summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-07-27a-o-i: write missing openshift_node_labelsdkorn
2016-07-27Merge pull request #2228 from smunilla/arbitrary_host_varsScott Dodson
a-o-i: Support for arbitrary host-level variables
2016-07-27Merge pull request #1861 from jpic/beautiful_outputScott Dodson
Beautiful -v output from ansible
2016-07-27Merge pull request #2226 from smunilla/general_inventory_varsScott Dodson
a-o-i: Move inventory vars to the correct location
2016-07-27a-o-i: Support for arbitrary host-level variablesSamuel Munilla
This allows the user to set a block containing any variables they want to set per-host instead of per-role.
2016-07-27Merge pull request #963 from ibotty/rpm_q-moduleScott Dodson
add rpm_q module to query rpm database
2016-07-27Beautiful -v output from ansiblejpic
When supporting openshift-ansible, users share pastes like:: TASK: [openshift_serviceaccounts | Grant the user access to the privileged scc] *** changed: [li1491-86.members.linode.com] => (item=['router', {'cmd': ['oc', 'get', 'scc', 'privileged', '-o', 'yaml'], 'end': '2016-05-05 13:31:50.216857', 'stderr': u'', 'stdout': 'allowHostDirVolumePlugin: true\nallowHostIPC: true\nallowHostNetwork: true\nallowHostPID: true\nallowHostPorts: true\nallowPrivilegedContainer: true\nallowedCapabilities: null\napiVersion: v1\ndefaultAddCapabilities: null\nfsGroup:\n type: RunAsAny\ngroups:\n- system:cluster-admins\n- system:nodes\nkind: SecurityContextConstraints\nmetadata:\n annotations:\n kubernetes.io/description: \'privileged allows access to all privileged and host\n features and the ability to run as any user, any group, any fsGroup, and with\n any SELinux context. WARNING: this is the most relaxed SCC and should be used\n only for cluster administration. Grant with caution.\'\n creationTimestamp: 2016-05-05T13:30:06Z\n name: privileged\n resourceVersion: "371"\n selfLink: /api/v1/securitycontextconstraints/privileged\n uid: 7ae22005-12c5-11e6-9bc5-06174e73e52a\npriority: null\nreadOnlyRootFilesystem: false\nrequiredDropCapabilities: null\nrunAsUser:\n type: RunAsAny\nseLinuxContext:\n type: RunAsAny\nsupplementalGroups:\n type: RunAsAny\nusers:\n- system:serviceaccount:openshift-infra:build-controller\n- system:serviceaccount:management-infra:management-admin\n- system:serviceaccount:management-infra:inspector-admin\nvolumes:\n- \'*\'', 'item': 'privileged', 'changed': False, 'rc': 0, 'failed': False, 'warnings': [], 'delta': '0:00:00.264340', 'invocation': {'module_name': u'command', 'module_complex_args': {}, 'module_args': u'oc get scc privileged -o yaml'}, 'stdout_lines': ['allowHostDirVolumePlugin: true', 'allowHostIPC: true', 'allowHostNetwork: true', 'allowHostPID: true', 'allowHostPorts: true', 'allowPrivilegedContainer: true', 'allowedCapabilities: null', 'apiVersion: v1', 'defaultAddCapabilities: null', 'fsGroup:', ' type: RunAsAny', 'groups:', '- system:cluster-admins', '- system:nodes', 'kind: SecurityContextConstraints', 'metadata:', ' annotations:', " kubernetes.io/description: 'privileged allows access to all privileged and host", ' features and the ability to run as any user, any group, any fsGroup, and with', ' any SELinux context. WARNING: this is the most relaxed SCC and should be used', " only for cluster administration. Grant with caution.'", ' creationTimestamp: 2016-05-05T13:30:06Z', ' name: privileged', ' resourceVersion: "371"', ' selfLink: /api/v1/securitycontextconstraints/privileged', ' uid: 7ae22005-12c5-11e6-9bc5-06174e73e52a', 'priority: null', 'readOnlyRootFilesystem: false', 'requiredDropCapabilities: null', 'runAsUser:', ' type: RunAsAny', 'seLinuxContext:', ' type: RunAsAny', 'supplementalGroups:', ' type: RunAsAny', 'users:', '- system:serviceaccount:openshift-infra:build-controller', '- system:serviceaccount:management-infra:management-admin', '- system:serviceaccount:management-infra:inspector-admin', 'volumes:', "- '*'"], 'failed_when_result': False, 'start': '2016-05-05 