summaryrefslogtreecommitdiffstats
path: root/xci/playbooks/configure-opnfvhost.yml
blob: 53e3441859657d2bbb3bb001358d177e3951c679 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
---
# SPDX-license-identifier: Apache-2.0
##############################################################################
# Copyright (c) 2017 Ericsson AB and others.
# All rights reserved. This program and the accompanying materials
# are made available under the terms of the Apache License, Version 2.0
# which accompanies this distribution, and is available at
# http://www.apache.org/licenses/LICENSE-2.0
##############################################################################
- hosts: opnfv
  remote_user: root
  vars_files:
    - ../var/{{ ansible_os_family }}.yml
    - ../var/flavor-vars.yml
    - ../var/opnfv.yml
  roles:
    - role: remove-folders
    - { role: clone-repository, project: "opnfv/releng-xci", repo: "{{ OPNFV_RELENG_GIT_URL }}", dest: "{{ OPNFV_RELENG_PATH }}", version: "{{ OPNFV_RELENG_VERSION }}" }
    - { role: clone-repository, project: "openstack/openstack-ansible", repo: "{{ OPENSTACK_OSA_GIT_URL }}", dest: "{{ OPENSTACK_OSA_PATH }}", version: "{{ OPENSTACK_OSA_VERSION }}" }

- hosts: opnfv
  remote_user: root
  vars_files:
    - ../var/{{ ansible_os_family }}.yml
    - ../var/opnfv.yml
  tasks:
    - name: Synchronize local development releng-xci repository to XCI paths
      synchronize:
        src: "{{ OPNFV_RELENG_DEV_PATH }}"
        dest: "{{ OPNFV_RELENG_PATH }}"
        recursive: yes
        delete: yes
      when:
        - OPNFV_RELENG_DEV_PATH != ""
    - name: Synchronize local development openstack-ansible repository to XCI paths
      synchronize:
        src: "{{ OPENSTACK_OSA_DEV_PATH }}"
        dest: "{{ OPENSTACK_OSA_PATH }}"
        recursive: yes
        delete: yes
      when:
        - OPENSTACK_OSA_DEV_PATH != ""

- hosts: opnfv
  remote_user: root
  vars_files:
    - ../var/{{ ansible_os_family }}.yml
    - ../var/flavor-vars.yml
    - ../var/opnfv.yml
  roles:
    # TODO: this only works for ubuntu/xenial and need to be adjusted for other distros
    - { role: configure-network, when: ansible_distribution_release == "xenial", src: "../template/opnfv.interface.j2", dest: "/etc/network/interfaces" }
  tasks:
    - name: generate SSH keys
      shell: ssh-keygen -b 2048 -t rsa -f /root/.ssh/id_rsa -q -N ""
      args:
        creates: /root/.ssh/id_rsa
    - name: ensure ssh key storage directory exists
      file:
        path: "{{ OPNFV_SSH_HOST_KEYS_PATH }}"
        state: directory
    - name: fetch public key
      fetch: src="/root/.ssh/id_rsa.pub" dest="{{ OPNFV_SSH_HOST_KEYS_PATH }}"
    - name: copy flavor inventory
      shell: "/bin/cp -rf {{XCI_FLAVOR_ANSIBLE_FILE_PATH}}/inventory {{OPNFV_RELENG_PATH}}/xci/playbooks"
    - name: copy flavor vars
      shell: "/bin/cp -rf {{XCI_FLAVOR_ANSIBLE_FILE_PATH}}/flavor-vars.yml {{OPNFV_RELENG_PATH}}/xci/var"
    - name: copy openstack_deploy
      shell: "/bin/cp -rf {{OPENSTACK_OSA_PATH}}/etc/openstack_deploy {{OPENSTACK_OSA_ETC_PATH}}"
    - name: copy openstack_user_config.yml
      shell: "/bin/cp -rf {{XCI_FLAVOR_ANSIBLE_FILE_PATH}}/openstack_user_config.yml {{OPENSTACK_OSA_ETC_PATH}}"
    - name: copy user_variables.yml
      shell: "/bin/cp -rf {{XCI_FLAVOR_ANSIBLE_FILE_PATH}}/user_variables.yml {{OPENSTACK_OSA_ETC_PATH}}"
    - name: copy cinder.yml
      shell: "/bin/cp -rf {{OPNFV_RELENG_PATH}}/xci/file/cinder.yml {{OPENSTACK_OSA_ETC_PATH}}/env.d"
    # TODO: We need to get rid of this as soon as the issue is fixed upstream
    - name: change the haproxy state from disable to enable
      replace:
        dest: "{{OPENSTACK_OSA_PATH}}/playbooks/os-keystone-install.yml"
        regexp: '(\s+)haproxy_state: disabled'
        replace: '\1haproxy_state: enabled'
    - name: copy OPNFV OpenStack playbook
      shell: "/bin/cp -rf {{OPNFV_RELENG_PATH}}/xci/file/setup-openstack.yml {{OPENSTACK_OSA_PATH}}/playbooks"
    - name: copy OPNFV role requirements
      shell: "/bin/cp -rf {{OPNFV_RELENG_PATH}}/xci/file/ansible-role-requirements.yml {{OPENSTACK_OSA_PATH}}"
    - name: bootstrap ansible on opnfv host
      command: "/bin/bash ./scripts/bootstrap-ansible.sh"
      args:
        chdir: "{{OPENSTACK_OSA_PATH}}"
    - name: install python Crypto module
      package:
        name: "{{ python_crypto_package_name }}"
    - name: install PyYAML
      pip:
        name: pyyaml
        state: present
    - name: generate password token
      command: "python pw-token-gen.py --file {{OPENSTACK_OSA_ETC_PATH}}/user_secrets.yml"
      args:
        chdir: "{{OPENSTACK_OSA_PATH}}/scripts"
- hosts: localhost
  remote_user: root
  vars_files:
    - ../var/opnfv.yml
  tasks:
    - name: Generate authorized_keys
      shell: "/bin/cat {{ OPNFV_SSH_HOST_KEYS_PATH }}/opnfv/root/.ssh/id_rsa.pub >> ../file/authorized_keys"
    - name: Append public keys to authorized_keys
      shell: "/bin/cat {{ ansible_env.HOME }}/.ssh/id_rsa.pub >> ../file/authorized_keys"