starlingx/ansible-playbooks
Code Issues Proposed changes
StarlingX Ansible Playbooks
931 Commits 15 Branches 11 Tags 29 MiB
Jinja 82.5%
Python 13.6%
Shell 3.9%
1a1ac09dfd
Go to file
Rei Oliveira 1a1ac09dfd Add openldap certificate creation to bootstrap.yml 
This change adds the openldap certificate creation process to the
bootstrap.yml playbook. It also adds support for updating it to
the migrate_platform_certificates_to_certmanager playbook.

This change is also renaming the kubernetes Root CA's common name to
starlingx, so that it can be used as the system_local_ca clusterIssuer
which will be used as the Issuer of the openldap certificate.

Test Plan:
PASS: Run the bootstrap playbook and verify that it is able to create
      the openldap certificate and install system_root_ca as a ssl_ca
      certificate in 'system certificate-list'
PASS  Do system unlock and verify that cert-mon is able to pick up and
      install the openldap certificate
PASS: Test migrate_platform_certificates_to_certmanager and verify that
      it is able to update the openldap certificate
PASS: On a DC system (centos only), verify that the bootstrap.yml
      playbook works for 'dcmanager subcloud add'
PASS: On a DC system (centos only), verify that the openldap certificate
      in not created in subclouds
PASS: Verified that the bootstrap.yml playbook can be re-played
      multiple times without error
PASS: Verify remote system bootstrap for debian works

Story: 2009834
Task: 45774

Signed-off-by: Rei Oliveira <Reinildes.JoseMateusOliveira@windriver.com>
Change-Id: Ie4c37026c9d5d4864dfea6fff3f066f3735c9fe2
2022-08-02 15:41:21 -03:00
examples Add openldap certificate creation to bootstrap.yml 2022-08-02 15:41:21 -03:00
playbookconfig Add openldap certificate creation to bootstrap.yml 2022-08-02 15:41:21 -03:00
.ansible-lint Fix zuul failures from new release of ansible-lint 2020-08-18 10:49:30 -05:00
.gitignore Fixing up tox -e cover for stx-config 2018-12-20 08:53:15 -06:00
.gitreview Added .gitreview 2019-06-15 14:03:07 -05:00
.yamllint Enable yamllint for ansible playbook .yml files 2019-06-24 13:27:26 -05:00
.zuul.yaml Enable bandit for ansible-playbooks 2021-06-09 14:11:38 +08:00
centos_build_layer.cfg Build layering, add layer build config file 2019-10-15 19:47:15 +08:00
centos_iso_image.inc Fix remote bootstrap from Windows control host 2019-07-09 17:28:06 -04:00
centos_pkg_dirs Clean up repo import 2019-06-15 14:21:19 -05:00
CONTRIBUTORS.wrs Clean up repo import 2019-06-15 14:21:19 -05:00
debian_build_layer.cfg Add debian_build_layer.cfg file 2021-10-05 14:04:06 -04:00
debian_iso_image.inc Add debian_iso_image.inc file 2021-10-27 01:56:02 -04:00
debian_pkg_dirs Add debian package for playbookconfig 2021-09-29 18:32:15 +03:00
LICENSE Clean up repo import 2019-06-15 14:21:19 -05:00
README.rst Set master branch SW_VERSION to 20.01 2019-12-03 10:11:35 -05:00
test-requirements.txt Fix tox ansible lint failure due to a new module 2022-01-10 11:04:20 -06:00
tox.ini Enable bandit for ansible-playbooks 2021-06-09 14:11:38 +08:00

README.rst

stx-ansible-playbooks

StarlingX Bootstrap and Deployment Playbooks

Execution environment

  • Unix like OS (recent Linux based distributions, MacOS, Cygwin)
  • Python 2.7

Additional Required Packages

The playbooks in this repo have been verified with the following versions of Ansible and StarlingX playbooks dependencies:

  • sshpass 1.06
  • python2-ptyprocess 0.5
  • python2-pexpect 4.6
  • python2-netaddr 0.7
  • ansible 2.7.5

Supported StarlingX Releases

The playbooks in this repo are compatible with the following StarlingX releases:

  • 20.01

Executing StarlingX Playbooks

Executing Bootstrap Playbook

Please refer to StarlingX Deployment Guides, section Configuration controller-0 of the respective system configuration for instructions on how to set up and execute the bootstrap playbook from another host.

References