Create manual playbooks for upgrading Copr instances
There is a problem with our current playbooks, that they can be executed automatically without us knowing about it. That is an issue particularly during release process because we can prepare new packages into infra-tags repo or bodhi and a nightly reprovision can upgrade to them outside of an outage window or any of us being prepared for it. Therefore `groups/copr-*.yml` playbooks *should not* upgrade any packages, but only ensure, that those packages are installed. For upgrade, there should be separate `manual/copr/copr-*-upgrade.yml` playbooks. Because they are located under `manual` directory, it is secured, that they can't be run automatically.
This commit is contained in:
Jakub Kadlčík
parent
8fb5f0aca9
commit
96de11a1bf
8 changed files with 86 additions and 11 deletions
|
|
@ -1,6 +1,6 @@
|
||||||
---
|
---
|
||||||
- name: upgrade copr frontend
|
- name: upgrade copr backend
|
||||||
hosts: copr-front-stg
|
hosts: copr-back-dev:copr-back-stg:copr-back
|
||||||
user: root
|
user: root
|
||||||
gather_facts: True
|
gather_facts: True
|
||||||
|
|
||||||
|
|
@ -9,12 +9,13 @@
|
||||||
- "/srv/private/ansible/vars.yml"
|
- "/srv/private/ansible/vars.yml"
|
||||||
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
||||||
|
|
||||||
roles:
|
|
||||||
- copr/frontend
|
|
||||||
|
|
||||||
tasks:
|
tasks:
|
||||||
- name: Upgrade copr-frontend package
|
- name: Upgrade copr-backend packages
|
||||||
dnf: state=latest pkg=copr-frontend
|
dnf:
|
||||||
|
state: latest
|
||||||
|
name:
|
||||||
|
- copr-backend
|
||||||
|
- copr-selinux
|
||||||
|
|
||||||
handlers:
|
handlers:
|
||||||
- import_tasks: "{{ handlers_path }}/restart_services.yml"
|
- import_tasks: "{{ handlers_path }}/restart_services.yml"
|
||||||
23
playbooks/manual/copr/copr-dist-git-upgrade.yml
Normal file
23
playbooks/manual/copr/copr-dist-git-upgrade.yml
Normal file
|
|
@ -0,0 +1,23 @@
|
||||||
|
---
|
||||||
|
- name: upgrade copr distgit
|
||||||
|
hosts: copr-dist-git-dev:copr-dist-git-stg:copr-dist-git
|
||||||
|
user: root
|
||||||
|
gather_facts: True
|
||||||
|
|
||||||
|
vars_files:
|
||||||
|
- /srv/web/infra/ansible/vars/global.yml
|
||||||
|
- "/srv/private/ansible/vars.yml"
|
||||||
|
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
||||||
|
|
||||||
|
tasks:
|
||||||
|
- name: Upgrade copr-distgit packages
|
||||||
|
dnf:
|
||||||
|
state: latest
|
||||||
|
name:
|
||||||
|
- dist-git
|
||||||
|
- dist-git-selinux
|
||||||
|
- copr-dist-git
|
||||||
|
- copr-selinux
|
||||||
|
|
||||||
|
handlers:
|
||||||
|
- import_tasks: "{{ handlers_path }}/restart_services.yml"
|
||||||
28
playbooks/manual/copr/copr-frontend-upgrade.yml
Normal file
28
playbooks/manual/copr/copr-frontend-upgrade.yml
Normal file
|
|
@ -0,0 +1,28 @@
|
||||||
|
---
|
||||||
|
- name: upgrade copr frontend
|
||||||
|
hosts: copr-front-dev:copr-front
|
||||||
|
user: root
|
||||||
|
gather_facts: True
|
||||||
|
|
||||||
|
vars_files:
|
||||||
|
- /srv/web/infra/ansible/vars/global.yml
|
||||||
|
- "/srv/private/ansible/vars.yml"
|
||||||
|
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
||||||
|
|
||||||
|
tasks:
|
||||||
|
- name: Upgrade copr-frontend packages
|
||||||
|
dnf:
|
||||||
|
state: latest
|
||||||
|
name:
|
||||||
|
- copr-frontend
|
||||||
|
- copr-selinux
|
||||||
|
|
||||||
|
- name: upgrade db to head
|
||||||
|
command: alembic-3 upgrade head
|
||||||
|
become: yes
|
||||||
|
become_user: copr-fe
|
||||||
|
args:
|
||||||
|
chdir: /usr/share/copr/coprs_frontend/
|
||||||
|
|
||||||
|
handlers:
|
||||||
|
- import_tasks: "{{ handlers_path }}/restart_services.yml"
|
||||||
23
playbooks/manual/copr/copr-keygen-upgrade.yml
Normal file
23
playbooks/manual/copr/copr-keygen-upgrade.yml
Normal file
|
|
@ -0,0 +1,23 @@
|
||||||
|
---
|
||||||
|
- name: upgrade copr keygen
|
||||||
|
hosts: copr-keygen-dev:copr-keygen-stg:copr-keygen
|
||||||
|
user: root
|
||||||
|
gather_facts: True
|
||||||
|
|
||||||
|
vars_files:
|
||||||
|
- /srv/web/infra/ansible/vars/global.yml
|
||||||
|
- "/srv/private/ansible/vars.yml"
|
||||||
|
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
||||||
|
|
||||||
|
tasks:
|
||||||
|
- name: Upgrade copr-keygen packages
|
||||||
|
dnf:
|
||||||
|
state: latest
|
||||||
|
name:
|
||||||
|
- copr-keygen
|
||||||
|
- copr-selinux
|
||||||
|
notify:
|
||||||
|
- restart haveged
|
||||||
|
|
||||||
|
handlers:
|
||||||
|
- import_tasks: "{{ handlers_path }}/restart_services.yml"
|
||||||
|
|
@ -11,7 +11,7 @@
|
||||||
|
|
||||||
- name: install copr-backend and copr-selinux
|
- name: install copr-backend and copr-selinux
|
||||||
dnf:
|
dnf:
|
||||||
state: latest
|
state: present
|
||||||
name: copr-backend
|
name: copr-backend
|
||||||
|
|
||||||
- name: add additional packages for copr-backend
|
- name: add additional packages for copr-backend
|
||||||
|
|
|
||||||
|
|
@ -21,7 +21,7 @@
|
||||||
|
|
||||||
- name: install latest dist-git and copr-dist-git
|
- name: install latest dist-git and copr-dist-git
|
||||||
dnf:
|
dnf:
|
||||||
state: latest
|
state: present
|
||||||
name:
|
name:
|
||||||
- dist-git
|
- dist-git
|
||||||
- dist-git-selinux
|
- dist-git-selinux
|
||||||
|
|
|
||||||
|
|
@ -16,7 +16,7 @@
|
||||||
|
|
||||||
- name: install copr-frontend and copr-selinux
|
- name: install copr-frontend and copr-selinux
|
||||||
dnf:
|
dnf:
|
||||||
state: latest
|
state: present
|
||||||
name:
|
name:
|
||||||
- copr-frontend
|
- copr-frontend
|
||||||
- copr-selinux
|
- copr-selinux
|
||||||
|
|
|
||||||
|
|
@ -11,7 +11,7 @@
|
||||||
#when: devel
|
#when: devel
|
||||||
|
|
||||||
- name: install copr-keygen
|
- name: install copr-keygen
|
||||||
dnf: state=latest name=copr-keygen
|
dnf: state=present name=copr-keygen
|
||||||
notify:
|
notify:
|
||||||
- restart haveged
|
- restart haveged
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue