openstack/openstack-ansible-os_cinder
Code Issues Proposed changes
Files
67bff7bec05b6c02d36a60f3dfa5f7177504c58f
openstack-ansible-os_cinder/tasks/cinder_post_install.yml
Mohammed Naser 63a7567701 Copy rootwrap.d config files in source installs only 
The rootwrap.d files are shipped directly from the distro so there
is no need to copy the locally vendored files.

Change-Id: I080a661cf52938c0fc68f635cfe8567c6eac45ec
2018-07-03 14:15:40 -04:00

79 lines
2.4 KiB
YAML
Raw Blame History

---
# Copyright 2014, Rackspace US, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
- name: Copy cinder configs
config_template:
src: "{{ item.src }}"
dest: "{{ item.dest }}"
owner: "root"
group: "{{ item.group|default(cinder_system_group_name) }}"
mode: "0640"
config_overrides: "{{ item.config_overrides }}"
config_type: "{{ item.config_type }}"
with_items:
- src: "cinder.conf.j2"
dest: "/etc/cinder/cinder.conf"
config_overrides: "{{ cinder_cinder_conf_overrides }}"
config_type: "ini"
- src: "api-paste.ini.j2"
dest: "/etc/cinder/api-paste.ini"
config_overrides: "{{ cinder_api_paste_ini_overrides }}"
config_type: "ini"
- src: "rootwrap.conf.j2"
dest: "/etc/cinder/rootwrap.conf"
config_overrides: "{{ cinder_rootwrap_conf_overrides }}"
config_type: "ini"
- src: "policy.json.j2"
dest: "/etc/cinder/policy.json-{{ cinder_venv_tag }}"
config_overrides: "{{ cinder_policy_overrides }}"
config_type: "json"
notify:
- Manage LB
- Restart cinder services
- name: Ensure cinder tgt include
lineinfile:
dest: /etc/tgt/targets.conf
line: "include /var/lib/cinder/volumes/*"
state: present
notify: Ensure tgt service restarted
when:
- "cinder_services['cinder-volume']['group'] in group_names"
- "cinder_iscsi_helper == 'tgtadm'"
- cinder_backend_lvm_inuse | bool
- name: Create nfs shares export file
template:
src: nfs_shares.j2
dest: "{{ item.value.nfs_shares_config }}"
with_dict: "{{ cinder_backends | default({}) }}"
when:
- "cinder_services['cinder-volume']['group'] in group_names"
- item.value.nfs_shares_config is defined
tags:
- cinder-nfs
- name: Drop sudoers file
template:
src: "sudoers.j2"
dest: "/etc/sudoers.d/{{ cinder_system_user_name }}_sudoers"
mode: "0440"
owner: "root"
group: "root"
- include: cinder_selinux.yml
when:
- ansible_selinux.status == "enabled"
View Git Blame Copy Permalink