blob: 37a30d019cfe8c3c1fe6f23309fd1f2e1e0c2cd1 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
|
---
- name: Set node sdn OpenShift facts
openshift_facts:
role: 'node_sdn'
local_facts:
debug_level: "{{ openshift_node_sdn_debug_level | default(openshift.common.debug_level) }}"
- name: Install openshift-sdn-node
yum:
pkg: openshift-sdn-node
state: installed
register: install_result
- name: Reload systemd units
command: systemctl daemon-reload
when: install_result | changed
# TODO: we are specifying -hostname= for OPTIONS as a workaround for
# openshift-sdn-node not properly detecting the hostname.
# TODO: we should probably generate certs specifically for sdn
- name: Configure openshift-sdn-node settings
lineinfile:
dest: /etc/sysconfig/openshift-sdn-node
regexp: "{{ item.regex }}"
line: "{{ item.line }}"
backrefs: yes
with_items:
- regex: '^(OPTIONS=)'
line: '\1"-v={{ openshift.node_sdn.debug_level }} -hostname={{ openshift.common.hostname }}
-etcd-cafile={{ openshift_node_cert_dir }}/ca.crt
-etcd-certfile={{ openshift_node_cert_dir }}/client.crt
-etcd-keyfile={{ openshift_node_cert_dir }}/client.key\"'
- regex: '^(MASTER_URL=)'
line: '\1"{{ openshift_sdn_master_url }}"'
- regex: '^(MINION_IP=)'
line: '\1"{{ openshift.common.ip }}"'
notify: restart openshift-sdn-node
- name: Ensure we aren't setting DOCKER_OPTIONS in /etc/sysconfig/openshift-sdn-node
lineinfile:
dest: /etc/sysconfig/openshift-sdn-node
regexp: '^DOCKER_OPTIONS='
state: absent
notify: restart openshift-sdn-node
# TODO lock down the insecure-registry config to a more sane value than
# 0.0.0.0/0
- name: Configure docker insecure-registry setting
lineinfile:
dest: /etc/sysconfig/docker
regexp: INSECURE_REGISTRY=
line: INSECURE_REGISTRY='--insecure-registry=0.0.0.0/0'
notify: restart openshift-sdn-node
- name: Start and enable openshift-sdn-node
service:
name: openshift-sdn-node
enabled: yes
state: started
|