WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-06-14 22:36:09 +08:00
Code Issues Packages Projects Releases Wiki Activity

Add manage-container-images role to bodhi backend for container updates

Browse Source 
Signed-off-by: Clement Verna <cverna@tutanota.com>
This commit is contained in:
Clement Verna
2018-07-05 15:14:27 +02:00
parent e135cd7183
commit 295d60b87c
3 changed files with 12 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
playbooks/groups/bodhi-backend.yml
View File

@@ -68,6 +68,11 @@
service: bodhi
host: "bodhi.stg.fedoraproject.org"
when: env == "staging"
- role: manage-container-images
cert_dest_dir: "/etc/docker/certs.d/registry{{ env_suffix }}.fedoraproject.org"
cert_src: "{{private}}/files/docker-registry/{{env}}/docker-registry-internal.pem"
key_src: "{{private}}/files/docker-registry/{{env}}/docker-registry-internal.key"
certs_group: apache
tasks:

5
roles/manage-container-images/defaults/main.yml Normal file
View File

@@ -0,0 +1,5 @@
---
# defaults file for manage-container-images
#
certs_group: "releng-team"

4
roles/manage-container-images/tasks/main.yml
View File

@@ -18,12 +18,12 @@
src: "{{cert_src}}"
dest: "{{cert_dest_dir}}/client.cert"
owner: root
group: "releng-team"
group: "{{ certs_group }}"
mode: 0640
- name: install docker client key for registry
copy:
src: "{{key_src}}"
dest: "{{cert_dest_dir}}/client.key"
group: "releng-team"
group: "{{ certs_group }}"
mode: 0640