ansible-openqa-management/tasks/openqa.yml

194 lines
4.8 KiB
YAML
Raw Permalink Normal View History

2023-02-18 18:45:36 +00:00
---
- name: Install OpenQA packages
2023-02-18 20:35:36 +00:00
ansible.builtin.yum:
2023-02-18 18:45:36 +00:00
name: "{{ openqa_packages }}"
state: present
tags:
- packages
- name: Copy httpd configuration files
2023-02-18 20:35:36 +00:00
ansible.builtin.copy:
2023-02-18 18:45:36 +00:00
remote_src: true
src: /etc/httpd/conf.d/{{ item }}.template
dest: /etc/httpd/conf.d/{{ item }}
mode: '0644'
owner: root
group: root
loop:
- openqa.conf
- openqa-ssl.conf
notify: restart_httpd
tags:
- configure
- name: Template OpenQA configuration files
2023-02-18 20:35:36 +00:00
ansible.builtin.template:
2023-02-18 18:45:36 +00:00
src: etc/openqa/{{ item }}.j2
dest: /etc/openqa/{{ item }}
owner: "{{ openqa_user }}"
group: "{{ openqa_group }}"
mode: "0444"
loop:
- openqa.ini
- client.conf
tags:
- configure
- name: Get service facts
2023-02-18 20:35:36 +00:00
ansible.builtin.service_facts:
2023-02-18 18:45:36 +00:00
- name: Check for non-empty postgres data directory
2023-02-18 20:35:36 +00:00
ansible.builtin.stat:
2023-02-18 18:45:36 +00:00
path: /var/lib/pgsql/data/base
register: postgres_data_dir
- name: If postgresql is not already running, initialize database
2023-02-18 20:35:36 +00:00
ansible.builtin.command: postgresql-setup --initdb
2023-02-18 18:45:36 +00:00
when: not ( ansible_facts.services["postgresql.service"]["state"] == "running" )
and not postgres_data_dir.stat.exists
2023-02-18 20:35:36 +00:00
changed_when: true
2023-02-18 18:45:36 +00:00
- name: Enable and start postgresql service
2023-02-18 20:35:36 +00:00
ansible.builtin.systemd:
2023-02-18 18:45:36 +00:00
name: postgresql
state: started
enabled: true
when: not ( ansible_facts.services["postgresql.service"]["state"] == "running" )
and not postgres_data_dir.stat.exists
- name: Configure SELinux to allow httpd connection to network
2023-02-18 20:35:36 +00:00
ansible.posix.seboolean:
2023-02-18 18:45:36 +00:00
name: httpd_can_network_connect
state: true
persistent: true
tags:
- configure
- name: Enable and start OpenQA services
2023-02-18 20:35:36 +00:00
ansible.builtin.systemd:
2023-02-18 18:45:36 +00:00
name: "{{ item }}"
state: started
enabled: true
loop: "{{ openqa_services }}"
tags:
- configure
- name: Create openqa-vnc firewalld service
2023-02-18 20:35:36 +00:00
ansible.builtin.template:
2023-02-18 18:45:36 +00:00
src: etc/firewalld/services/openqa-vnc.xml.j2
dest: /etc/firewalld/services/openqa-vnc.xml
owner: root
group: root
mode: "0644"
tags:
- configure
- name: Load openqa-vnc firewalld service
2023-02-18 20:35:36 +00:00
ansible.builtin.systemd:
2023-02-18 18:45:36 +00:00
name: firewalld
state: reloaded
tags:
- configure
2023-02-18 20:35:36 +00:00
- name: Permit traffic for http and openqa-vnc services
2023-02-18 18:45:36 +00:00
ansible.posix.firewalld:
service: "{{ item }}"
permanent: true
state: enabled
loop:
- http
- openqa-vnc
tags:
- configure
- name: Reload FirewallD
2023-02-18 20:35:36 +00:00
ansible.builtin.systemd:
2023-02-18 18:45:36 +00:00
name: firewalld
state: reloaded
tags:
- configure
- name: Check for existing repository
2023-02-18 20:35:36 +00:00
ansible.builtin.stat:
2023-02-18 18:45:36 +00:00
path: "{{ openqa_homedir }}/share/tests/rocky"
register: rocky_testing_repo
tags:
- configure
- name: Clone repository if it does not already exist
2023-02-18 20:35:36 +00:00
ansible.builtin.git:
2023-02-18 18:45:36 +00:00
accept_hostkey: true
dest: "{{ openqa_homedir }}/share/tests/rocky"
repo: "{{ openqa_rocky_testing_repo }}"
version: develop
when: not rocky_testing_repo.stat.exists
tags:
- configure
- name: Set owner/group/permissions on repo contents
2023-02-18 20:35:36 +00:00
ansible.builtin.file:
2023-02-18 18:45:36 +00:00
path: "{{ openqa_homedir }}/share/tests/rocky"
recurse: true
owner: "{{ openqa_user }}"
group: "{{ openqa_group }}"
mode: "u+rwX,g+rwX,o+rX,o-w"
tags:
- configure
# fifloader.py will fail if the Demo user is not logged in
- name: Authenticate to web UI the first time
2023-02-18 20:35:36 +00:00
ansible.builtin.uri:
2023-02-18 18:45:36 +00:00
url: "http://{{ openqa_host }}/login"
- name: Run fifloader.py
2023-02-18 20:35:36 +00:00
ansible.builtin.command: ./fifloader.py -l -c templates.fif.json templates-updates.fif.json
2023-02-18 18:45:36 +00:00
changed_when: "1 != 1"
args:
chdir: "{{ openqa_homedir }}/share/tests/rocky"
- name: Create ISO directory
2023-02-18 20:35:36 +00:00
ansible.builtin.file:
2023-02-18 18:45:36 +00:00
path: "{{ openqa_homedir }}/share/factory/iso/fixed"
state: directory
owner: "{{ openqa_user }}"
group: "{{ openqa_group }}"
mode: "0775"
tags:
- download_isos
- name: Download ISOs
2023-02-18 20:35:36 +00:00
ansible.builtin.get_url:
2023-02-18 18:45:36 +00:00
dest: "{{ openqa_homedir }}/share/factory/iso/fixed/{{ item.name }}"
url: "{{ rocky_iso_download_url }}/{{ item.name }}"
checksum: "{{ item.checksum }}"
owner: "{{ openqa_user }}"
group: "{{ openqa_group }}"
tmp_dest: "/var/tmp"
mode: "0644"
loop: "{{ openqa_isos }}"
tags:
- download_isos
2023-02-18 20:35:36 +00:00
- name: Start OpenQA workers
2023-02-18 18:45:36 +00:00
ansible.builtin.systemd:
name: "openqa-worker@{{ item }}"
state: started
enabled: true
# range 'end' parameter is exclusive, so add 1
2023-02-18 20:35:36 +00:00
loop: "{{ range(1, (openqa_worker_count | int + 1)) | list }}"
2023-02-18 18:45:36 +00:00
tags:
- start_workers
- configure
- name: POST a job
2023-02-18 20:35:36 +00:00
ansible.builtin.command: |
2023-02-18 18:45:36 +00:00
openqa-cli api -X POST isos \
ISO=Rocky-{{ rocky_version }}-{{ rocky_arch }}-minimal.iso \
ARCH={{ rocky_arch }} \
DISTRI=rocky \
FLAVOR=minimal-iso \
VERSION={{ rocky_version }} \
BUILD="{{ '%Y%m%d.%H%M%S' | strftime }}.0"
changed_when: "1 != 1"
...