c924a7652f
This patch ensures that the authorized_keys ansible module, as well as the built in "generate_ssh_keys" flag for user creation, so that we can avoid using shell out commands. Additionally, this moves the key synchronisation to use ansible variables instead of the memcache server. Change-Id: I4fe7620cae6bf68f4c0fe248cb1dfa3c24e44110 Closes-Bug: #1477494
91 lines
2.1 KiB
YAML
91 lines
2.1 KiB
YAML
---
|
|
# Copyright 2014, Rackspace US, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
# If ``repo_nginx_threads`` is unset the system will use half the number of available VCPUS to
|
|
# compute the number of api workers to use.
|
|
# repo_nginx_threads: 16
|
|
|
|
# Defines that the role will be deployed on a host machine
|
|
is_metal: true
|
|
|
|
repo_worker_connections: 1024
|
|
repo_server_name: openstack-slushee
|
|
|
|
repo_service_home_folder: /var/www
|
|
repo_service_user_name: nginx
|
|
repo_service_group_name: www-data
|
|
|
|
repo_auto_rebuild: false
|
|
|
|
repo_memcached_servers: "{% for host in groups['repo_all'] %}{{ hostvars[host]['ansible_ssh_host'] }}:{{ memcached_port }}{% if not loop.last %},{% endif %}{% endfor %}"
|
|
|
|
# If you want to regenerate the repo users SSH keys, on each run, set this var to True
|
|
# Otherwise keys will be generated on the first run and not regenerated each run.
|
|
repo_recreate_keys: False
|
|
|
|
repo_apt_packages:
|
|
- aptitude
|
|
- bridge-utils
|
|
- build-essential
|
|
- cgroup-lite
|
|
- cmake
|
|
- dmeventd
|
|
- fcgiwrap
|
|
- git-core
|
|
- iptables
|
|
- lsyncd
|
|
- lynx
|
|
- nginx-extras
|
|
- rsync
|
|
- sshpass
|
|
- tmux
|
|
- liberasurecode1
|
|
- liberasurecode-dev
|
|
- libldap2-dev
|
|
- libsasl2-dev
|
|
- libssl-dev
|
|
- libxslt1.1
|
|
- libpq-dev
|
|
- libffi-dev
|
|
- libsqlite3-dev
|
|
- libxml2-dev
|
|
- libxslt1-dev
|
|
- libkmod-dev
|
|
- libkrb5-dev
|
|
- libkmod2
|
|
- libvirt-dev
|
|
- libmysqlclient-dev
|
|
- lxc-dev
|
|
- lvm2
|
|
- python-dev
|
|
- python-software-properties
|
|
- sqlite3
|
|
- swig
|
|
- vlan
|
|
- uuid-dev
|
|
|
|
repo_pip_packages:
|
|
- cloudlib
|
|
- PyCrypto
|
|
- python-memcached
|
|
- PyYAML
|
|
- requests
|
|
- turbolift
|
|
- wheel
|
|
- yaprt
|
|
|
|
# Main web server port
|
|
repo_server_port: 8181
|