forked from vexxhost/atmosphere
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathmain.yml
More file actions
130 lines (116 loc) · 3.52 KB
/
main.yml
File metadata and controls
130 lines (116 loc) · 3.52 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
# Copyright (c) 2022 VEXXHOST, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
---
- name: Install Corosync
become: true
ansible.builtin.package:
name: corosync
state: present
- name: Install Pacemaker
become: true
ansible.builtin.package:
name: pacemaker
state: present
when: inventory_hostname in groups[pacemaker_corosync_group]
- name: Install Pacemaker Remote
become: true
ansible.builtin.package:
name: pacemaker-remote
state: present
when:
- inventory_hostname not in groups[pacemaker_corosync_group]
- inventory_hostname in groups[pacemaker_remote_group]
- name: Generate Corosync authkey (only on first node)
become: true
ansible.builtin.command: corosync-keygen
args:
creates: /etc/corosync/authkey
when: inventory_hostname == groups[pacemaker_corosync_group][0]
notify: Restart corosync
- name: Create temporary file to receive authkey
ansible.builtin.tempfile:
state: file
register: authkey_tempfile
changed_when: false
check_mode: no
delegate_to: localhost
when: inventory_hostname != groups[pacemaker_corosync_group][0]
- name: Fetch authkey from first Corosync node
ansible.builtin.fetch:
src: /etc/corosync/authkey
dest: "{{ authkey_tempfile.path }}"
flat: true
delegate_to: "{{ groups[pacemaker_corosync_group][0] }}"
changed_when: false
check_mode: no
when: inventory_hostname != groups[pacemaker_corosync_group][0]
- name: Copy authkey to current node
become: true
ansible.builtin.copy:
src: "{{ authkey_tempfile.path }}"
dest: /etc/corosync/authkey
mode: "0400"
owner: root
when: inventory_hostname != groups[pacemaker_corosync_group][0]
notify: Restart corosync
- name: Clean up temporary authkey file
ansible.builtin.file:
path: "{{ authkey_tempfile.path }}"
state: absent
changed_when: false
check_mode: no
delegate_to: localhost
when: inventory_hostname != groups[pacemaker_corosync_group][0]
- name: Set correct permissions for authkey
become: true
ansible.builtin.file:
path: /etc/corosync/authkey
mode: "0400"
owner: root
notify: Restart corosync
- name: Deploy Corosync configuration
become: true
ansible.builtin.template:
src: corosync.conf.j2
dest: /etc/corosync/corosync.conf
mode: "0400"
owner: root
notify: Restart corosync
- name: Creates log directory
ansible.builtin.file:
path: /var/log/corosync
state: directory
mode: "0775"
when: pacemaker_corosync_use_logfile | bool
- name: Adds logrotate config for corosync
ansible.builtin.template:
src: corosync_logrotate.conf.j2
dest: /etc/logrotate.d/corosync
mode: "0644"
owner: root
when: pacemaker_corosync_use_logfile | bool
- name: Ensure Corosync service directory exists
become: true
ansible.builtin.file:
path: /etc/corosync/service.d/
state: directory
mode: "0755"
- name: Deploy Pacemaker service configuration
become: true
ansible.builtin.copy:
src: pcmk
dest: /etc/corosync/service.d/pcmk
owner: root
mode: "0400"
notify: Restart corosync