Skip to content
Snippets Groups Projects
Normal view Permalink
register.yml 1.83 KiB
Newer Older
Michal Rostecki's avatar
Add Ansible support for Magnum
Michal Rostecki committed
1 
---
Mark Goddard's avatar
Refactor service, endpoint and user registration  
Mark Goddard committed
2 3 4 5 6 7 
- import_role:
    name: service-ks-register
  vars:
    service_ks_register_auth: "{{ openstack_magnum_auth }}"
    service_ks_register_services: "{{ magnum_ks_services }}"
    service_ks_register_users: "{{ magnum_ks_users }}"
Vikram Hosakote's avatar
Fix Magnum trustee issues  
Vikram Hosakote committed
8 9 

- name: Creating Magnum trustee domain
Mark Goddard's avatar
Use become for all docker tasks  
Mark Goddard committed
10 
  become: true
Jeffrey Zhang's avatar
Refactor register.yml files  
Jeffrey Zhang committed
11 
  kolla_toolbox:
Ivan Halomi's avatar
Adding container_engine to kolla_toolbox module  
Ivan Halomi committed
12 
    container_engine: "{{ kolla_container_engine }}"
Jeffrey Zhang's avatar
Refactor register.yml files  
Jeffrey Zhang committed
13 14 15 16 
    module_name: "os_keystone_domain"
    module_args:
      name: "{{ magnum_trustee_domain }}"
      description: "Owns users and projects created by magnum"
Jeffrey Zhang's avatar
Remove useless module_extra_vars in registry.yml  
Jeffrey Zhang committed
17 
      auth: "{{ openstack_magnum_auth }}"
Eduardo Gonzalez's avatar
Fix deployment with public TLS enabled  
Eduardo Gonzalez committed
18 
      endpoint_type: "{{ openstack_interface }}"
Scott Solkhon's avatar
Support configuration of trusted CA certificate file  
Scott Solkhon committed
19 
      cacert: "{{ openstack_cacert }}"
wu.chunyang's avatar
add region name for tasks  
wu.chunyang committed
20 
      region_name: "{{ openstack_region_name }}"
caoyuan's avatar
Fix create Magnum trustee user role failed  
caoyuan committed
21 
  register: trustee_domain
Vikram Hosakote's avatar
Fix Magnum trustee issues  
Vikram Hosakote committed
22 23 24 
  run_once: True

- name: Creating Magnum trustee user
Mark Goddard's avatar
Use become for all docker tasks  
Mark Goddard committed
25 
  become: true
Jeffrey Zhang's avatar
Refactor register.yml files  
Jeffrey Zhang committed
26 
  kolla_toolbox:
Ivan Halomi's avatar
Adding container_engine to kolla_toolbox module  
Ivan Halomi committed
27 
    container_engine: "{{ kolla_container_engine }}"
Jeffrey Zhang's avatar
Refactor register.yml files  
Jeffrey Zhang committed
28 29 30 31 32 
    module_name: "os_user"
    module_args:
      name: "{{ magnum_trustee_domain_admin }}"
      domain: "{{ magnum_trustee_domain }}"
      password: "{{ magnum_keystone_password }}"
Alex-Welsh's avatar
Update keystone service user passwords  
Alex-Welsh committed
33 
      update_password: "{{ 'always' if update_keystone_service_user_passwords | bool else 'on_create' }}"
Jeffrey Zhang's avatar
Remove useless module_extra_vars in registry.yml  
Jeffrey Zhang committed
34 
      auth: "{{ openstack_magnum_auth }}"
Eduardo Gonzalez's avatar
Fix deployment with public TLS enabled  
Eduardo Gonzalez committed
35 
      endpoint_type: "{{ openstack_interface }}"
Scott Solkhon's avatar
Support configuration of trusted CA certificate file  
Scott Solkhon committed
36 
      cacert: "{{ openstack_cacert }}"
wu.chunyang's avatar
add region name for tasks  
wu.chunyang committed
37 
      region_name: "{{ openstack_region_name }}"
Vikram Hosakote's avatar
Fix Magnum trustee issues  
Vikram Hosakote committed
38 39 40 
  run_once: True

- name: Creating Magnum trustee user role
Mark Goddard's avatar
Use become for all docker tasks  
Mark Goddard committed
41 
  become: true
Jeffrey Zhang's avatar
Refactor register.yml files  
Jeffrey Zhang committed
42 
  kolla_toolbox:
Ivan Halomi's avatar
Adding container_engine to kolla_toolbox module  
Ivan Halomi committed
43 
    container_engine: "{{ kolla_container_engine }}"
Jeffrey Zhang's avatar
Refactor register.yml files  
Jeffrey Zhang committed
44 45 
    module_name: "os_user_role"
    module_args:
Michal Nasiadka's avatar
magnum: Fix trustee creation after ansible-collections-openstack bump  
Michal Nasiadka committed
46 
      domain: "{{ trustee_domain.domain.id }}"
Jeffrey Zhang's avatar
Refactor register.yml files  
Jeffrey Zhang committed
47 48 
      user: "{{ magnum_trustee_domain_admin }}"
      role: "admin"
Jeffrey Zhang's avatar
Remove useless module_extra_vars in registry.yml  
Jeffrey Zhang committed
49 
      auth: "{{ openstack_magnum_auth }}"
Eduardo Gonzalez's avatar
Fix deployment with public TLS enabled  
Eduardo Gonzalez committed
50 
      endpoint_type: "{{ openstack_interface }}"
Scott Solkhon's avatar
Support configuration of trusted CA certificate file  
Scott Solkhon committed
51 
      cacert: "{{ openstack_cacert }}"
wu.chunyang's avatar
add region name for tasks  
wu.chunyang committed
52 
      region_name: "{{ openstack_region_name }}"
Vikram Hosakote's avatar
Fix Magnum trustee issues  
Vikram Hosakote committed
53 
  run_once: True
Jakub Darmach's avatar
Fix Magnum role support for Ansible check mode  
Jakub Darmach committed
54 
  when: not ansible_check_mode