starlingx/ansible-playbooks
Code Issues Proposed changes
1,594 Commits 16 Branches 12 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Marcelo Loebens b7c629b603 Rework platform certificates migration 
Renamed the playbook to 'update_platform_certificates.yml', to reflect
the intention behind moving forward (not only to migrate the platform
certificates to cert-manager, but to be a easy way to update the local
issuer (system-local-ca) CA certificates as well as the leaf
certificates data.

Moved the install of the RCA to the beginning of the execution, as
several validations are made in the role and it's useful to have
then fail if a problem is detected before issuing the leaf
certificates.

Updated the conditions for creating the certificates to issue the
Rest API / GUI certificate (default behavior from now onward). Fixed
the condition for having the Local OpenLDAP certificate (host role is
not subcloud).

Test plan:
PASS: Deploy a system with the feature flag enabled in the localhost
      file ('create_platform_certificates'). Apply oidc. Execute the
      playbook using the new name ('update_platform_certificates.yml')
      in 'update' and 'check' modes. Observe that it works as expected.
      Checked:
      - The provided RCA is installed as Trusted CA;
      - The resulting certificates are correct;
      - Login in Local Docker Registry is working;
      - OIDC is working as expected;
      - Horizon is working as expected;
      - OpenLDAP is working as expected.

Story: 2009811
Task: 48908

Change-Id: I9b928b1080a28bebb0362ac8d68be387bd4a67da
Signed-off-by: Marcelo Loebens <Marcelo.DeCastroLoebens@windriver.com>
2023-11-17 13:17:13 +00:00
examples
Rework platform certificates migration
2023-11-17 13:17:13 +00:00
playbookconfig
Rework platform certificates migration
2023-11-17 13:17:13 +00:00
.ansible-lint
Fix zuul failures from new release of ansible-lint
2020-08-18 10:49:30 -05:00
.gitignore
Fixing up tox -e cover for stx-config
2018-12-20 08:53:15 -06:00
.gitreview
Added .gitreview
2019-06-15 14:03:07 -05:00
.yamllint
Enable yamllint for ansible playbook .yml files
2019-06-24 13:27:26 -05:00
.zuul.yaml
Fix github mirroring for this repo
2023-04-28 12:38:49 -04:00
centos_build_layer.cfg
Build layering, add layer build config file
2019-10-15 19:47:15 +08:00
centos_iso_image.inc
Fix remote bootstrap from Windows control host
2019-07-09 17:28:06 -04:00
centos_pkg_dirs
Clean up repo import
2019-06-15 14:21:19 -05:00
CONTRIBUTORS.wrs
Clean up repo import
2019-06-15 14:21:19 -05:00
debian_build_layer.cfg
Add debian_build_layer.cfg file
2021-10-05 14:04:06 -04:00
debian_iso_image.inc
Add debian_iso_image.inc file
2021-10-27 01:56:02 -04:00
debian_pkg_dirs
Add debian package for playbookconfig
2021-09-29 18:32:15 +03:00
LICENSE
Clean up repo import
2019-06-15 14:21:19 -05:00
README.rst
starlingx/ansible-playbooks README improvement
2023-07-19 12:13:55 -03:00
requirements.txt
Fix remote play for backup and restore
2022-08-17 14:51:35 -03:00
test-requirements.txt
Fix tox ansible lint failure due to a new module
2022-01-10 11:04:20 -06:00
tox.ini
Update tox.ini to work with tox 4
2022-12-26 21:52:05 +00:00

README.rst

stx-ansible-playbooks

StarlingX Bootstrap and Deployment Ansible1 Playbooks

Execution environment

  • Unix like OS (recent Linux based distributions, MacOS, Cygwin)
  • Python 3.8 and later

Additional Required Packages

In addition to the pakages listed in requirements.txt and test-requirements.txt, the following packages are required to run the playbooks remotely:

  • python3-pexpect
  • python3-ptyprocess
  • sshpass

Supported StarlingX Releases

The playbooks are compatible with StarlingX R8.0 and later.

Executing StarlingX Playbooks

Bootstrap Playbook

For instructions on how to set up and execute the bootstrap playbook from another host, please refer to the StarlingX Documentation2, at Installation Guides, section Configure controller-0 of the respective system deployment type.

Developer Notes

This repository is not intended to be developed standalone, but rather as part of the StarlingX Source System, which is defined by the StarlingX manifest3.

References

  1. https://docs.ansible.com/ansible/latest/installation_guide↩︎

  2. https://docs.starlingx.io↩︎

  3. https://opendev.org/starlingx/manifest.git↩︎

Description
StarlingX Ansible Playbooks
Readme 30 MiB
Languages
Jinja 81.2%
Python 13.5%
Shell 5.2%