diff options
| author | Ole Mathias Heggem <olemathias.aa.heggem@gmail.com> | 2023-11-23 20:14:24 +0100 |
|---|---|---|
| committer | Ole Mathias Heggem <olemathias.aa.heggem@gmail.com> | 2023-11-23 20:14:24 +0100 |
| commit | abd3fba2abb66738c9eac00d3ed86e965584e4a8 (patch) | |
| tree | e72f1a30dfec9295f0e09812d73b50c2f2a3973d | |
| parent | 09710c061d5b8ae86b3dfe49f4b8936c13a10535 (diff) | |
fix: cleanup and format ansible playbook
| -rw-r--r-- | ansible/roles/basics/tasks/main.yml | 66 | ||||
| -rw-r--r-- | ansible/roles/common/tasks/main.yml | 25 | ||||
| -rw-r--r-- | ansible/roles/influx/tasks/main.yml | 31 | ||||
| -rw-r--r-- | ansible/roles/ping/handlers/main.yml | 6 | ||||
| -rw-r--r-- | ansible/roles/ping/tasks/main.yml | 7 | ||||
| -rw-r--r-- | ansible/roles/snmp/tasks/main.yml | 18 | ||||
| -rw-r--r-- | ansible/roles/test/tasks/main.yml | 39 | ||||
| -rw-r--r-- | ansible/roles/test/vars/main.yml | 18 | ||||
| -rw-r--r-- | ansible/roles/web/handlers/main.yml | 25 | ||||
| -rw-r--r-- | ansible/roles/web/tasks/main.yml | 129 | ||||
| -rw-r--r-- | ansible/site.yml | 25 |
11 files changed, 144 insertions, 245 deletions
diff --git a/ansible/roles/basics/tasks/main.yml b/ansible/roles/basics/tasks/main.yml deleted file mode 100644 index 6a92a19..0000000 --- a/ansible/roles/basics/tasks/main.yml +++ /dev/null @@ -1,66 +0,0 @@ -- command: pwd - register: pwd - tags: - - build - - stop - - start - - test -- name: make all - docker_image: - state: present - docker_api_version: 1.18 - name: "{{ item.name }}" - dockerfile: build/test/{{ item.name }}.Dockerfile - path: "{{ pwd.stdout }}" - force: true - rm: false - with_items: "{{ images }}" - tags: - - build - -- name: stop all - docker: - name: "{{ item.name }}" - docker_api_version: 1.18 - state: stopped - image: "{{ item.name }}" - stop_timeout: 2 - with_items: "{{ images }}" - tags: - - stop - -- name: start all - docker_container: - name: "{{ item.name }}" - image: "{{ item.name }}" - docker_api_version: 1.18 - state: started - network_mode: bridge - recreate: true - restart: true - published_ports: "{{ item.ports }}" - links: "{{ item.links }}" - volumes: "{{ item.volumes }}" - with_items: "{{ images }}" - tags: - - start -- name: workaround to get gondul-varnish-front-ip - shell: "docker inspect gondul-varnish-test | grep IPAddress | sed 's/[^0-9.]//g' | grep 172.17 | uniq" - register: ip - tags: - - start - - test -- name: workaround to get gondul-front-ip - shell: "docker inspect gondul-front-test | grep IPAddress | sed 's/[^0-9.]//g' | grep 172.17 | uniq" - register: ipfront - tags: - - start - - test - -- name: Display IP - tags: - - start - - test - debug: - msg: "Varnish test is available at http://{{ ip.stdout }}/ uncached ip: http://{{ ipfront.stdout }}/ " - diff --git a/ansible/roles/common/tasks/main.yml b/ansible/roles/common/tasks/main.yml index 4c27c32..619d39f 100644 --- a/ansible/roles/common/tasks/main.yml +++ b/ansible/roles/common/tasks/main.yml @@ -1,15 +1,20 @@ - name: Install basic packages - apt: - name: [ - 'curl', - 'vim', - 'git', - 'iptables-persistent'] - state: present + ansible.builtin.apt: + name: [ + 'curl', + 'vim', + 'git', + 'iptables-persistent'] + state: present - name: Gondul-repo become: true tags: - - git-all - - git-gondul - git: repo={{ git_repo }} dest=/opt/gondul update=no accept_hostkey=yes version={{ git_branch }} + - git-all + - git-gondul + ansible.builtin.git: + repo: "{{ git_repo }}" + dest: /opt/gondul + update: false + accept_hostkey: true + version: "{{ git_branch }}"
\ No newline at end of file diff --git a/ansible/roles/influx/tasks/main.yml b/ansible/roles/influx/tasks/main.yml index fc3571c..8c5e754 100644 --- a/ansible/roles/influx/tasks/main.yml +++ b/ansible/roles/influx/tasks/main.yml @@ -1,23 +1,28 @@ - name: Install apt-packages - apt: - name: 'apt-transport-https' - state: present - -- name: Import InfluxDB GPG signing key - apt_key: url=https://repos.influxdata.com/influxdata-archive_compat.key state=present - -- name: Add InfluxDB repository - apt_repository: repo='deb https://repos.influxdata.com/{{ ansible_distribution | lower }} {{ ansible_distribution_release | lower }} stable' state=present + ansible.builtin.apt: + name: 'apt-transport-https' + state: present - name: Install InfluxDB packages - apt: name=influxdb state=present update_cache=yes + ansible.builtin.apt: + name: influxdb + state: present + update_cache: true - name: Start the InfluxDB service - service: name=influxdb state=started + ansible.builtin.service: + name: influxdb + state: started - name: Wait a few seconds for InfluxDB to start - pause: + ansible.builtin.pause: seconds: 5 +- name: Install influxdb-client + ansible.builtin.apt: + name: influxdb-client + state: present + update_cache: true + - name: Create database - command: /usr/bin/influx -execute 'CREATE DATABASE gondul' + ansible.builtin.command: /usr/bin/influx -execute 'CREATE DATABASE gondul'
