From 17c6b4c5da76ecff6f8c68254ab6424d0d9a736e Mon Sep 17 00:00:00 2001 From: Jhon Honce Date: Fri, 12 Jun 2015 11:19:29 -0700 Subject: Infrastructure - Set OpenShift Registry * TODO: update to secure when 'add volume' feature available in origin --- roles/openshift_node/tasks/main.yml | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/roles/openshift_node/tasks/main.yml b/roles/openshift_node/tasks/main.yml index c5202650f..7dd76e0b8 100644 --- a/roles/openshift_node/tasks/main.yml +++ b/roles/openshift_node/tasks/main.yml @@ -56,6 +56,17 @@ notify: - restart openshift-node +- stat: path=/etc/sysconfig/docker + register: docker_check + + # TODO: Enable secure registry when code available in origin +- name: Secure OpenShift Registry + lineinfile: + dest: /etc/sysconfig/docker + regexp: '^OPTIONS=.*' + line: "OPTIONS='--insecure-registry=172.30.0.0/16 --selinux-enabled'" + when: docker_check.stat.isreg + - name: Allow NFS access for VMs seboolean: name=virt_use_nfs state=yes persistent=yes -- cgit v1.2.3