src: /root/openrc
dest: /opt/openrc
flat: "yes"
+
+- name: Fetch haproxy.cert
+ hosts: haproxy_hosts[0]
+ max_fail_percentage: 20
+ user: root
+ tasks:
+ - fetch:
+ src: /etc/ssl/certs/haproxy.cert
+ dest: /opt/os_cacert
+ flat: "yes"
+++ /dev/null
-# #############################################################################
-# Copyright (c) 2017 HUAWEI TECHNOLOGIES CO.,LTD and others.
-#
-# All rights reserved. This program and the accompanying materials
-# are made available under the terms of the Apache License, Version 2.0
-# which accompanies this distribution, and is available at
-# http://www.apache.org/licenses/LICENSE-2.0
-# #############################################################################
----
-- name: change https to http in haproxy configuratio
- hosts: network_hosts
- gather_facts: "{{ gather_facts | default(True) }}"
- max_fail_percentage: 20
- user: root
- tasks:
- - name: change the haproxy configuration
- shell: "sed -i 's/ssl crt.*//g' /etc/haproxy/haproxy.cfg;
- sed -i 's/https$/http/g' /etc/haproxy/haproxy.cfg"
- when: openstack_service_publicuri_proto == "http"
-
- - name: restart haproxy service
- service:
- name: haproxy
- state: restarted
- when: openstack_service_publicuri_proto == "http"
src: create-flavor.yml.j2
dest: /opt/openstack-ansible/playbooks/create-flavor.yml
-- name: copy http.yml
+- name: copy fetch-files.yml
copy:
- src: http.yml
- dest: /opt/openstack-ansible/playbooks/http.yml
-
-- name: copy fetch-openrc.yml
- copy:
- src: fetch-openrc.yml
- dest: /opt/openstack-ansible/playbooks/fetch-openrc.yml
+ src: fetch-files.yml
+ dest: /opt/openstack-ansible/playbooks/fetch-files.yml
# # Debug and Verbose options.
debug: false
-openstack_service_publicuri_proto: http
haproxy_keepalived_external_vip_cidr: "{{ public_vip.ip }}/32"
haproxy_keepalived_internal_vip_cidr: "10.1.0.22/32"
haproxy_keepalived_external_interface: br-vlan
cd /opt/openstack-ansible/playbooks; \
openstack-ansible create-flavor.yml > /dev/null"
-- name: change https to http
- shell: "export ANSIBLE_LOG_PATH=/var/ansible/run/openstack_ocata-opnfv2/ansible.log; \
- cd /opt/openstack-ansible/playbooks; \
- openstack-ansible http.yml > /dev/null"
-
- name: run ansible yml to fetch openrc
shell: "export ANSIBLE_LOG_PATH=/var/ansible/run/openstack_ocata-opnfv2/ansible.log; \
cd /opt/openstack-ansible/playbooks; \
- openstack-ansible fetch-openrc.yml > /dev/null"
+ openstack-ansible fetch-files.yml > /dev/null"
+
+- name: replace http with https in openrc
+ replace:
+ dest: /opt/openrc
+ regexp: "http://"
+ replace: "https://"
- name: replace internalURL with publicURL in openrc
replace:
Code Review / compass4nfv.git / commitdiff