13:31:49.952517'}]) changed: [li1491-86.members.linode.com] => (item=['registry', {'cmd': ['oc', 'get', 'scc', 'privileged', '-o', 'yaml'], 'end': '2016-05-05 13:31:50.216857', 'stderr': u'', 'stdout': 'allowHostDirVolumePlugin: true\nallowHostIPC: true\nallowHostNetwork: true\nallowHostPID: true\nallowHostPorts: true\nallowPrivilegedContainer: true\nallowedCapabilities: null\napiVersion: v1\ndefaultAddCapabilities: null\nfsGroup:\n type: RunAsAny\ngroups:\n- system:cluster-admins\n- system:nodes\nkind: SecurityContextConstraints\nmetadata:\n annotations:\n kubernetes.io/description: \'privileged allows access to all privileged and host\n features and the ability to run as any user, any group, any fsGroup, and with\n any SELinux context. WARNING: this is the most relaxed SCC and should be used\n only for cluster administration. Grant with caution.\'\n creationTimestamp: 2016-05-05T13:30:06Z\n name: privileged\n resourceVersion: "371"\n selfLink: /api/v1/securitycontextconstraints/privileged\n uid: 7ae22005-12c5-11e6-9bc5-06174e73e52a\npriority: null\nreadOnlyRootFilesystem: false\nrequiredDropCapabilities: null\nrunAsUser:\n type: RunAsAny\nseLinuxContext:\n type: RunAsAny\nsupplementalGroups:\n type: RunAsAny\nusers:\n- system:serviceaccount:openshift-infra:build-controller\n- system:serviceaccount:management-infra:management-admin\n- system:serviceaccount:management-infra:inspector-admin\nvolumes:\n- \'*\'', 'item': 'privileged', 'changed': False, 'rc': 0, 'failed': False, 'warnings': [], 'delta': '0:00:00.264340', 'invocation': {'module_name': u'command', 'module_complex_args': {}, 'module_args': u'oc get scc privileged -o yaml'}, 'stdout_lines': ['allowHostDirVolumePlugin: true', 'allowHostIPC: true', 'allowHostNetwork: true', 'allowHostPID: true', 'allowHostPorts: true', 'allowPrivilegedContainer: true', 'allowedCapabilities: null', 'apiVersion: v1', 'defaultAddCapabilities: null', 'fsGroup:', ' type: RunAsAny', 'groups:', '- system:cluster-admins', '- system:nodes', 'kind: SecurityContextConstraints', 'metadata:', ' annotations:', " kubernetes.io/description: 'privileged allows access to all privileged and host", ' features and the ability to run as any user, any group, any fsGroup, and with', ' any SELinux context. WARNING: this is the most relaxed SCC and should be used', " only for cluster administration. Grant with caution.'", ' creationTimestamp: 2016-05-05T13:30:06Z', ' name: privileged', ' resourceVersion: "371"', ' selfLink: /api/v1/securitycontextconstraints/privileged', ' uid: 7ae22005-12c5-11e6-9bc5-06174e73e52a', 'priority: null', 'readOnlyRootFilesystem: false', 'requiredDropCapabilities: null', 'runAsUser:', ' type: RunAsAny', 'seLinuxContext:', ' type: RunAsAny', 'supplementalGroups:', ' type: RunAsAny', 'users:', '- system:serviceaccount:openshift-infra:build-controller', '- system:serviceaccount:management-infra:management-admin', '- system:serviceaccount:management-infra:inspector-admin', 'volumes:', "- '*'"], 'failed_when_result': False, 'start': '2016-05-05 13:31:49.952517'}]) With this patch, the json is nicely indented and std{err,out} are properly printed by default with -v.
2016-07-27Merge pull request #2219 from sdodson/portal_netScott Dodson
Document openshift_portal_net
2016-07-27a-o-i: Move inventory vars to the correct locationSamuel Munilla
Several variables such as 'deployment_type' and 'ansible_config' were being set under a variable group for the last defined role instead of under OSEv3:vars.
2016-07-27Automatic commit of package [openshift-ansible] release [3.3.3-1].Troy Dawson
2016-07-26Document openshift_portal_netScott Dodson
2016-07-26Merge pull request #2205 from liangxia/fix-typoScott Dodson
Fix "deloyment" typo in deployment types doc
2016-07-26Merge pull request #2213 from detiber/remove_old_metrics_roleJason DeTiberus
remove outdated openshift_cluster_metrics role
2016-07-25Merge pull request #2216 from abutcher/fix-named-certsAndrew Butcher
Fix named certificate directory path.
