diff options
Diffstat (limited to 'roles/openshift_manageiq/tasks')
-rw-r--r-- | roles/openshift_manageiq/tasks/main.yaml | 59 |
1 files changed, 59 insertions, 0 deletions
diff --git a/roles/openshift_manageiq/tasks/main.yaml b/roles/openshift_manageiq/tasks/main.yaml new file mode 100644 index 000000000..088d0b171 --- /dev/null +++ b/roles/openshift_manageiq/tasks/main.yaml @@ -0,0 +1,59 @@ +--- +- name: Add Management Infrastructure project + oc_project: + name: management-infra + description: Management Infrastructure + +- name: Create Admin and Image Inspector Service Account + oc_serviceaccount: + name: "{{ item }}" + namespace: management-infra + state: present + with_items: + - management-admin + - inspector-admin + +- name: Create manageiq cluster role + oc_clusterrole: + name: management-infra-admin + rules: + - apiGroups: + - "" + resources: + - pods/log + verbs: + - "get" + - apiGroups: + - "" + resources: + - pods/proxy + verbs: + - "*" + +- name: Create Hawkular Metrics Admin Cluster Role + oc_clusterrole: + name: hawkular-metrics-admin + rules: + - apiGroups: + - "" + resources: + - hawkular-alerts + - hawkular-metrics + verbs: + - "*" + +- name: Configure role/user permissions + oc_adm_policy_user: + namespace: management-infra + resource_name: "{{ item.resource_name }}" + resource_kind: "{{ item.resource_kind }}" + user: "{{ item.user }}" + with_items: "{{ manage_iq_tasks }}" + +- name: Configure 3_2 role/user permissions + oc_adm_policy_user: + namespace: management-infra + resource_name: "{{ item.resource_name }}" + resource_kind: "{{ item.resource_kind }}" + user: "{{ item.user }}" + with_items: "{{manage_iq_openshift_3_2_tasks}}" |