openstack
/
ansible-role-atos-hsm
Code Issues Proposed changes
Ansible role to manage ATOS Hardware Security Module (HSM) client software
12 Commits 9 Branches 24 Tags 218 KiB
Python 69.5%
Jinja 30.5%
Go to file
Elod Illes ebd5421c6d Disable auto-discovery for setuptools 
With the latest setuptools release (61.0.0) ansible-role-atos-hsm's
package build command (python3 setup.py sdist bdist_wheel) started to
fail:

error: Multiple top-level packages discovered in a flat-layout:
['defaults', 'handlers', 'templates', 'releasenotes'].

This issue is mentioned in setuptools bug 3197 [1], and the suggested
workaround is to disable auto-discovery by adding 'py_modules=[]' in
setup.py.

ansible-lint also released a new version (6.0.0), which has new rules
that blocks the gate. As a workaround, this patch caps ansible-lint
version <6.0.0 to unblock the gate.

[1] https://github.com/pypa/setuptools/issues/3197

Change-Id: I3f827b3ed855ff46292dee7b21b74a622adc472d
(cherry picked from commit f5c86dff4e)
(cherry picked from commit 6a028735e1)
 		2023-09-25 13:26:20 -04:00
defaults Document role variables and defaults 2019-01-11 12:12:26 -06:00
handlers Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
releasenotes/notes Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
tasks Fix linter 2021-01-12 09:07:20 -07:00
templates Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
zuul.d Add gate config 2019-03-05 23:37:52 -06:00
.ansible-lint Fix linter 2021-01-12 09:07:20 -07:00
.gitreview Update .gitreview for stable/xena 2021-09-15 16:45:33 +00:00
AUTHORS Add AUTHORS file. 2019-01-04 11:13:55 -06:00
LICENSE Initial commit 2019-01-04 10:51:40 -06:00
README.rst Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
requirements.txt Add files for Python build 2019-01-04 15:22:03 -05:00
setup.cfg setup.cfg: Replace dashes with underscores 2021-05-04 07:39:29 +00:00
setup.py Disable auto-discovery for setuptools 2023-09-25 13:26:20 -04:00
test-requirements.txt Disable auto-discovery for setuptools 2023-09-25 13:26:20 -04:00
tox.ini Add gate config 2019-03-05 23:37:52 -06:00
vars.yaml.sample Add HA (load balancing) support 2020-02-04 09:48:42 -06:00

README.rst

atos-hsm

A role to manage ATOS Hardware Security Module (HSM) client software.

Role Variables

Name Default Value Description
atos_client_working_dir /tmp/atos_client_install Working directory in the target host.
atos_client_iso_name None Filename for the ATOS Client Software ISO.
atos_client_iso_location None Full URL where a copy of ATOS Client ISO can be downloaded.
atos_client_cert_location None Full URL where the client certificate can be downloaded.
atos_client_key_location None Full URL where the client key can be downloaded.
atos_hsms None List of one or more HSM devices.

Requirements

  • ansible >= 2.4

Usage

You'll need to set up a temporary HTTP server somewhere that is accessible to the node where this role will be applied. The HTTP server should serve the following:

  • ATOS Client Software ISO file.
  • HSM Server Certificate file(s).
  • HSM Client Certificate file.
  • HSM Client Key file associated with the Client Certificate.

Due to the sensitive nature of the Certificate and Key files, you should use TLS encryption and username and passwords to access the HTTP server.

Use the hostname and user/password for your HTTP server for the full URL values that need to be set for this role. See vars.yaml.example.