Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 6c9e37f386
Branches Tags
okd
/
roles
/
openshift_metrics
/
tasks
/
import_jks_certs.yaml

import_jks_certs.yaml 2.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. ---
    2. 

  2. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-cassandra.keystore"
    3. 

  3.   register: cassandra_keystore
    4. 

  4.   check_mode: no
    5. 

  5. 

  6. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-cassandra.truststore"
    7. 

  7.   register: cassandra_truststore
    8. 

  8.   check_mode: no
    9. 

  9. 

  10. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-metrics.keystore"
    11. 

  11.   register: metrics_keystore
    12. 

  12.   check_mode: no
    13. 

  13. 

  14. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-metrics.truststore"
    15. 

  15.   register: metrics_truststore
    16. 

  16.   check_mode: no
    17. 

  17. 

  18. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-jgroups.keystore"
    19. 

  19.   register: jgroups_keystore
    20. 

  20.   check_mode: no
    21. 

  21. 

  22. - block:
    23. 

  23.   - slurp: src={{ openshift_metrics_certs_dir }}/hawkular-metrics-keystore.pwd
    24. 

  24.     register: metrics_keystore_password
    25. 

  25. 

  26.   - slurp: src={{ openshift_metrics_certs_dir }}/hawkular-cassandra-keystore.pwd
    27. 

  27.     register: cassandra_keystore_password
    28. 

  28. 

  29.   - slurp: src={{ openshift_metrics_certs_dir }}/hawkular-jgroups-keystore.pwd
    30. 

  30.     register: jgroups_keystore_password
    31. 

  31. 

  32.   - local_action: command mktemp -d
    33. 

  33.     register: local_tmp
    34. 

  34.     changed_when: False
    35. 

  35. 

  36.   - fetch:
    37. 

  37.       dest: "{{local_tmp.stdout}}/"
    38. 

  38.       src: "{{ openshift_metrics_certs_dir }}/{{item}}"
    39. 

  39.       flat: yes
    40. 

  40.     changed_when: False
    41. 

  41.     with_items:
    42. 

  42.     - hawkular-metrics.pkcs12
    43. 

  43.     - hawkular-cassandra.pkcs12
    44. 

  44.     - hawkular-metrics.crt
    45. 

  45.     - hawkular-cassandra.crt
    46. 

  46.     - ca.crt
    47. 

  47. 

  48.   - local_action: command {{role_path}}/files/import_jks_certs.sh
    49. 

  49.     environment:
    50. 

  50.       CERT_DIR: "{{local_tmp.stdout}}"
    51. 

  51.       METRICS_KEYSTORE_PASSWD: "{{metrics_keystore_password.content}}"
    52. 

  52.       CASSANDRA_KEYSTORE_PASSWD: "{{cassandra_keystore_password.content}}"
    53. 

  53.       METRICS_TRUSTSTORE_PASSWD: "{{hawkular_truststore_password.content}}"
    54. 

  54.       CASSANDRA_TRUSTSTORE_PASSWD: "{{cassandra_truststore_password.content}}"
    55. 

  55.       JGROUPS_PASSWD: "{{jgroups_keystore_password.content}}"
    56. 

  56.     changed_when: False
    57. 

  57. 

  58.   - copy:
    59. 

  59.       dest: "{{openshift_metrics_certs_dir}}/"
    60. 

  60.       src: "{{item}}"
    61. 

  61.     with_fileglob: "{{local_tmp.stdout}}/*.*store"
    62. 

  62. 

  63.   - file:
    64. 

  64.       path: "{{local_tmp.stdout}}"
    65. 

  65.       state: absent
    66. 

  66.     changed_when: False
    67. 

  67. 

  68.   when: not metrics_keystore.stat.exists or
    69. 

  69.         not metrics_truststore.stat.exists or
    70. 

  70.         not cassandra_keystore.stat.exists or
    71. 

  71.         not cassandra_truststore.stat.exists or
    72. 

  72.         not jgroups_keystore.stat.exists
    73.