-{{ item.item.suffix }}"
    84. 

  84.     instance_template: "{{ item }}"
    85. 

  85.     target_size: "{{ item.item.scale | int}}"
    86. 

  86.     named_ports:
    87. 

  87.     - name: "{{ openshift_gcp_prefix }}port-kube-api"
    88. 

  88.       port: "{{ openshift_gcp_kubernetes_api_port }}"
    89. 

  89.     - name: "{{ openshift_gcp_prefix }}port-openshift-api"
    90. 

  90.       port: "{{ openshift_master_api_port }}"
    91. 

  91.     state: present
    92. 

  92.   with_items: "{{ instance_template.results }}"
    93. 

  93.   register: instance_groups
    94. 

  94. 

  95. - name: Get master instance group
    96. 

  96.   gcp_compute_instance_group_facts:
    97. 

  97.     auth_kind: serviceaccount
    98. 

  98.     scopes:
    99. 

  99.     - https://www.googleapis.com/auth/compute
    100. 

  100.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    101. 

  101.     project: "{{ openshift_gcp_project }}"
    102. 

  102.     zone: "{{ openshift_gcp_zone }}"
    103. 

  103.     filters:
    104. 

  104.     - name = "{{ openshift_gcp_prefix }}ig-m"
    105. 

  105.   register: master_instance_group
    106. 

  106. 

  107. - set_fact:
    108. 

  108.     master_instance_group: "{{ master_instance_group['items'][0] }}"
    109. 

  109. 

  110. - name: Wait for master instance group to start all instances
    111. 

  111.   gcp_compute_instance_group_manager_facts:
    112. 

  112.     auth_kind: serviceaccount
    113. 

  113.     scopes:
    114. 

  114.     - https://www.googleapis.com/auth/compute
    115. 

  115.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    116. 

  116.     project: "{{ openshift_gcp_project }}"
    117. 

  117.     zone: "{{ openshift_gcp_zone }}"
    118. 

  118.     filters: "name = {{ master_instance_group['name'] }}"
    119. 

  119.   register: master_group_result
    120. 

  120.   # Wait for 3 minutes
    121. 

  121.   retries: 36
    122. 

  122.   delay: 5
    123. 

  123.   until:
    124. 

  124.   - "master_group_result['items'][0]['currentActions']['none'] == master_group_result['items'][0]['targetSize']"
    125. 

  125. 

  126. - name: Collect a list of instances
    127. 

  127.   gcp_compute_instance_facts:
    128. 

  128.     auth_kind: serviceaccount
    129. 

  129.     scopes:
    130. 

  130.     - https://www.googleapis.com/auth/compute
    131. 

  131.     service_account_file: "{{ openshift_gcp_iam_service_account_keyfile }}"
    132. 

  132.     project: "{{ openshift_gcp_project }}"
    133. 

  133.     zone: "{{ openshift_gcp_zone }}"
    134. 

  134.   register: all_instances
    135. 

  135. 

  136. - name: Filter instances to fetch bootstrap
    137. 

  137.   set_fact:
    138. 

  138.     bootstrap_instance: "{{ item }}"
    139. 

  139.   with_items:
    140. 

  140.   - "{{ all_instances['items'] }}"
    141. 

  141.   when:
    142. 

  142.   - "'tags' in item"
    143. 

  143.   - "'items' in item['tags']"
    144. 

  144.   - "cluster_tag in item['tags']['items']"
    145. 

  145.   - "'ocp-bootstrap' in item['tags']['items']"
    146. 

  146.   vars:
    147. 

  147.     cluster_tag: "{{ openshift_gcp_prefix }}ocp"
    148. 

  148. 

  149. - name: Filter instances to fetch masters
    150. 

  150.   set_fact:
    151. 

  151.     master_instances: "{{ master_instances | default([]) }} + [ {{ item }} ]"
    152. 

  152.   with_items:
    153. 

  153.   - "{{ all_instances['items'] }}"
    154. 

  154.   when:
    155. 

  155.   - "'tags' in item"
    156. 

  156.   - "'items' in item['tags']"
    157. 

  157.   - "cluster_tag in item['tags']['items']"
    158. 

  158.   - "'ocp-master' in item['tags']['items']"
    159. 

  159.   vars:
    160. 

  160.     cluster_tag: "{{ openshift_gcp_prefix }}ocp"
    161. 

  161. 

  162. - set_fact:
    163. 

  163.     etcd_discovery_targets: "{{ etcd_discovery_targets | default('') }} '0 0 2380 {{ entry_name }}'"
    164. 

  164.     master_external_ips: "{{ master_external_ips | default('') }} '{{ master_ip }}'"
    165. 

  165.   with_indexed_items: "{{ master_instances }}"
    166. 

  166.   vars:
    167. 

  167.     entry_name: "{{ openshift_gcp_prefix }}etcd-{{ item.0 }}.{{ public_hosted_zone }}."
    168. 

  168.     master_ip: "{{ item.1.networkInterfaces[0].accessConfigs[0].natIP }}"
    169. 

  169. 

  170. - name: Templatize DNS script
    171. 

  171.   template: src=additional_settings.j2.sh dest=/tmp/additional_settings.sh mode=u+rx
    172. 

  172. 

  173. - name: Run addition provision GCP script
    174. 

  174.   command: /tmp/additional_settings.sh
    175. 

  175.   args:
    176. 

  176.     chdir: "{{ files_dir }}"
    177.