首页 发现 帮助
注册 登录
shixiong
/
okd
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: 8e10c53974
分支列表 标签列表
okd
/
roles
/
openshift_cfme
/
tasks
/
accounts.yml

accounts.yml 1.1 KB
文件历史 原始文件

12345678910111213141516171819202122232425262728 
  1. ---
    2. 

  2. # This role task file is responsible for user/system account creation,
    3. 

  3. # and ensuring correct access is provided as required.
    4. 

  4. - name: Ensure the CFME system accounts exist
    5. 

  5.   oc_serviceaccount:
    6. 

  6.     namespace: "{{ openshift_cfme_project }}"
    7. 

  7.     state: present
    8. 

  8.     name: "{{ openshift_cfme_flavor_short }}{{ item.name }}"
    9. 

  9.   with_items:
    10. 

  10.     - "{{ __openshift_system_account_sccs }}"
    11. 

  11. 

  12. - name: Ensure the CFME system accounts have all the required SCCs
    13. 

  13.   oc_adm_policy_user:
    14. 

  14.     namespace: "{{ openshift_cfme_project }}"
    15. 

  15.     user: "system:serviceaccount:{{ openshift_cfme_project }}:{{ openshift_cfme_flavor_short }}{{ item.name }}"
    16. 

  16.     resource_kind: scc
    17. 

  17.     resource_name: "{{ item.resource_name }}"
    18. 

  18.   with_items:
    19. 

  19.     - "{{ __openshift_system_account_sccs }}"
    20. 

  20. 

  21. - name: Ensure the CFME system accounts have the required roles
    22. 

  22.   oc_adm_policy_user:
    23. 

  23.     namespace: "{{ openshift_cfme_project }}"
    24. 

  24.     user: "system:serviceaccount:{{ openshift_cfme_project }}:{{ openshift_cfme_flavor_short }}{{ item.name }}"
    25. 

  25.     resource_kind: role
    26. 

  26.     resource_name: "{{ item.resource_name }}"
    27. 

  27.   with_items:
    28. 

  28.     - "{{ __openshift_cfme_system_account_roles }}"
    29.