swift/roles/dsvm-additional-middlewares/tasks/main.yaml

- name: Add domain_remap and etag-quoter to pipeline
  replace:
    path: "/etc/swift/proxy-server.conf"
    regexp: "cache listing_formats"
    replace: "cache domain_remap etag-quoter listing_formats"
  become: true

- name: Set domain_remap domain
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:domain_remap
    option: storage_domain
    value: example.com
  become: true

- name: Set storage_domain in test.conf (for Keystone tests)
  ini_file:
    path: /etc/swift/test.conf
    section: func_test
    option: storage_domain
    value: example.com
  become: true

- name: Turn off s3_acl_tests_enabled in test.conf (for Keystone tests)
  ini_file:
    path: /etc/swift/test.conf
    section: s3api_test
    option: s3_acl_tests_enabled
    value: false
  become: true

- name: Set storage_domain in test/sample.conf (for tempauth tests)
  ini_file:
    path: "{{ ansible_env.HOME }}/{{ zuul.project.src_dir }}/../swift/test/sample.conf"
    section: func_test
    option: storage_domain
    value: example.com
  become: true

- name: Turn off s3_acl_tests_enabled in test/sample.conf (for tempauth tests)
  ini_file:
    path: "{{ ansible_env.HOME }}/{{ zuul.project.src_dir }}/../swift/test/sample.conf"
    section: s3api_test
    option: s3_acl_tests_enabled
    value: false
  become: true

- name: Enable object versioning
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:versioned_writes
    option: allow_object_versioning
    value: true
  become: true

- name: Configure s3api force_swift_request_proxy_log
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3api
    option: force_swift_request_proxy_log
    value: true
  become: true

- name: "Configure s3token: auth_url"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: auth_url
    value: http://localhost/identity
  become: true

- name: "Configure s3token: project_domain_name"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: project_domain_name
    value: Default
  become: true

- name: "Configure s3token: project_name"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: project_name
    value: service
  become: true

- name: "Configure s3token: user_domain_name"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: user_domain_name
    value: Default
  become: true

- name: "Configure s3token: username"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: username
    value: swift
  become: true

- name: "Configure s3token: password"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: password
    value: secretservice
  become: true

- name: "Configure s3token: auth_type"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: auth_type
    value: password
  become: true

- name: "Configure s3token: interface"
  ini_file:
    path: /etc/swift/proxy-server.conf
    section: filter:s3token
    option: interface
    value: public
  become: true

- name: Copy ring for Policy-1
  copy:
    remote_src: true
    src: /etc/swift/object.ring.gz
    dest: /etc/swift/object-1.ring.gz
  become: true

- name: Add Policy-1 to swift.conf
  ini_file:
    path: /etc/swift/swift.conf
    section: storage-policy:1
    option: name
    value: Policy-1
  become: true

- name: Restart service to pick up config changes
  command: systemctl restart devstack@s-{{ item }}.service
  become: true
  with_items:
    - proxy
    - account
    - container
    - object