首页 发现 帮助
注册 登录
shixiong
/
okd
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: eda85b04e5
分支列表 标签列表
okd
/
roles
/
openshift_management
/
tasks
/
add_container_provider.yml

add_container_provider.yml 2.5 KB
文件历史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. ---
    2. 

  2. - name: Ensure lib_openshift modules are available
    3. 

  3.   include_role:
    4. 

  4.     role: lib_openshift
    5. 

  5. 

  6. - name: Ensure OpenShift facts module is available
    7. 

  7.   include_role:
    8. 

  8.     role: openshift_facts
    9. 

  9. 

  10. - name: Ensure OpenShift facts are loaded
    11. 

  11.   openshift_facts:
    12. 

  12. 

  13. - name: Ensure we use openshift_master_cluster_public_hostname if it is available
    14. 

  14.   set_fact:
    15. 

  15.     l_cluster_hostname: "{{ openshift.master.cluster_public_hostname }}"
    16. 

  16.   when:
    17. 

  17.     - openshift.master.cluster_public_hostname is defined
    18. 

  18. 

  19. - name: Ensure we default to the first master if openshift_master_cluster_public_hostname is unavailable
    20. 

  20.   set_fact:
    21. 

  21.     l_cluster_hostname: "{{ openshift.master.cluster_hostname }}"
    22. 

  22.   when:
    23. 

  23.     - l_cluster_hostname is not defined
    24. 

  24. 

  25. - name: Ensure the management SA Secrets are read
    26. 

  26.   oc_serviceaccount_secret:
    27. 

  27.     state: list
    28. 

  28.     service_account: management-admin
    29. 

  29.     namespace: management-infra
    30. 

  30.   register: sa
    31. 

  31. 

  32. - name: Ensure the management SA bearer token is identified
    33. 

  33.   set_fact:
    34. 

  34.     management_token: "{{ sa.results | oo_filter_sa_secrets }}"
    35. 

  35. 

  36. - name: Ensure the SA bearer token value is read
    37. 

  37.   oc_secret:
    38. 

  38.     state: list
    39. 

  39.     name: "{{ management_token }}"
    40. 

  40.     namespace: management-infra
    41. 

  41.     decode: true
    42. 

  42.   no_log: True
    43. 

  43.   register: sa_secret
    44. 

  44. 

  45. - name: Ensure the SA bearer token value is saved
    46. 

  46.   set_fact:
    47. 

  47.     management_bearer_token: "{{ sa_secret.results.decoded.token }}"
    48. 

  48. 

  49. - name: Ensure we have the public route to the management service
    50. 

  50.   oc_route:
    51. 

  51.     state: list
    52. 

  52.     name: httpd
    53. 

  53.     namespace: openshift-management
    54. 

  54.   register: route
    55. 

  55. 

  56. - name: Ensure the management service route is saved
    57. 

  57.   set_fact:
    58. 

  58.     management_route: "{{ route.results.0.spec.host }}"
    59. 

  59. 

  60. - name: Ensure this cluster is a container provider
    61. 

  61.   uri:
    62. 

  62.     url: "https://{{ management_route }}/api/providers"
    63. 

  63.     body_format: json
    64. 

  64.     method: POST
    65. 

  65.     user: "{{ openshift_management_username }}"
    66. 

  66.     password: "{{ openshift_management_password }}"
    67. 

  67.     validate_certs: no
    68. 

  68.     # Docs on formatting the BODY of the POST request:
    69. 

  69.     # http://manageiq.org/docs/reference/latest/api/reference/providers.html#specifying-connection-configurations
    70. 

  70.     body:
    71. 

  71.       connection_configurations:
    72. 

  72.         - authentication: {auth_key: "{{ management_bearer_token }}", authtype: bearer, type: AuthToken}
    73. 

  73.           endpoint: {role: default, security_protocol: ssl-without-validation, verify_ssl: 0}
    74. 

  74.       hostname: "{{ l_cluster_hostname }}"
    75. 

  75.       name: "{{ openshift_management_project }}"
    76. 

  76.       port: "{{ openshift.master.api_port }}"
    77. 

  77.       type: "ManageIQ::Providers::Openshift::ContainerManager"
    78.