Code Review
/
ealt-edge.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
review
|
tree
raw
|
inline
| side by side
Private insecure-registries functionality added
[ealt-edge.git]
/
ocd
/
infra
/
playbooks
/
roles
/
eg_mecm-mepm
/
tasks
/
install.yml
diff --git
a/ocd/infra/playbooks/roles/eg_mecm-mepm/tasks/install.yml
b/ocd/infra/playbooks/roles/eg_mecm-mepm/tasks/install.yml
index
a84f9e0
..
26eb288
100644
(file)
--- a/
ocd/infra/playbooks/roles/eg_mecm-mepm/tasks/install.yml
+++ b/
ocd/infra/playbooks/roles/eg_mecm-mepm/tasks/install.yml
@@
-21,37
+21,42
@@
src: deploy
dest: /tmp/eg_mecm-mepm/
src: deploy
dest: /tmp/eg_mecm-mepm/
-- name: Import
vars
+- name: Import
config file
include_vars:
file: ../../../config.yml
name: vardata
include_vars:
file: ../../../config.yml
name: vardata
-- name: Generates certificate one eg_mecm-mepm
+- name: Replacing password
+ replace:
+ path: /tmp/eg_mecm-mepm/deploy/conf/keys/postgres_init.sql
+ regexp: 'PASSWORD_VALUE'
+ replace: "{{ vardata.db_password.name }}"
+
+- name: Create mecm-mepm-ssl-secret secret
# yamllint disable rule:line-length
# yamllint disable rule:line-length
- command: kubectl create secret generic mecm-mepm-jwt-public-secret --from-file=publicKey=/tmp/
.mep_tmp_cer/server_
encryptedtls.key
+ command: kubectl create secret generic mecm-mepm-jwt-public-secret --from-file=publicKey=/tmp/
ssl-eg-keys-certs/
encryptedtls.key
# yamllint disable rule:line-length
args:
# yamllint disable rule:line-length
args:
- chdir: /tmp/
.mep_tmp_cer
/
+ chdir: /tmp/
ssl-eg-keys-certs
/
-- name:
Generates certificate one eg_mecm-mepm
+- name:
Create mecm-mepm-ssl-secret secret
# yamllint disable rule:line-length
# yamllint disable rule:line-length
- command: kubectl create secret generic mecm-mepm-ssl-secret --from-file=server_tls.key=/tmp/
.mep_tmp_cer/server_tls.key --from-file=server_tls.crt=/tmp/.mep_tmp_cer/server_tls.crt --from-file=ca.crt=/tmp/.mep_tmp_cer
/ca.crt
+ command: kubectl create secret generic mecm-mepm-ssl-secret --from-file=server_tls.key=/tmp/
ssl-eg-keys-certs/tls.key --from-file=server_tls.crt=/tmp/ssl-eg-keys-certs/tls.crt --from-file=ca.crt=/tmp/ssl-eg-keys-certs
/ca.crt
# yamllint disable rule:line-length
args:
# yamllint disable rule:line-length
args:
- chdir: /tmp/
.mep_tmp_cer
/
+ chdir: /tmp/
ssl-eg-keys-certs
/
-- name:
Generates certificate one eg_mecm-mepm
+- name:
Create edgegallery-mepm-secret secret
# yamllint disable rule:line-length
# yamllint disable rule:line-length
- command: kubectl create secret generic edgegallery-mepm-secret --from-file=postgres_init.sql=/tmp/eg_mecm-mepm/deploy/conf/keys/postgres_init.sql --from-literal=postgresPassword={{ vardata.
mepmpostgrespass.name}} --from-literal=postgresLcmCntlrPassword={{ vardata.mepmpostgreslcmpass.name}} --from-literal=postgresk8sPluginPassword={{ vardata.mepmpostgresk8spluginpass
.name}}
+ command: kubectl create secret generic edgegallery-mepm-secret --from-file=postgres_init.sql=/tmp/eg_mecm-mepm/deploy/conf/keys/postgres_init.sql --from-literal=postgresPassword={{ vardata.
db_password.name}} --from-literal=postgresLcmCntlrPassword={{ vardata.db_password.name}} --from-literal=postgresk8sPluginPassword={{ vardata.db_password
.name}}
# yamllint disable rule:line-length
# yamllint disable rule:line-length
- args:
- chdir: /tmp/.mep_tmp_cer/
-- name:
Generates certificate one eg_mecm-mepm
+- name:
Create mepm service account
command: kubectl apply -f /tmp/eg_mecm-mepm/deploy/conf/manifest/mepm/mepm-service-account.yaml
args:
chdir: /tmp/eg_mecm-mepm/deploy/
command: kubectl apply -f /tmp/eg_mecm-mepm/deploy/conf/manifest/mepm/mepm-service-account.yaml
args:
chdir: /tmp/eg_mecm-mepm/deploy/
-- name: Repo pulling for mecm-mepm
+- name: Install mecm-mepm
+ # yamllint disable rule:line-length
+ command: helm install mecm-mepm-edgegaller edgegallery/mecm-mepm --set jwt.publicKeySecretName=mecm-mepm-jwt-public-secret --set mepm.secretName=edgegallery-mepm-secret --set ssl.secretName=mecm-mepm-ssl-secret --set images.lcmcontroller.repository={{ vardata.private_repo_ip.name}}:{{ vardata.docker_registry_port.name}}/edgegallery/mecm-applcm --set images.k8splugin.repository={{ vardata.private_repo_ip.name}}:{{ vardata.docker_registry_port.name}}/edgegallery/mecm-applcm-k8splugin --set images.postgres.repository={{ vardata.private_repo_ip.name}}:{{ vardata.docker_registry_port.name}}/postgres --set images.lcmcontroller.tag={{ vardata.eg_image_tag.name}} --set images.k8splugin.tag={{ vardata.eg_image_tag.name}} --set images.postgres.tag=12.3 --set images.lcmcontroller.pullPolicy=IfNotPresent --set images.k8splugin.pullPolicy=IfNotPresent --set images.postgres.pullPolicy=IfNotPresent
# yamllint disable rule:line-length
# yamllint disable rule:line-length
- command: helm install --wait mecm-mepm-edgegallery edgegallery/mecm-mepm --set jwt.publicKeySecretName=mecm-mepm-jwt-public-secret --set mepm.secretName=edgegallery-mepm-secret --set ssl.secretName=mecm-mepm-ssl-secret --set images.lcmcontroller.tag={{ vardata.mepmlcmcontrollerimagetag.name}} --set images.k8splugin.tag={{ vardata.mepmk8spluginimagetag.name}} --set images.postgres.tag={{ vardata.mepmpostgresimagetag.name}}