2016-07-25Template named certificates with_items.Andrew Butcher
2016-07-25Replace master_cert_config_dir with common config_base fact.Andrew Butcher
2016-07-25remove outdated openshift_cluster_metrics roleJason DeTiberus
2016-07-25Fix "deloyment" typo in deployment types docliangxia
2016-07-22Merge pull request #2196 from dgoodwin/nuke-images-symlinkAndrew Butcher
Add missing nuke_images.sh symlink.
2016-07-22Add missing nuke_images.sh symlink.Devan Goodwin
2016-07-21Merge pull request #2194 from smunilla/persist_rolesScott Dodson
a-o-i: Persist Roles Variables
2016-07-21a-o-i: Persist Roles VariablesSamuel Munilla
Previously, we we're saving the roles variables set during a run.
2016-07-21Merge pull request #1990 from abutcher/openshift-certificatesScott Dodson
Refactor openshift certificates roles.
2016-07-21Merge pull request #2192 from abutcher/replicasScott Dodson
Bug 1358723 - openshift_hosted_router_replicas option didn't work
2016-07-21Merge pull request #2168 from dgoodwin/container-cli-speedScott Dodson
Copy openshift binary instead of using wrapper script.
2016-07-21Default nodes matching selectors when not collected.Andrew Butcher
2016-07-21Copy openshift binaries instead of using wrapper script.Devan Goodwin
For containerized masters, we previously create a wrapper script to run the docker CLI image and clean up afterward, but this approach is much slower than having the binary on the native system. Instead we now use an ansible module to handle the logic of syncing the various OpenShift binaries and symlinks for client tools out onto the host. The module will correctly report changed if modifications were needed. Substantial speed improvement for containerized installs which requires many openshift/oc commands.
2016-07-21Merge pull request #2187 from lhuard1A/bin_cluster_libvirt_ansible_2.1Jason DeTiberus
Fix libvirt provider for Ansible 2.1.0.0
2016-07-21Merge pull request #2191 from abutcher/fix-pathScott Dodson
Correct relative include for ansible version check.
2016-07-21Correct relative include for ansible version check.Andrew Butcher
2016-07-21Fix libvirt provider for Ansible 2.1.0.0Lénaïc Huard
2016-07-20Re-arrange master and node role dependencies.Andrew Butcher
2016-07-20Refactor openshift certificates roles.Andrew Butcher
2016-07-20Merge pull request #2189 from abutcher/ansible-version-checkAndrew Butcher
Check ansible version prior to evaluating cluster hosts and groups.
2016-07-20Check ansible version prior to evaluating cluster hosts and groups.Andrew Butcher
2016-07-20Merge pull request #2170 from smunilla/unattended_required_factsScott Dodson
a-o-i: Looser facts requirements for unattended
2016-07-20Stop reporting changes when docker pull is already up to date.Devan Goodwin
2016-07-20Merge pull request #2185 from smunilla/role_varsScott Dodson
a-o-i: Write Role variable groups
2016-07-20a-o-i: Write Role variable groupsSamuel Munilla
Correct an error in the way we're writing out the variable group tags for host roles.
2016-07-20Merge pull request #2183 from dgoodwin/mismatch-msgScott Dodson
Slight modification to error when using mismatched openshift_release.
2016-07-20Merge pull request #2177 from sdodson/image-stream-syncScott Dodson
Image stream sync, add jenkinstemplate
2016-07-20Merge pull request #2181 from liangxia/fix-typoScott Dodson
fix "databcase" typo in example roles
2016-07-20Slight modification to error when using mismatched openshift_release.Devan Goodwin
2016-07-20fix "databcase" typo in example rolesliangxia
2016-07-19Merge pull request #2179 from abutcher/router-cert-contentsScott Dodson
Check router certificate contents when securing router
2016-07-19Secure router only when openshift.hosted.router.certificate.contents exists.Andrew Butcher
2016-07-19Add jenkinstemplateScott Dodson
2016-07-19Merge pull request #2175 from dgoodwin/origin-12-rpm-upgradeScott Dodson
Fix bugs with origin 1.2 rpm based upgrades.
2016-07-19Merge pull request #2178 from abutcher/nfs-group-checkScott Dodson
Test for oo_nfs_to_config in groups when determining storage host
2016-07-19Fix bugs with origin 1.2 rpm based upgrades.Devan Goodwin
generated by cgit v1.2.3 (git 2.39.1) at 2025-12-08 10:24:36 +0000