tripleo-validations/roles/tls_everywhere/tasks/prep.yaml

46 lines
1.6 KiB
YAML

---
- name: Ensure we get needed facts
setup:
gather_subset:
- '!all'
- '!any'
- '!min'
- env
- name: Verify that nameservers are set in undercloud.conf
become: true
validations_read_ini:
path: "{{ ansible_env.HOME }}/undercloud.conf"
section: DEFAULT
key: undercloud_nameservers
ignore_missing_file: false
register: undercloud_nameservers
check_mode: false
- name: Check that nameservers point to IdM/FreeIPA
set_fact:
undercloud_conf_dns_query: "{{ lookup('dig', 'ipa-ca', '@{{ item }}') }}"
loop: "{{ undercloud_nameservers.value.split(',') }}"
when: undercloud_nameservers.value | length > 0 and undercloud_nameservers.value != []
- name: Set facts undercloud.conf DNS is not configured
set_fact:
undercloud_conf_dns_status: "{{ helper_status_error }}"
undercloud_conf_dns_reason: "DNS is not set up correctly in undercloud.conf"
undercloud_conf_dns_recommendations:
- "Please set the 'undercloud_nameservers' parameter to point to IdM/FreeIPA in undercloud.conf"
when: undercloud_conf_dns_query|default('NXDOMAIN') == "NXDOMAIN"
- name: Set facts undercloud.conf DNS is configured
set_fact:
undercloud_conf_dns_status: "{{ helper_status_ok }}"
undercloud_conf_dns_reason: "DNS is set up correctly in undercloud.conf"
undercloud_conf_dns_recommendations: null
when: undercloud_conf_dns_query|default('NXDOMAIN') != "NXDOMAIN"
- name: Report on DNS setup in undercloud.conf check
reportentry:
report_status: "{{ undercloud_conf_dns_status }}"
report_reason: "{{ undercloud_conf_dns_reason }}"
report_recommendations: "{{ undercloud_conf_dns_recommendations }}"