\ No newline at end of file diff --git a/ansible/roles/ping/handlers/main.yml b/ansible/roles/ping/handlers/main.yml index 6592e88..d7f132b 100644 --- a/ansible/roles/ping/handlers/main.yml +++ b/ansible/roles/ping/handlers/main.yml @@ -1,3 +1,5 @@ --- -- name: restart gondul-pinger - service: name=gondul-pinger state=restarted +- name: Restart gondul-pinger + ansible.builtin.service: + name: gondul-pinger + state: restarted
\ No newline at end of file diff --git a/ansible/roles/ping/tasks/main.yml b/ansible/roles/ping/tasks/main.yml index cb435d1..b9371ad 100644 --- a/ansible/roles/ping/tasks/main.yml +++ b/ansible/roles/ping/tasks/main.yml @@ -1,10 +1,11 @@ - name: Add systemd service file for gondul-ping - copy: + ansible.builtin.copy: dest: /etc/systemd/system/gondul-pinger.service src: gondul-pinger.service notify: restart gondul-pinger + - name: Enable ping service - systemd: + ansible.builtin.systemd: name: gondul-pinger.service enabled: yes - notify: restart gondul-pinger + notify: restart gondul-pinger
\ No newline at end of file diff --git a/ansible/roles/snmp/tasks/main.yml b/ansible/roles/snmp/tasks/main.yml index 6056a25..85a88cd 100644 --- a/ansible/roles/snmp/tasks/main.yml +++ b/ansible/roles/snmp/tasks/main.yml @@ -1,25 +1,29 @@ - name: Create data directory - file: + ansible.builtin.file: path: /opt/gondul/data state: directory mode: 0755 -- name: register mibdir - stat: + +- name: Register mibdir + ansible.builtin.stat: path: /opt/gondul/data/mibs register: mibdir + - name: Get mibs - command: /opt/gondul/extras/tools/get_mibs.sh + ansible.builtin.command: /opt/gondul/extras/tools/get_mibs.sh args: chdir: /opt/gondul/data/ when: not mibdir.stat.exists notify: restart gondul-snmp + - name: Add systemd service file for gondul-snmp - copy: + ansible.builtin.copy: dest: /etc/systemd/system/gondul-snmp.service src: gondul-snmp.service notify: restart gondul-snmp + - name: Enable snmp service - systemd: + ansible.builtin.systemd: name: gondul-snmp.service enabled: yes - notify: restart gondul-snmp + notify: restart gondul-snmp
\ No newline at end of file diff --git a/ansible/roles/test/tasks/main.yml b/ansible/roles/test/tasks/main.yml deleted file mode 100644 index 798644a..0000000 --- a/ansible/roles/test/tasks/main.yml +++ /dev/null @@ -1,39 +0,0 @@ -- name: test index - tags: - - test - uri: url="http://{{ ip.stdout }}/" - -- name: test public api without data - tags: - - test - uri: - url: "http://{{ ip.stdout }}{{ item }}" - with_items: "{{ simple_urls }}" - -- name: test read api without data - uri: - url: http://{{ ip.stdout }}{{ item }} - user: demo - password: demo - with_items: "{{ read_urls }}" - tags: - - test -- name: Add some switches - tags: - - test - uri: - url: http://{{ ip.stdout }}/api/write/switch-add - method: "POST" - force_basic_auth: true - body_format: json - user: demo - password: demo - body: '[{"mgmt_v4_addr":"127.0.0.1","sysname":"core"},{"distro_name":"core","mgmt_v4_addr":"127.0.0.2","sysname":"distro0"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.3","sysname":"e1-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.4","sysname":"e1-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.5","sysname":"e3-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.6","sysname":"e3-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.7","sysname":"e5-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.8","sysname":"e5-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.9","sysname":"e7-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.10","sysname":"e7-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.11","sysname":"e9-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.12","sysname":"e9-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.14","sysname":"e11-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.15","sysname":"e11-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