126 lines
3.6 KiB
YAML
126 lines
3.6 KiB
YAML
---
|
|
# Copyright 2014, Rackspace US, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
- name: Install EPEL, and yum priorities plugin
|
|
package:
|
|
name: "{{ openstack_host_required_distro_packages }}"
|
|
state: "{{ openstack_hosts_package_state }}"
|
|
tags:
|
|
- openstack-yum-packages
|
|
- openstack-packages
|
|
|
|
# Copy all factored-in GPG keys.
|
|
# KeyID 764429E6 from https://raw.githubusercontent.com/rdo-infra/centos-release-openstack/ocata-rdo/RPM-GPG-KEY-CentOS-SIG-Cloud
|
|
# KeyID 61E8806C from keyserver for rdo-qemu-ev
|
|
- name: Copy validated GPG keys
|
|
copy:
|
|
src: "gpg/{{ item | basename }}"
|
|
dest: /etc/pki/rpm-gpg/
|
|
mode: '0644'
|
|
with_fileglob:
|
|
- "gpg/*"
|
|
|
|
- name: Ensure GPG keys have the correct SELinux contexts applied
|
|
command: restorecon -Rv /etc/pki/rpm-gpg/
|
|
|
|
# Handle gpg keys manually
|
|
- name: Install gpg keys
|
|
rpm_key:
|
|
key: "{{ key.keyfile | default(key.key) }}"
|
|
validate_certs: "{{ key.validate_certs | default(omit) }}"
|
|
state: "{{ key.state | default('present') }}"
|
|
with_items: "{{ openstack_host_rdo_repos_keys }}"
|
|
loop_control:
|
|
loop_var: key
|
|
register: _add_yum_keys
|
|
until: _add_yum_keys | success
|
|
retries: 5
|
|
delay: 2
|
|
|
|
- name: Check for existing yum repositories
|
|
shell: "yum-config-manager | grep 'repo:'"
|
|
register: existing_yum_repos
|
|
tags:
|
|
- openstack-yum-packages
|
|
- openstack-packages
|
|
|
|
- name: Add yum repositories if they do not exist
|
|
yum_repository:
|
|
name: "{{ item.name }}"
|
|
description: "{{ item.description }}"
|
|
baseurl: "{{ item.baseurl }}"
|
|
file: "{{ item.file }}"
|
|
gpgcheck: "{{ item.gpgcheck }}"
|
|
enabled: "{{ item.enabled }}"
|
|
with_items:
|
|
- "{{ openstack_host_rdo_repos }}"
|
|
when:
|
|
- item.name not in existing_yum_repos.stdout
|
|
tags:
|
|
- openstack-yum-packages
|
|
- openstack-packages
|
|
|
|
- name: Update yum repositories if they already exist
|
|
command: >
|
|
yum-config-manager
|
|
--enable {{ item.name }}
|
|
{% for key in item.keys() if key != 'file' %}
|
|
--setopt="{{ item.name }}.{{ key }}={{ item[key] }}"
|
|
{% endfor %}
|
|
with_items:
|
|
- "{{ openstack_host_rdo_repos }}"
|
|
when:
|
|
- item.name in existing_yum_repos.stdout
|
|
tags:
|
|
- openstack-yum-packages
|
|
- openstack-packages
|
|
|
|
- name: Enable and set repo priorities
|
|
command: >
|
|
yum-config-manager
|
|
{% for repo_priority in openstack_host_repo_priorities %}
|
|
--enable {{ repo_priority['name'] }} \
|
|
--setopt="{{ repo_priority['name'] }}.priority={{ repo_priority['priority'] }}"
|
|
{% endfor %}
|
|
changed_when: false
|
|
tags:
|
|
- openstack-yum-packages
|
|
- openstack-packages
|
|
|
|
- name: Remove conflicting distro packages
|
|
package:
|
|
name: "{{ openstack_host_distro_packages_remove | default([]) }}"
|
|
state: absent
|
|
|
|
- name: Install distro packages
|
|
package:
|
|
pkg: "{{ openstack_host_distro_packages }}"
|
|
state: "{{ openstack_hosts_package_state }}"
|
|
register: install_packages
|
|
until: install_packages | success
|
|
retries: 5
|
|
delay: 2
|
|
tags:
|
|
- openstack-yum-packages
|
|
- openstack-packages
|
|
|
|
- name: Disable requiretty for root sudo on centos
|
|
template:
|
|
dest: /etc/sudoers.d/openstack-ansible
|
|
owner: root
|
|
group: root
|
|
mode: "0440"
|
|
src: sudoers.j2
|