--- # Copyright 2014, Rackspace US, Inc. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # WARNING: # This file is maintained in the openstack-ansible-tests repository. # https://opendev.org/openstack/openstack-ansible-tests/src/sync/tasks/service_setup.yml # If you need to modify this file, update the one in the openstack-ansible-tests # repository. Once it merges there, the changes will automatically be proposed to # all the repositories which use it. # We set the python interpreter to the ansible runtime venv if # the delegation is to localhost so that we get access to the # appropriate python libraries in that venv. If the delegation # is to another host, we assume that it is accessible by the # system python instead. - name: Setup the OS service delegate_to: "{{ _service_setup_host }}" vars: ansible_python_interpreter: "{{ _service_setup_host_python_interpreter }}" block: - name: Add service project os_project: cloud: default state: present name: "{{ _project_name }}" description: "{{ _project_description | default('') }}" domain_id: "default" endpoint_type: admin validate_certs: "{{ (not _service_adminuri_insecure | default('True')) | bool }}" register: add_service when: - not _service_in_ldap | bool - _project_name is defined until: add_service is success retries: 5 delay: 10 - name: Add services to the keystone service catalog os_keystone_service: cloud: default state: "{{ item.state | default('present') }}" name: "{{ item.name }}" service_type: "{{ item.type }}" description: "{{ item.description | default('') }}" endpoint_type: admin validate_certs: "{{ (not _service_adminuri_insecure | default('True')) | bool }}" register: add_service with_items: "{{ _service_catalog }}" when: _service_catalog is defined until: add_service is success retries: 5 delay: 10 - name: Add default role os_keystone_role: cloud: default state: present name: "{{ _role_name }}" endpoint_type: admin validate_certs: "{{ (not _service_adminuri_insecure | default('True')) | bool }}" register: add_service when: - not _service_in_ldap | bool - _role_name is defined until: add_service is success retries: 5 delay: 10 - name: Add service user os_user: cloud: default state: present name: "{{ _service_user_name }}" password: "{{ _service_user_password }}" domain: default default_project: "{{ _service_project_name }}" endpoint_type: admin validate_certs: "{{ (not _service_adminuri_insecure | default('True')) | bool }}" register: add_service when: - not _service_in_ldap | bool - _service_user_name is defined - _service_user_password is defined until: add_service is success retries: 5 delay: 10 no_log: True - name: Add service user to admin role os_user_role: cloud: default state: present user: "{{ _service_user_name }}" role: "{{ _service_role_name }}" project: "{{ _service_project_name }}" endpoint_type: admin validate_certs: "{{ (not _service_adminuri_insecure | default('True')) | bool }}" register: add_service when: - not _service_in_ldap | bool - _service_user_name is defined - _service_role_name is defined until: add_service is success retries: 5 delay: 10 - name: Add endpoints to keystone endpoint catalog os_keystone_endpoint: cloud: default state: "{{ item.state | default('present') }}" service: "{{ item.service }}" endpoint_interface: "{{ item.interface }}" url: "{{ item.url }}" region: "{{ _service_region | default('RegionOne') }}" endpoint_type: admin validate_certs: "{{ (not _service_adminuri_insecure | default('True')) | bool }}" register: add_service until: add_service is success retries: 5 delay: 10 with_items: "{{ _service_endpoints }}" when: _service_endpoints is defined