.16","sysname":"e13-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.17","sysname":"e13-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.18","sysname":"e15-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.19","sysname":"e15-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.20","sysname":"e17-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.21","sysname":"e17-2"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.22","sysname":"e19-1"},{"distro_name":"distro0","mgmt_v4_addr":"127.0.0.23","sysname":"e19-2"},{"distro_name":"core","mgmt_v4_addr":"127.0.0.24","sysname":"distro1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.25","sysname":"e21-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.26","sysname":"e21-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.27","sysname":"e23-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.28","sysname":"e23-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.29","sysname":"e25-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.30","sysname":"e25-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.31","sysname":"e27-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.32","sysname":"e27-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.33","sysname":"e29-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.34","sysname":"e29-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.36","sysname":"e31-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.37","sysname":"e31-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.38","sysname":"e33-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.39","sysname":"e33-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.40","sysname":"e35-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.41","sysname":"e35-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.42","sysname":"e37-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.43","sysname":"e37-2"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.44","sysname":"e39-1"},{"distro_name":"distro1","mgmt_v4_addr":"127.0.0.45","sysname":"e39-2"},{"distro_name":"core","mgmt_v4_addr":"127.0.0.46","sysname":"noc"}]' -- name: test read api after data is added - uri: - url: http://{{ ip.stdout }}{{ item }} - user: demo - password: demo - with_items: "{{ populated_urls }}" - tags: - - test diff --git a/ansible/roles/test/vars/main.yml b/ansible/roles/test/vars/main.yml deleted file mode 100644 index 0bed216..0000000 --- a/ansible/roles/test/vars/main.yml +++ /dev/null @@ -1,18 +0,0 @@ -simple_urls: - - "/api/public/switches" - - "/api/public/switch-state" - - "/api/public/ping" - - "/api/public/location" - - "/api/public/dhcp" - - "/api/public/dhcp-summary" - - "/index.html" - - "/templates/switches.txt" - - "/render/?target=carbon.agents.*.errors" -read_urls: - - "/api/read/oplog" - - "/api/read/snmp" - - "/api/read/switches-management" - - "/api/read/distro-tree" -populated_urls: - - "/api/templates/switches.txt" - diff --git a/ansible/roles/web/handlers/main.yml b/ansible/roles/web/handlers/main.yml index 77d887b..e9f8457 100644 --- a/ansible/roles/web/handlers/main.yml +++ b/ansible/roles/web/handlers/main.yml @@ -1,23 +1,22 @@ --- -- name: restart apache - systemd: +- name: Restart apache + ansible.builtin.systemd: state: restarted - daemon_reload: yes + daemon_reload: true name: apache2 -- name: restart varnish - systemd: +- name: Restart varnish + ansible.builtin.systemd: state: restarted - daemon_reload: yes + daemon_reload: true name: varnish -- name: restart gondul-template - systemd: +- name: Restart gondul-template + ansible.builtin.systemd: state: restarted - daemon_reload: yes + daemon_reload: true name: gondul-template -- name: reload systemd - systemd: - daemon_reload: yes - +- name: Reload systemd + ansible.builtin.systemd: + daemon_reload: true
