Infrastructure/ansible
3
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Add access to push to docker registry to compose-x86-01, Infra Ticket#5368

Browse source 
Signed-off-by: Adam Miller <admiller@redhat.com>
This commit is contained in:
Adam Miller 2016-06-24 16:55:38 +00:00
parent 38dd2cc3d1
commit 29fb2ad52f
3 changed files with 58 additions and 24 deletions
Download patch file Download diff file Expand all files Collapse all files

21
playbooks/groups/docker-registry.yml
View file

@ -91,3 +91,24 @@
}, },
when: env == "production" when: env == "production"
} }
- name: Setup compose-x86-01 push docker images to registry
hosts: compose-x86-01.phx2.fedoraproject.org
user: root
gather_facts: True
tags:
- releng-compose
roles:
- {
role: push-docker,
docker_cert_dir: "/etc/docker/certs.d/registry.stg.fedoraproject.org",
private: {{private}},
when: env == "staging"
}
- {
role: push-docker,
docker_cert_dir: "/etc/docker/certs.d/registry.fedoraproject.org",
private: {{private}},
when: env == "production"
}

38
playbooks/groups/osbs-master.yml
View file

@ -45,30 +45,6 @@
src: "{{files}}/osbs/docker-storage-setup" src: "{{files}}/osbs/docker-storage-setup"
dest: "/etc/sysconfig/docker-storage-setup" dest: "/etc/sysconfig/docker-storage-setup"
- name: install docker
action: "{{ ansible_pkg_mgr }} name=docker state=installed"
- name: ensure docker daemon cert dir exists
file:
path: "{{docker_cert_dir}}"
state: directory
- name: install docker client cert for registry
copy:
src: "{{private}}/files/koji/containerbuild.cert.pem"
dest: "{{docker_cert_dir}}/client.cert"
- name: install docker client key for registry
copy:
src: "{{private}}/files/koji/containerbuild.key.pem"
dest: "{{docker_cert_dir}}/client.key"
- name: run docker-storage-setup
shell: "docker-storage-setup"
- name: start and enable docker
service: name=docker state=started enabled=yes
- name: create cert dir for openshift public facing REST API SSL - name: create cert dir for openshift public facing REST API SSL
file: file:
path: "/etc/origin/master/named_certificates" path: "/etc/origin/master/named_certificates"
@ -94,6 +70,20 @@
src: "{{private}}/files/httpd/osbs.htpasswd" src: "{{private}}/files/httpd/osbs.htpasswd"
dest: /etc/origin/htpasswd dest: /etc/origin/htpasswd
roles:
- {
role: push-docker,
docker_cert_dir: "/etc/docker/certs.d/registry.stg.fedoraproject.org",
private: {{private}},
when: env == "staging"
}
- {
role: push-docker,
docker_cert_dir: "/etc/docker/certs.d/registry.fedoraproject.org",
private: {{private}},
when: env == "production"
}
- name: setup osbs - name: setup osbs
hosts: osbs:osbs-stg hosts: osbs:osbs-stg
vars_files: vars_files:

23
roles/push-docker/tasks/main.yml Normal file
View file

@ -0,0 +1,23 @@
---
# tasks file for push-docker
#
- name: install docker
action: "{{ ansible_pkg_mgr }} name=docker state=installed"
- name: ensure docker daemon cert dir exists
file:
path: "{{docker_cert_dir}}"
state: directory
- name: install docker client cert for registry
copy:
src: "{{private}}/files/koji/containerbuild.cert.pem"
dest: "{{docker_cert_dir}}/client.cert"
- name: install docker client key for registry
copy:
src: "{{private}}/files/koji/containerbuild.key.pem"
dest: "{{docker_cert_dir}}/client.key"
- name: start and enable docker
service: name=docker state=started enabled=yes