106 lines
3.6 KiB
YAML
106 lines
3.6 KiB
YAML
---
|
|
- name: Fail when the storage driver is invalid
|
|
fail:
|
|
msg: >
|
|
Storage driver {{ docker_storage_driver }} is invalid. Valid drivers
|
|
include 'devicemapper' and 'overlay'.
|
|
when: docker_storage_driver not in ['devicemapper', 'overlay']
|
|
|
|
- name: Set a fact about the virtualenv on the remote system
|
|
set_fact:
|
|
virtualenv: "{{ ansible_python_interpreter | dirname | dirname }}"
|
|
when:
|
|
- ansible_python_interpreter is defined
|
|
- not ansible_python_interpreter.startswith('/bin/')
|
|
- not ansible_python_interpreter.startswith('/usr/bin/')
|
|
|
|
- name: Ensure docker SDK for python is installed
|
|
pip:
|
|
name: docker
|
|
state: latest
|
|
virtualenv: "{{ virtualenv is defined | ternary(virtualenv, omit) }}"
|
|
become: "{{ virtualenv is not defined }}"
|
|
|
|
- name: Ensure user is in the docker group
|
|
user:
|
|
name: "{{ ansible_user_id }}"
|
|
groups: docker
|
|
append: yes
|
|
register: group_result
|
|
become: True
|
|
|
|
# After adding the user to the docker group, we need to log out and in again to
|
|
# pick up the group membership. We do this by removing the SSH ControlPersist
|
|
# connection.
|
|
|
|
# NOTE: This method does not work in Ansible 2.3, which uses a SHA1 hash of the
|
|
# connection parameters to determine the control persist socket path.
|
|
- name: Drop the persistent SSH connection to activate the new group membership
|
|
local_action:
|
|
module: shell ssh -O stop {{ cp_hostname }} -o ControlPath={{ cp_path }}
|
|
register: socket_removal
|
|
failed_when:
|
|
- socket_removal|failed
|
|
- "'No such file or directory' not in socket_removal.stderr"
|
|
with_items: "{{ play_hosts }}"
|
|
run_once: True
|
|
when:
|
|
- group_result|changed
|
|
- ansible_version | version_compare('2.3', 'lt')
|
|
vars:
|
|
cp_hostname: "{{ hostvars[item].ansible_host|default(inventory_hostname) }}"
|
|
cp_username: "{{ hostvars[item].ansible_user }}"
|
|
cp_port: "{{ hostvars[item].ansible_ssh_port|default('22') }}"
|
|
cp_path: "~/.ansible/cp/ansible-ssh-{{ cp_hostname }}-{{ cp_port }}-{{ cp_username }}"
|
|
|
|
# NOTE: For Ansible 2.3+, ideally we'd use a meta task with the
|
|
# reset_connection option but due to
|
|
# https://github.com/ansible/ansible/issues/27520 this does not work (checked
|
|
# in Ansible 2.3.2.0). Instead, we use the heavy handed method of removing all
|
|
# ansible control sockets. Limitation: if this user is running another ansible
|
|
# process, we will kill its connections.
|
|
- name: Find persistent SSH connection control sockets
|
|
local_action:
|
|
module: find
|
|
file_type: any
|
|
path: "~/.ansible/cp/"
|
|
patterns: '[a-f0-9]{10}'
|
|
use_regex: True
|
|
register: cp_sockets
|
|
run_once: True
|
|
when:
|
|
- group_result|changed
|
|
- ansible_version | version_compare('2.3', 'ge')
|
|
|
|
- name: Drop all persistent SSH connections to activate the new group membership
|
|
local_action:
|
|
module: shell ssh -O stop None -o ControlPath={{ item.path }}
|
|
with_items: "{{ cp_sockets.files }}"
|
|
run_once: True
|
|
when: not cp_sockets|skipped
|
|
|
|
- name: Ensure Docker daemon is started
|
|
service:
|
|
name: docker
|
|
state: started
|
|
become: True
|
|
|
|
- name: Query docker daemon information
|
|
command: "docker info"
|
|
register: docker_info
|
|
changed_when: False
|
|
|
|
- name: Fail when loopback-mode containers or images exist
|
|
fail:
|
|
msg: >
|
|
Not configuring docker storage in {{ docker_storage_driver }} mode as
|
|
loopback-backed containers or images exist.
|
|
when:
|
|
- "'Data loop file' in docker_info.stdout or docker_storage_driver not in docker_info.stdout"
|
|
- "'Images: 0' not in docker_info.stdout or 'Containers: 0' not in docker_info.stdout"
|
|
|
|
- include: storage.yml
|
|
when: "'Data loop file' in docker_info.stdout or docker_storage_driver not in docker_info.stdout"
|
|
|
|
- include: config.yml
|