\ No newline at end of file diff --git a/ansible/roles/web/tasks/main.yml b/ansible/roles/web/tasks/main.yml index 599035d..a444989 100644 --- a/ansible/roles/web/tasks/main.yml +++ b/ansible/roles/web/tasks/main.yml @@ -1,103 +1,98 @@ - name: Install front-packages - apt: - name: [ - 'libcapture-tiny-perl', - 'libcommon-sense-perl', - 'libdata-dumper-simple-perl', - 'libdbd-pg-perl', - 'libdbi-perl', - 'libdigest-perl', - 'libgd-perl', - 'libgeo-ip-perl', - 'libhtml-parser-perl', - 'libhtml-template-perl', - 'libjson-perl', - 'libjson-xs-perl', - 'libnetaddr-ip-perl', - 'libnet-cidr-perl', - 'libnet-ip-perl', - 'libnet-oping-perl', - 'libnet-rawip-perl', - 'libsnmp-perl', - 'libsocket6-perl', - 'libsocket-perl', - 'libswitch-perl', - 'libtimedate-perl', - 'perl', - 'perl-base', - 'perl-modules', - 'libfreezethaw-perl', - 'apache2', - 'libxml2-dev', - 'build-essential', - 'cpanminus', - 'apt-transport-https', - 'python3-netaddr', - 'python3-flask'] - state: present + ansible.builtin.apt: + name: [ + 'libcapture-tiny-perl', + 'libcommon-sense-perl', + 'libdata-dumper-simple-perl', + 'libdbd-pg-perl', + 'libdbi-perl', + 'libdigest-perl', + 'libgd-perl', + 'libgeo-ip-perl', + 'libhtml-parser-perl', + 'libhtml-template-perl', + 'libjson-perl', + 'libjson-xs-perl', + 'libnetaddr-ip-perl', + 'libnet-cidr-perl', + 'libnet-ip-perl', + 'libnet-oping-perl', + 'libnet-rawip-perl', + 'libsnmp-perl', + 'libsocket6-perl', + 'libsocket-perl', + 'libswitch-perl', + 'libtimedate-perl', + 'perl', + 'perl-base', + 'perl-modules', + 'libfreezethaw-perl', + 'apache2', + 'libxml2-dev', + 'build-essential', + 'cpanminus', + 'apt-transport-https', + 'python3-netaddr', + 'python3-flask'] + state: present - name: Install InfluxDB module - cpanm: + community.general.cpanm: name: AnyEvent::InfluxDB - name: Make apache listen on port 8080 - lineinfile: dest=/etc/apache2/ports.conf regexp="^Listen 80" line="Listen 8080" state=present + ansible.builtin.lineinfile: dest=/etc/apache2/ports.conf regexp="^Listen 80" line="Listen 8080" state=present notify: restart apache -- apache2_module: +- name: Add Apache2 Module + ansible.builtin.apache2_module: state: present name: cgid notify: restart apache - name: Enable gondul-config - copy: - dest: /etc/apache2/sites-enabled/gondul.conf - src: apache-virtualhost.conf + ansible.builtin.copy: + dest: /etc/apache2/sites-enabled/gondul.conf + src: apache-virtualhost.conf notify: restart apache -- command: a2dissite 000-default +- name: Disable default Apache site + ansible.builtin.command: a2dissite 000-default ignore_errors: true notify: restart apache -- name: Add packagecloud.io Varnish apt key. - apt_key: - url: https://packagecloud.io/varnishcache/varnish60lts/gpgkey - state: present - -- name: Add packagecloud.io Varnish apt repository. - apt_repository: - repo: "deb https://packagecloud.io/varnishcache/varnish60lts/{{ ansible_distribution | lower }}/ {{ ansible_distribution_release }} main" - state: present - - name: Ensure Varnish is installed. - apt: + ansible.builtin.apt: name: "varnish" state: present - name: Ensure folder varnish.service.d exists - file: path=/etc/systemd/system/varnish.service.d/ state=directory mode=0755 + ansible.builtin.file: + path: /etc/systemd/system/varnish.service.d/ + state: directory + mode: 0755 - name: Change varnish service.d - copy: - dest: /etc/systemd/system/varnish.service.d/customexec.conf - src: varnish.service + ansible.builtin.copy: + dest: /etc/systemd/system/varnish.service.d/customexec.conf + src: varnish.service notify: - reload systemd - name: Copy varnish-acl config - copy: - dest: /etc/varnish/auth.vcl - src: auth.vcl + ansible.builtin.copy: + dest: /etc/varnish/auth.vcl + src: auth.vcl notify: restart varnish - name: Copy varnish config - copy: - dest: /etc/varnish/default.vcl - src: varnish.vcl + ansible.builtin.copy: + dest: /etc/varnish/default.vcl + src: varnish.vcl notify: restart varnish -- name: add systemd service file for gondul-template - copy: +- name: Add systemd service file for gondul-template + ansible.builtin.copy: dest: /etc/systemd/system/gondul-template.service src: gondul-template.service - notify: restart gondul-template + notify: restart gondul-template
\ No newline at end of file diff --git a/ansible/site.yml b/ansible/site.yml index ca4554d..d5d4734 100644 --- a/ansible/site.yml +++ b/ansible/site.yml @@ -1,27 +1,38 @@ --- -- hosts: all +- name: Common role + hosts: all roles: - common vars: git_repo: https://github.com/gathering/gondul.git git_branch: master -- hosts: postgres + +- name: Postgres Install + hosts: postgres become: true roles: - postgres -- hosts: web + +- name: Web Install + hosts: web become: true roles: - web -- hosts: influx + +- name: Influx Install + hosts: influx become: true roles: - influx -- hosts: ping + +- name: Ping Install + hosts: ping become: true roles: - ping -- hosts: snmp + +- name: SNMP Install + hosts: snmp become: true roles: - - snmp + - snmp
\ No newline at end of file |