WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-03-30 08:50:55 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
4f202be131b6b18f295e4e33566063406f6ccc8a
fedora-infra_ansible/roles/relvalconsumer/tasks/main.yml
Adam Williamson 4f202be131 openqa: drop all use of wikitcms_user and wikitcms_password 
It's all wikitcms_token now, this was all just outdated cruft.

Signed-off-by: Adam Williamson <awilliam@redhat.com>
2019-06-07 16:56:11 -07:00

89 lines
3.1 KiB
YAML
Raw Blame History

# This role creates Wikitcms release validation events. There should
# always be exactly one host in infra with this role set up and
# relvalconsumer_prod set to True, or else we'll stop getting events.
#
# Required vars
# - wikitcms_token
## string - a token file to install for unattended reporting to
# a wiki using openidc auth
#
# Required vars with defaults
# - relvalconsumer_prod
## bool - whether this is the production instance. **SHOULD ONLY
## EVER BE TRUE ON ONE SYSTEM IN THE WORLD**
## default - False
# note: kept around for when we need packages from u-t
#- name: Install required packages (testing)
# dnf:
# name: ['python3-fedfind', 'python3-wikitcms']
# state: present
# enablerepo: "updates-testing"
# tags:
# - packages
- name: Install required packages
dnf:
# 'relval' itself is needed as we call it directly for size
# checking
name: ['python3-fedfind', 'python3-wikitcms', 'python3-fedmsg',
'python3-mwclient', 'python3-setuptools', 'relval']
state: present
tags:
- packages
- name: Install required packages (wiki oidc auth)
dnf: name=python3-openidc-client state=present enablerepo="updates"
when: "wikitcms_token is defined"
tags:
- packages
# next two duplicated with openqa/dispatcher, but I kinda don't want to
# move them up somewhere shared, I like the roles to be somewhat usable
# outside of Fedora infra...
- name: Create /etc/fedora (credentials files location)
file: path=/etc/fedora state=directory owner=root group=fedmsg mode=0750
# We actually want to handle the case where wikitcms_token isn't defined
# even though it makes this role essentially do nothing, as we don't
# really want openqa-stg creating stuff in the staging wiki all the
# time. So in that case install the role but leave it disabled
- name: Create /root/.openidc (token file location for manual runs as root)
file: path=/root/.openidc state=directory owner=root group=root mode=0700
- name: Create /usr/share/fedmsg/.openidc (token file location for fedmsg consumer runs)
file: path=/usr/share/fedmsg/.openidc state=directory owner=root group=fedmsg mode=0770
#- name: Write wikitcms token file for root
# copy: src={{ wikitcms_token }} dest=/root/.openidc/oidc_wikitcms.json owner=root group=root mode=0600
# when: "wikitcms_token is defined"
# tags:
# - config
#
#- name: Write wikitcms token file for fedmsg
# copy: src={{ wikitcms_token }} dest=/usr/share/fedmsg/.openidc/oidc_wikitcms.json owner=root group=fedmsg mode=0660
# when: "wikitcms_token is defined"
# tags:
# - config
- name: Check out relvalconsumer
git:
repo: https://pagure.io/fedora-qa/relvalconsumer.git
dest: /root/relvalconsumer
register: gitrvc
- name: Install relvalconsumer
command: "python3 setup.py install --nodeps"
args:
chdir: /root/relvalconsumer
when: "gitrvc is changed"
notify:
- restart fedmsg-hub
- name: Enable fedmsg consumer
template: src=relvalconsumer.py.j2 dest=/etc/fedmsg.d/relvalconsumer.py owner=root group=root mode=0644
when: "wikitcms_token is defined"
notify:
- restart fedmsg-hub
tags:
- config
Reference in New Issue View Git Blame Copy Permalink