mirror of
https://pagure.io/fedora-infra/ansible.git
synced 2026-04-13 15:10:13 +08:00
77 lines
2.7 KiB
YAML
77 lines
2.7 KiB
YAML
- name: ensure packages required for execdb are installed
|
|
yum: name={{ item }} state=latest
|
|
when: deployment_type == 'prod' or deployment_type == 'local'
|
|
with_items:
|
|
- execdb
|
|
- mod_wsgi
|
|
- python-psycopg2
|
|
- libsemanage-python
|
|
|
|
- name: ensure packages required for execdb are installed (f22+)
|
|
dnf: name={{ item }} state=latest enablerepo={{ extra_enablerepos }}
|
|
with_items:
|
|
- execdb
|
|
- mod_wsgi
|
|
- python-psycopg2
|
|
- libsemanage-python
|
|
when: ansible_distribution_major_version|int > 21 and ansible_cmdline.ostree is not defined
|
|
|
|
- name: ensure database is created
|
|
delegate_to: "{{ execdb_db_host }}"
|
|
sudo_user: postgres
|
|
sudo: true
|
|
action: postgresql_db db={{ execdb_db_name }}
|
|
|
|
- name: ensure dev execdb db user has access to dev database
|
|
when: deployment_type == 'dev'
|
|
delegate_to: "{{ execdb_db_host }}"
|
|
sudo_user: postgres
|
|
sudo: true
|
|
action: postgresql_user db={{ execdb_db_name }} user={{ execdb_db_user }} password={{ execdb_db_password }} role_attr_flags=NOSUPERUSER
|
|
|
|
- name: ensure stg execdb db user has access to stg database
|
|
when: deployment_type == 'stg'
|
|
delegate_to: "{{ execdb_db_host }}"
|
|
sudo_user: postgres
|
|
sudo: true
|
|
action: postgresql_user db={{ execdb_db_name }} user={{ stg_execdb_db_user }} password={{ stg_execdb_db_password }} role_attr_flags=NOSUPERUSER
|
|
|
|
- name: ensure prod execdb db user has access to prod database
|
|
when: deployment_type == 'prod'
|
|
delegate_to: "{{ execdb_db_host }}"
|
|
sudo_user: postgres
|
|
sudo: true
|
|
action: postgresql_user db={{ execdb_db_name }} user={{ prod_execdb_db_user }} password={{ prod_execdb_db_password }} role_attr_flags=NOSUPERUSER
|
|
|
|
- name: ensure local execdb db user has access to prod database
|
|
when: deployment_type == 'local'
|
|
delegate_to: "{{ execdb_db_host }}"
|
|
sudo_user: postgres
|
|
sudo: true
|
|
action: postgresql_user db={{ execdb_db_name }} user={{ local_execdb_db_user }} password={{ local_execdb_db_password }} role_attr_flags=NOSUPERUSER
|
|
|
|
- name: ensure selinux lets httpd talk to postgres
|
|
seboolean: name=httpd_can_network_connect_db persistent=yes state=yes
|
|
|
|
- name: generate execdb config
|
|
template: src=settings.py.j2 dest=/etc/execdb/settings.py owner=root group=root mode=0644
|
|
notify:
|
|
- restart httpd
|
|
|
|
- name: generate execdb apache config
|
|
template: src=execdb.conf.j2 dest=/etc/httpd/conf.d/execdb.conf owner=root group=root mode=0644
|
|
notify:
|
|
- restart httpd
|
|
|
|
- name: generate alembic.ini
|
|
template: src=alembic.ini.j2 dest=/usr/share/execdb/alembic.ini owner=root group=root mode=0644
|
|
|
|
- name: initialize execdb database
|
|
shell: PROD='true' execdb init_db
|
|
|
|
- name: initialize alembic
|
|
shell: PROD='true' execdb init_alembic
|
|
|
|
- name: upgrade execdb database via alembic
|
|
shell: PROD='true' execdb upgrade_db
|