Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: d6cebd0f5c
Branches Tags
okd
/
roles
/
openshift_metrics
/
tasks
/
import_jks_certs.yaml

import_jks_certs.yaml 2.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. ---
    2. 

  2. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-cassandra.keystore"
    3. 

  3.   register: cassandra_keystore
    4. 

  4.   check_mode: no
    5. 

  5. 

  6. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-cassandra.truststore"
    7. 

  7.   register: cassandra_truststore
    8. 

  8.   check_mode: no
    9. 

  9. 

  10. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-metrics.keystore"
    11. 

  11.   register: metrics_keystore
    12. 

  12.   check_mode: no
    13. 

  13. 

  14. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-metrics.truststore"
    15. 

  15.   register: metrics_truststore
    16. 

  16.   check_mode: no
    17. 

  17. 

  18. - stat: path="{{openshift_metrics_certs_dir}}/hawkular-jgroups.keystore"
    19. 

  19.   register: jgroups_keystore
    20. 

  20.   check_mode: no
    21. 

  21. 

  22. - block:
    23. 

  23.   - slurp: src={{ openshift_metrics_certs_dir }}/hawkular-metrics-keystore.pwd
    24. 

  24.     register: metrics_keystore_password
    25. 

  25. 

  26.   - slurp: src={{ openshift_metrics_certs_dir }}/hawkular-cassandra-keystore.pwd
    27. 

  27.     register: cassandra_keystore_password
    28. 

  28. 

  29.   - slurp: src={{ openshift_metrics_certs_dir }}/hawkular-jgroups-keystore.pwd
    30. 

  30.     register: jgroups_keystore_password
    31. 

  31. 

  32.   - fetch:
    33. 

  33.       dest: "{{local_tmp.stdout}}/"
    34. 

  34.       src: "{{ openshift_metrics_certs_dir }}/{{item}}"
    35. 

  35.       flat: yes
    36. 

  36.     changed_when: False
    37. 

  37.     with_items:
    38. 

  38.     - hawkular-metrics.pkcs12
    39. 

  39.     - hawkular-cassandra.pkcs12
    40. 

  40.     - hawkular-metrics.crt
    41. 

  41.     - hawkular-cassandra.crt
    42. 

  42.     - ca.crt
    43. 

  43. 

  44.   - local_action: command {{role_path}}/files/import_jks_certs.sh
    45. 

  45.     environment:
    46. 

  46.       CERT_DIR: "{{local_tmp.stdout}}"
    47. 

  47.       METRICS_KEYSTORE_PASSWD: "{{metrics_keystore_password.content}}"
    48. 

  48.       CASSANDRA_KEYSTORE_PASSWD: "{{cassandra_keystore_password.content}}"
    49. 

  49.       METRICS_TRUSTSTORE_PASSWD: "{{hawkular_truststore_password.content}}"
    50. 

  50.       CASSANDRA_TRUSTSTORE_PASSWD: "{{cassandra_truststore_password.content}}"
    51. 

  51.       JGROUPS_PASSWD: "{{jgroups_keystore_password.content}}"
    52. 

  52.     changed_when: False
    53. 

  53. 

  54.   - copy:
    55. 

  55.       dest: "{{openshift_metrics_certs_dir}}/"
    56. 

  56.       src: "{{item}}"
    57. 

  57.     with_fileglob: "{{local_tmp.stdout}}/*.*store"
    58. 

  58. 

  59.   when: not metrics_keystore.stat.exists or
    60. 

  60.         not metrics_truststore.stat.exists or
    61. 

  61.         not cassandra_keystore.stat.exists or
    62. 

  62.         not cassandra_truststore.stat.exists or
    63. 

  63.         not jgroups_keystore.stat.exists
    64.