39dcdeedc8
Move service to use uWSGI role instead of iternal task for uwsgi deployment. This aims to ease the maintenance of uWSGI and speedup metal deployments as the same uwsgi environment will be used across all services. Change-Id: Ie79a7ba7d62504e9e81edbb386f8e52ce0a03074
63 lines
2.2 KiB
YAML
63 lines
2.2 KiB
YAML
---
|
|
# Copyright 2014, Rackspace US, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
- name: Create the system group
|
|
group:
|
|
name: "{{ ironic_system_group_name }}"
|
|
state: "present"
|
|
system: "yes"
|
|
|
|
- name: Remove old key file(s) if found
|
|
file:
|
|
path: "{{ item }}"
|
|
state: "absent"
|
|
with_items:
|
|
- "{{ ironic_system_home_folder }}/.ssh/authorized_keys"
|
|
- "{{ ironic_system_home_folder }}/.ssh/id_rsa"
|
|
- "{{ ironic_system_home_folder }}/.ssh/id_rsa.pub"
|
|
when: ironic_recreate_keys | bool
|
|
|
|
- name: Create the ironic system user
|
|
user:
|
|
name: "{{ ironic_system_user_name }}"
|
|
group: "{{ ironic_system_group_name }}"
|
|
comment: "{{ ironic_system_comment }}"
|
|
shell: "{{ ironic_system_shell }}"
|
|
system: "yes"
|
|
createhome: "yes"
|
|
home: "{{ ironic_system_home_folder }}"
|
|
generate_ssh_key: "yes"
|
|
|
|
- name: Create ironic dir
|
|
file:
|
|
path: "{{ item.path }}"
|
|
state: directory
|
|
owner: "{{ item.owner|default(ironic_system_user_name) }}"
|
|
group: "{{ item.group|default(ironic_system_group_name) }}"
|
|
mode: "{{ item.mode|default('0755') }}"
|
|
with_items:
|
|
- { path: "/openstack/venvs", mode: "0755", owner: "root", group: "root" }
|
|
- { path: "/etc/ironic" }
|
|
- { path: "/etc/ironic/rootwrap.d" }
|
|
- { path: "/etc/sudoers.d", mode: "0750", owner: "root", group: "root" }
|
|
- { path: "/var/cache/ironic" }
|
|
- { path: "{{ ironic_system_home_folder }}" }
|
|
- { path: "{{ ironic_system_home_folder }}/.ssh", mode: "0700" }
|
|
- { path: "{{ ironic_system_home_folder }}/images" }
|
|
- { path: "{{ ironic_system_home_folder }}/master_images" }
|
|
- { path: "{{ ironic_system_home_folder }}/cache/api", mode: "0700" }
|
|
- { path: "{{ ironic_lock_path }}" }
|
|
- { path: "/var/run/ironic" }
|