diff options
author | Tim Bielawa <tbielawa@redhat.com> | 2016-10-03 08:20:38 -0700 |
---|---|---|
committer | Tim Bielawa <tbielawa@redhat.com> | 2016-10-20 07:49:40 -0700 |
commit | 931499b7cf9d4e03f2dcd4449650986d31886362 (patch) | |
tree | 399f1d766be27e59f329e916de06cc1a79579de4 /playbooks/byo | |
parent | 4a5b2dd0510ac092da44a09730a734fe9ef7e112 (diff) | |
download | openshift-931499b7cf9d4e03f2dcd4449650986d31886362.tar.gz openshift-931499b7cf9d4e03f2dcd4449650986d31886362.tar.bz2 openshift-931499b7cf9d4e03f2dcd4449650986d31886362.tar.xz openshift-931499b7cf9d4e03f2dcd4449650986d31886362.zip |
Try to make boiler plate for cert expiry checking
Diffstat (limited to 'playbooks/byo')
-rw-r--r-- | playbooks/byo/openshift-cluster/check-cert-expiry.yaml | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/playbooks/byo/openshift-cluster/check-cert-expiry.yaml b/playbooks/byo/openshift-cluster/check-cert-expiry.yaml new file mode 100644 index 000000000..39efdbd36 --- /dev/null +++ b/playbooks/byo/openshift-cluster/check-cert-expiry.yaml @@ -0,0 +1,35 @@ +--- +# check-cert-expiry.yaml - A utility for cluster ops to scan through +# (critical) certificates for the ongoing operations of a cluster. + +# We do not support all Ansible versions. This is our safety net. +- include: ../../common/openshift-cluster/verify_ansible_version.yml + +- name: Generate the l_oo_all_hosts group + hosts: localhost + connection: local + become: no + gather_facts: no + tasks: + - include_vars: cluster_hosts.yml + - add_host: + name: "{{ item }}" + groups: l_oo_all_hosts + with_items: "{{ g_all_hosts | default([]) }}" + +# This may seem redundant, running `include_vars` again on the list of +# hosts in the group 'l_oo_all_hosts' which we just created. But the +# fact of the matter is that if we don't re-run include_vars on the +# new host group we created, then they will not have access to those +# same group variables they were birthed from. +# +# Go ahead and try to 'debug: var=g_all_hosts' later on (without this +# play) and you'll find that the result is UNDEFINED VARIABLE. +- name: Inject cluster hosts variables into l_oo_all_hosts + hosts: l_oo_all_hosts + gather_facts: no + tasks: + - include_vars: cluster_hosts.yml + +# This is where the actual business gets started: +- include: ../../common/openshift-cluster/check-cert-expiry.yaml |