Ansible role to manage ATOS Hardware Security Module (HSM) client software
Go to file
Jeremy Stanley baec445a57 Correct the tox option for skipping sdist generation
The tox option to skip source distribution building is skipsdist,
but this seems to be often misspelled skipdist instead, which gets
silently ignored and so does not take effect. Correct it
everywhere, in hopes that new projects will finally stop copying
this mistake around.

See https://tox.readthedocs.io/en/latest/config.html#conf-skipsdist
and https://github.com/tox-dev/tox/issues/1388 for details.

Change-Id: Ic982e06ed216507a8a8e2d8a09ac26cabae743dd
2023-09-22 18:25:10 +00:00
defaults Document role variables and defaults 2019-01-11 12:12:26 -06:00
handlers Unpin ansible-lint 2023-09-22 12:55:43 -04:00
releasenotes/notes Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
tasks Unpin ansible-lint 2023-09-22 12:55:43 -04:00
templates Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
zuul.d Add gate config 2019-03-05 23:37:52 -06:00
.ansible-lint Fix linter 2021-01-12 09:07:20 -07:00
.gitreview OpenDev Migration Patch 2019-04-19 19:33:14 +00:00
AUTHORS Add AUTHORS file. 2019-01-04 11:13:55 -06:00
LICENSE Initial commit 2019-01-04 10:51:40 -06:00
README.rst Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
requirements.txt Add files for Python build 2019-01-04 15:22:03 -05:00
setup.cfg setup.cfg: Replace dashes with underscores 2021-05-04 07:39:29 +00:00
setup.py Disable auto-discovery for setuptools 2022-03-26 20:17:44 +01:00
test-requirements.txt Unpin ansible-lint 2023-09-22 12:55:43 -04:00
tox.ini Correct the tox option for skipping sdist generation 2023-09-22 18:25:10 +00:00
vars.yaml.sample Add HA (load balancing) support 2020-02-04 09:48:42 -06:00

atos-hsm

A role to manage ATOS Hardware Security Module (HSM) client software.

Role Variables

Name Default Value Description
atos_client_working_dir /tmp/atos_client_install Working directory in the target host.
atos_client_iso_name None Filename for the ATOS Client Software ISO.
atos_client_iso_location None Full URL where a copy of ATOS Client ISO can be downloaded.
atos_client_cert_location None Full URL where the client certificate can be downloaded.
atos_client_key_location None Full URL where the client key can be downloaded.
atos_hsms None List of one or more HSM devices.

Requirements

  • ansible >= 2.4

Usage

You'll need to set up a temporary HTTP server somewhere that is accessible to the node where this role will be applied. The HTTP server should serve the following:

  • ATOS Client Software ISO file.
  • HSM Server Certificate file(s).
  • HSM Client Certificate file.
  • HSM Client Key file associated with the Client Certificate.

Due to the sensitive nature of the Certificate and Key files, you should use TLS encryption and username and passwords to access the HTTP server.

Use the hostname and user/password for your HTTP server for the full URL values that need to be set for this role. See vars.yaml.example.