mirror of
https://github.com/rocky-linux/infrastructure
synced 2024-11-17 11:11:22 +00:00
65a83babc9
* Add automation for bootstrapping an openQA developer box This PR adds the playbook `init-rocky-openqa-developer-host.yml`, to be used for bootstrapping developer instances of OpenQA. This playbook mostly follows the automation from [this repo](https://github.com/rocky-linux/OpenQA-Fedora-Installation). * Add suggestions from @nazunalika
149 lines
3.8 KiB
YAML
149 lines
3.8 KiB
YAML
---
|
|
- name: Install OpenQA packages
|
|
yum:
|
|
name: "{{ openqa_packages }}"
|
|
state: present
|
|
|
|
- name: Copy httpd configuration files
|
|
copy:
|
|
remote_src: true
|
|
src: /etc/httpd/conf.d/{{ item }}.template
|
|
dest: /etc/httpd/conf.d/{{ item }}
|
|
loop:
|
|
- openqa.conf
|
|
- openqa-ssl.conf
|
|
notify: restart_httpd
|
|
|
|
- name: Template OpenQA configuration files
|
|
template:
|
|
src: etc/openqa/{{ item }}.j2
|
|
dest: /etc/openqa/{{ item }}
|
|
owner: "{{ openqa_user }}"
|
|
group: "{{ openqa_group }}"
|
|
mode: "0444"
|
|
loop:
|
|
- openqa.ini
|
|
- client.conf
|
|
|
|
- name: Get service facts
|
|
service_facts:
|
|
|
|
- name: Check for non-empty postgres data directory
|
|
stat:
|
|
path: /var/lib/pgsql/data
|
|
register: postgres_data_dir
|
|
|
|
- name: If postgresql is not already running, initialize database
|
|
command: postgresql-setup --initdb
|
|
when: not ( ansible_facts.services["postgresql.service"]["state"] == "running" )
|
|
and not postgres_data_dir.stat.exists
|
|
|
|
- name: Enable and start postgresql service
|
|
systemd:
|
|
name: postgresql
|
|
state: started
|
|
enabled: true
|
|
when: not ( ansible_facts.services["postgresql.service"]["state"] == "running" )
|
|
and not postgres_data_dir.stat.exists
|
|
|
|
- name: Configure SELinux to allow httpd connection to network
|
|
seboolean:
|
|
name: httpd_can_network_connect
|
|
state: true
|
|
persistent: true
|
|
|
|
- name: Enable and start OpenQA services
|
|
systemd:
|
|
name: "{{ item }}"
|
|
state: started
|
|
enabled: true
|
|
loop: "{{ openqa_services }}"
|
|
|
|
- name: Permit traffic for {{ item }} service
|
|
ansible.posix.firewalld:
|
|
service: "{{ item }}"
|
|
permanent: true
|
|
state: enabled
|
|
loop:
|
|
- httpd
|
|
- openqa-vnc
|
|
|
|
- name: Permit VNC traffic for local workers
|
|
ansible.posix.firewalld:
|
|
port: "{{ openqa_min_vnc_port }}-{{ openqa_max_vnc_port }}/tcp"
|
|
permanent: true
|
|
state: enabled
|
|
|
|
- name: Reload FirewallD
|
|
systemd:
|
|
name: firewalld
|
|
state: reloaded
|
|
|
|
- name: Check for existing repository
|
|
stat:
|
|
path: "{{ openqa_homedir }}/share/tests/rocky"
|
|
register: rocky_testing_repo
|
|
|
|
- name: Clone repository if it does not already exist
|
|
git:
|
|
accept_hostkey: true
|
|
dest: "{{ openqa_homedir }}/share/tests/rocky"
|
|
repo: "{{ openqa_rocky_testing_repo }}"
|
|
version: develop
|
|
when: not rocky_testing_repo.stat.exists
|
|
|
|
- name: Set permissions on repo dir
|
|
file:
|
|
path: "{{ openqa_homedir }}/share/tests/rocky"
|
|
recurse: true
|
|
owner: "{{ openqa_user }}"
|
|
group: "{{ openqa_group }}"
|
|
mode: "0775"
|
|
|
|
- name: Run fifloader.py
|
|
command: ./fifloader.py -l -c templates.fif.json templates-updates.fif.json
|
|
args:
|
|
chdir: "{{ openqa_homedir }}/share/tests/rocky"
|
|
|
|
- name: Create ISO directory
|
|
file:
|
|
path: "{{ openqa_homedir }}/share/factory/iso/fixed"
|
|
state: directory
|
|
owner: "{{ openqa_user }}"
|
|
group: "{{ openqa_group }}"
|
|
mode: "0775"
|
|
|
|
- name: Download ISOs
|
|
get_url:
|
|
dest: "{{ openqa_homedir }}/share/factory/iso/fixed/"
|
|
url: "{{ rocky_iso_download_url }}/{{ item }}"
|
|
owner: "{{ openqa_user }}"
|
|
group: "{{ openqa_group }}"
|
|
mode: "0775"
|
|
loop:
|
|
- CHECKSUM
|
|
- Rocky-{{ rocky_version }}-{{ rocky_arch }}-boot.iso
|
|
- Rocky-{{ rocky_version }}-{{ rocky_arch }}-dvd1.iso
|
|
- Rocky-{{ rocky_version }}-{{ rocky_arch }}-minimal.iso
|
|
|
|
- name: Verify ISO checksums
|
|
command: shasum -a 256 --ignore-missing -c CHECKSUM
|
|
args:
|
|
chdir: "{{ openqa_homedir }}/share/factory/iso/fixed"
|
|
|
|
- name: Start OpenQA worker
|
|
ansible.builtin.systemd:
|
|
name: "openqa-worker@1"
|
|
state: started
|
|
enabled: true
|
|
|
|
- name: POST a job
|
|
command: |
|
|
openqa-cli api -X POST isos \
|
|
ISO=Rocky-{{ rocky_version }}-{{ rocky_arch }}-minimal.iso \
|
|
ARCH={{ rocky_arch }} \
|
|
DISTRI=rocky \
|
|
FLAVOR=minimal-iso \
|
|
VERSION={{ rocky_version }} \
|
|
BUILD="{{ '%Y%m%d.%H%M%S' | strftime }}.0"
|