playbooks/openshift-setup-security.yml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24

- name: Configure users
  hosts: masters
  roles:
    - { role: ands_facts }


- name: Temporary provision /etc/hosts with Masters IP.
  hosts: nodes:!masters
  tasks:
    - lineinfile: dest="/etc/hosts" line="{{ ands_openshift_network | ipaddr(node_id) | ipaddr('address') }} {{ ands_openshift_lb }}" regexp=".*{{ ands_openshift_lb }}$" state="present"
      when: (ands_provision_without_dns | default(false))
  vars:
    node_id: "{{ hostvars[groups['masters'][0]]['ands_host_id'] }}"

- name: Configure security
  hosts: masters
  roles:
    - { role: ands_openshift, subrole: security }

- name: Remove temporary entries in /etc/hosts
  hosts: nodes:!masters
  tasks:
    - lineinfile: dest="/etc/hosts" regexp=".*{{ ands_openshift_lb }}$" state="absent"
      when: (ands_provision_without_dns | default(false))