openstack
/
tripleo-heat-templates
Code Issues Proposed changes

Add an option to disable the DNS record modification in FreeIPA 

This also fixes indentation so that it is the same as in
stable/train branch.

Change-Id: I3ad37fc2fc80c92970c569f3cd1d94833df0890c
This commit is contained in:
Grzegorz Grasza 2020-04-29 13:01:02 +02:00
parent 3304e50c45
commit 9566df9f56
1 changed files with 15 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
deployment/ipa/ipaservices-baremetal-ansible.yaml
View File

@ -63,6 +63,10 @@ parameters:
default: True default: True
description: Set to true to enroll the base server (computes, controllers) description: Set to true to enroll the base server (computes, controllers)
type: boolean type: boolean
IdMModifyDNS:
default: True
description: Set to false to disable DNS records manipulation in the FreeIPA server.
type: boolean
IdMZoneSplitIPv4: IdMZoneSplitIPv4:
default: 1 default: 1
description: The level by which the PTR DNS record is split when creating zones. description: The level by which the PTR DNS record is split when creating zones.
@ -96,6 +100,7 @@ outputs:
vars: vars:
tripleo_ipa_ptr_zone_split_ipv4: {get_param: IdMZoneSplitIPv4} tripleo_ipa_ptr_zone_split_ipv4: {get_param: IdMZoneSplitIPv4}
tripleo_ipa_ptr_zone_split_ipv6: {get_param: IdMZoneSplitIPv6} tripleo_ipa_ptr_zone_split_ipv6: {get_param: IdMZoneSplitIPv6}
when: {get_param: IdMModifyDNS}
environment: environment:
IPA_HOST: {get_param: IdMServer} IPA_HOST: {get_param: IdMServer}
IPA_USER: "nova/{{ ansible_fqdn }}" IPA_USER: "nova/{{ ansible_fqdn }}"
@ -121,17 +126,17 @@ outputs:
path: /etc/ipa/default.conf path: /etc/ipa/default.conf
register: ipa_conf_exists register: ipa_conf_exists
- block: - block:
- name: register as an ipa client - name: register as an ipa client
import_role: import_role:
name: ipaclient name: ipaclient
- name: restart certmonger service - name: restart certmonger service
systemd: systemd:
state: restarted state: restarted
daemon_reload: true daemon_reload: true
name: certmonger.service name: certmonger.service
when: when:
- idm_enroll_base_server|bool - idm_enroll_base_server|bool
- not ipa_conf_exists.stat.exists - not ipa_conf_exists.stat.exists
scale_tasks: scale_tasks:
- when: step|int == 1 - when: step|int == 1
tags: down tags: down