--- # Copyright 2016, Ian Cordasco # Copyright 2016, Rackspace # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. - name: Install magnum server hosts: magnum_all max_fail_percentage: 20 user: root pre_tasks: - name: Use the lxc-openstack aa profile lxc_container: name: "{{ container_name }}" container_config: - "lxc.aa_profile=lxc-openstack" delegate_to: "{{ physical_host }}" when: not is_metal | bool register: container_config tags: - lxc-aa-profile - name: Wait for container ssh wait_for: port: "22" delay: "{{ ssh_delay }}" search_regex: "OpenSSH" host: "{{ ansible_host }}" delegate_to: "{{ physical_host }}" when: > (container_config is defined and container_config | changed) or (container_extra_config is defined and container_config | changed) register: ssh_wait_check until: ssh_wait_check | success retries: 3 tags: - ssh-wait - name: Sort the rabbitmq servers dist_sort: value_to_lookup: "{{ container_name }}" ref_list: "{{ groups['magnum_all'] }}" src_list: "{{ rabbitmq_servers }}" register: servers - name: Set rabbitmq servers set_fact: rabbitmq_servers: "{{ servers.sorted_list }}" - name: Ensure the Magnum RabbitMQ virtualhost exists rabbitmq_vhost: name: "{{ magnum_rabbitmq_vhost }}" state: "present" delegate_to: "{{ groups['rabbitmq_all'][0] }}" tags: - magnum-rabbitmq - magnum-rabbitmq-vhost - magnum-rabbitmq-virtualhost - name: Ensure the Magnum RabbitMQ user exists rabbitmq_user: user: "{{ magnum_rabbitmq_userid }}" password: "{{ magnum_rabbitmq_password }}" vhost: "{{ magnum_rabbitmq_vhost }}" configure_priv: ".*" read_priv: ".*" write_priv: ".*" state: "present" delegate_to: "{{ groups['rabbitmq_all'][0] }}" tags: - magnum-rabbitmq - magnum-rabbitmq-user - name: Create Magnum's database tables mysql_db: login_user: "{{ galera_root_user }}" login_password: "{{ galera_root_password }}" login_host: "{{ magnum_galera_address }}" name: "{{ magnum_galera_database_name }}" state: "present" delegate_to: "{{ groups['galera_all'][0] }}" tags: - magnum-database-setup - magnum-db-setup - magnum-setup - name: Give Magnum database access mysql_user: login_user: "{{ galera_root_user }}" login_password: "{{ galera_root_password }}" login_host: "{{ magnum_galera_address }}" name: "{{ magnum_galera_user }}" password: "{{ magnum_galera_password }}" priv: "{{ magnum_galera_database_name }}.*:ALL" host: "{{ item }}" state: "present" delegate_to: "{{ groups['galera_all'][0] }}" with_items: - "localhost" - "%" tags: - magnum-database-setup - magnum-db-setup - magnum-setup - name: Create log dir file: path: "/openstack/log/{{ inventory_hostname }}-magnum" state: directory when: is_metal | bool tags: - magnum-logs - magnum-log-dirs - name: Create log aggregation links file: src: "/openstack/log/{{ inventory_hostname }}-magnum" dest: "/var/log/magnum" state: "link" force: "yes" when: is_metal | bool tags: - magnum-logs roles: - role: "openstack-ansible-magnum" magnum_venv_tag: "{{ openstack_release }}" magnum_venv_download_url: "{{ openstack_repo_url }}/venvs/{{ openstack_release }}/{{ ansible_distribution | lower }}/magnum-{{ openstack_release }}.tgz" tags: - "os-magnum" - { role: "openstack_openrc", tags: [ "openstack-openrc" ] } - role: "system_crontab_coordination" tags: - "system-crontab-coordination" vars: galera_address: "{{ internal_lb_vip_address }}" magnum_galera_address: "{{ internal_lb_vip_address }}" magnum_galera_database_name: magnum_service magnum_galera_user: magnum magnum_rabbitmq_userid: magnum magnum_rabbitmq_vhost: /magnum ansible_hostname: "{{ container_name }}" is_metal: "{{ properties.is_metal|default(false) }}"