102 lines
2.5 KiB
YAML
102 lines
2.5 KiB
YAML
---
|
|
- import_playbook: "/srv/web/infra/ansible/playbooks/include/virt-create.yml"
|
|
vars:
|
|
myhosts: "pkgs_stg:pkgs"
|
|
|
|
- name: make the box be real
|
|
hosts: pkgs_stg:pkgs
|
|
user: root
|
|
gather_facts: true
|
|
|
|
vars_files:
|
|
- /srv/web/infra/ansible/vars/global.yml
|
|
- "/srv/private/ansible/vars.yml"
|
|
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
|
|
|
roles:
|
|
- base
|
|
- hosts
|
|
- rkhunter
|
|
- nagios_client
|
|
- ipa/client
|
|
- collectd/base
|
|
- sudo
|
|
- apache
|
|
|
|
tasks:
|
|
- name: Copy keytab
|
|
copy: src={{private}}/files/keytabs/{{env}}/pkgs
|
|
dest=/etc/httpd.keytab
|
|
owner=apache group=apache mode=0600
|
|
tags:
|
|
- krb5
|
|
|
|
- import_tasks: "{{ tasks_path }}/yumrepos.yml"
|
|
- import_tasks: "{{ tasks_path }}/motd.yml"
|
|
|
|
handlers:
|
|
- import_tasks: "{{ handlers_path }}/restart_services.yml"
|
|
|
|
- name: setup users on pkgs
|
|
hosts: pkgs_stg:pkgs
|
|
user: root
|
|
gather_facts: true
|
|
|
|
tasks:
|
|
- name: Setup pagure user
|
|
tags: pagure-user
|
|
user:
|
|
name: pagure
|
|
uid: "{{ pagure_static_uid }}"
|
|
shell: /sbin/nologin
|
|
comment: "Pagure User"
|
|
when: env == "staging"
|
|
## The above should be deleted when we rebuild pkgs02 in future.
|
|
|
|
- name: setup dist-git on the box
|
|
hosts: pkgs_stg:pkgs
|
|
user: root
|
|
gather_facts: true
|
|
|
|
vars_files:
|
|
- /srv/web/infra/ansible/vars/global.yml
|
|
- "/srv/private/ansible/vars.yml"
|
|
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
|
|
|
roles:
|
|
- gitolite/check_fedmsg_hooks
|
|
- {role: git/make_checkout_seed, when: env != "staging"}
|
|
- git/hooks
|
|
- git/checks
|
|
- clamav
|
|
- {
|
|
role: nfs/client,
|
|
when: env != "staging",
|
|
mnt_dir: '/srv/cache/lookaside',
|
|
nfs_src_dir:
|
|
'fedora_sourcecache',
|
|
# yamllint disable rule:commas
|
|
nfs_mount_opts='rw,hard,bg,intr,noatime,nodev,nosuid,sec=sys,nfsvers=3'
|
|
}
|
|
- {
|
|
role: nfs/client,
|
|
when: env == "staging" and inventory_hostname.startswith('pkgs01'),
|
|
mount_stg: true,
|
|
mnt_dir: '/srv/cache/lookaside_prod',
|
|
nfs_src_dir:
|
|
'fedora_sourcecache',
|
|
# yamllint disable rule:commas
|
|
nfs_mount_opts='ro,hard,bg,intr,noatime,nodev,nosuid,sec=sys,nfsvers=3'
|
|
}
|
|
- role: distgit/pagure
|
|
- role: distgit
|
|
tags: distgit
|
|
- {role: hosts, when: env == "staging"}
|
|
# Set up for fedora-messaging
|
|
- role: rabbit/user
|
|
username: "pagure{{ env_suffix }}"
|
|
sent_topics:
|
|
^(io\.pagure\.{{ env_short }}|org\.fedoraproject\.{{ env_short }}\.(pagure|git|logger))\..*
|
|
|
|
handlers:
|
|
- import_tasks: "{{ handlers_path }}/restart_services.yml"
|