Skip to content
Snippets Groups Projects
Commit b17cb14b authored by Jörg Sachse's avatar Jörg Sachse
Browse files

style: satisfy linter

parent a40276be
No related branches found
No related tags found
No related merge requests found
Pipeline #3661 passed
...@@ -37,6 +37,7 @@ use_default_rules: true ...@@ -37,6 +37,7 @@ use_default_rules: true
skip_list: skip_list:
- skip_this_tag - skip_this_tag
- git-latest - git-latest
- name[casing]
# Any rule that has the 'opt-in' tag will not be loaded unless its 'id' is # Any rule that has the 'opt-in' tag will not be loaded unless its 'id' is
# mentioned in the enable_list: # mentioned in the enable_list:
......
--- ---
- name: save iptables rules - name: save iptables rules
when: ansible_os_family == "Debian"
block: block:
- name: Ordner für iptables-Config erstellen - name: Ordner für iptables-Config erstellen
ansible.builtin.file: ansible.builtin.file:
...@@ -18,9 +19,9 @@ ...@@ -18,9 +19,9 @@
ansible.builtin.command: "netfilter-persistent save" ansible.builtin.command: "netfilter-persistent save"
listen: "save iptables rules" listen: "save iptables rules"
changed_when: false changed_when: false
when: ansible_os_family == "Debian"
- name: save iptables rules - name: save iptables rules
when: ansible_os_family == "RedHat"
block: block:
- name: make sure iptables config file exists - name: make sure iptables config file exists
ansible.builtin.file: ansible.builtin.file:
...@@ -31,10 +32,9 @@ ...@@ -31,10 +32,9 @@
mode: "0600" mode: "0600"
listen: "save iptables rules" listen: "save iptables rules"
- name: save iptables rules - name: save iptables rules
ansible.builtin.command: /usr/sbin/iptables-save # noqa 303 ansible.builtin.command: /usr/sbin/iptables-save # noqa command-instead-of-module
listen: "save iptables rules" listen: "save iptables rules"
changed_when: false changed_when: false
when: ansible_os_family == "RedHat"
- name: activate kernel parameter changes - name: activate kernel parameter changes
ansible.builtin.command: sysctl -p ansible.builtin.command: sysctl -p
......
--- ---
galaxy_info: galaxy_info:
role_name: "ansible_lza_rosetta_app"
namespace: slub
author: Jörg Sachse (<Joerg.Sachse@slub-dresden.de>) author: Jörg Sachse (<Joerg.Sachse@slub-dresden.de>)
company: SLUB Dresden company: SLUB Dresden
description: role to install Rosetta application server for the SLUBarchiv digital preservation repository description: role to install Rosetta application server for the SLUBarchiv digital preservation repository
......
...@@ -3,6 +3,7 @@ ...@@ -3,6 +3,7 @@
hosts: "*" hosts: "*"
pre_tasks: pre_tasks:
- name: configure additional package repositories for Debian - name: configure additional package repositories for Debian
when: ansible_os_family == "Debian"
block: block:
- name: install GPG - name: install GPG
ansible.builtin.apt: ansible.builtin.apt:
...@@ -22,9 +23,9 @@ ...@@ -22,9 +23,9 @@
update_cache: true update_cache: true
mode: "0644" mode: "0644"
become: true become: true
when: ansible_os_family == "Debian"
- name: configure additional package repositories for RedHat - name: configure additional package repositories for RedHat
when: ansible_os_family == "RedHat"
block: block:
- name: add custom repositories - name: add custom repositories
ansible.builtin.yum_repository: ansible.builtin.yum_repository:
...@@ -48,7 +49,6 @@ ...@@ -48,7 +49,6 @@
path: "/etc/yum.repos.d/SLUB.repo" path: "/etc/yum.repos.d/SLUB.repo"
state: absent state: absent
become: true become: true
when: ansible_os_family == "RedHat"
- name: create sudo group, because we ignore RHEL's wheel group - name: create sudo group, because we ignore RHEL's wheel group
ansible.builtin.group: ansible.builtin.group:
name: "sudo" name: "sudo"
...@@ -65,6 +65,7 @@ ...@@ -65,6 +65,7 @@
ansible.builtin.command: "update-ca-trust" ansible.builtin.command: "update-ca-trust"
become: true become: true
when: pki.failed is false when: pki.failed is false
changed_when: false
roles: roles:
- { role: "ansible_lza_install_common", become: true } - { role: "ansible_lza_install_common", become: true }
--- ---
- hosts: "*" - name: prepare Rosetta/Oracle cluster
hosts: "*"
pre_tasks: pre_tasks:
- name: Verify that the installed version of Ansible meets this playbook's version requirements. - name: Verify that the installed version of Ansible meets this playbook's version requirements.
assert: ansible.builtin.assert:
that: "ansible_version.full is version_compare('2.4', '>=')" that: "ansible_version.full is version_compare('2.4', '>=')"
msg: > msg: >
"You must update Ansible to at least 2.4 to use this playbook." "You must update Ansible to at least 2.4 to use this playbook."
......
...@@ -12,11 +12,14 @@ ...@@ -12,11 +12,14 @@
### COMMON TASKS ### COMMON TASKS
- ansible.builtin.import_tasks: "install_packages.yml" - name: "install packages"
ansible.builtin.import_tasks: "install_packages.yml"
tags: [yum, packages] tags: [yum, packages]
- ansible.builtin.import_tasks: "create_users.yml" - name: "create users"
ansible.builtin.import_tasks: "create_users.yml"
tags: [users] tags: [users]
- ansible.builtin.import_tasks: "configure_sanitytest.yml" - name: "configure sanitytest"
ansible.builtin.import_tasks: "configure_sanitytest.yml"
tags: [users, sanitytest] tags: [users, sanitytest]
- name: find out if Rosetta is running, to make sure NFS tasks are only executed if Rosetta is OFF - name: find out if Rosetta is running, to make sure NFS tasks are only executed if Rosetta is OFF
...@@ -27,24 +30,30 @@ ...@@ -27,24 +30,30 @@
changed_when: false changed_when: false
failed_when: false failed_when: false
tags: [mount, nfs] tags: [mount, nfs]
- ansible.builtin.import_tasks: "configure_nfs_mounts.yml" - name: configure NFS mounts
ansible.builtin.import_tasks: "configure_nfs_mounts.yml"
# when: ansible_facts.services['exlibris'].state != "running" # when: ansible_facts.services['exlibris'].state != "running"
when: rosetta_status.rc != 0 when: rosetta_status.rc != 0
tags: [mount, nfs] tags: [mount, nfs]
- ansible.builtin.import_tasks: "install_checkmk_plugins.yml" - name: install Check_MK plugins
ansible.builtin.import_tasks: "install_checkmk_plugins.yml"
tags: [checkmk, monitoring] tags: [checkmk, monitoring]
- ansible.builtin.import_tasks: "configure_iptables.yml" - name: configure iptables
ansible.builtin.import_tasks: "configure_iptables.yml"
tags: [iptables] tags: [iptables]
- ansible.builtin.import_tasks: "configure_selinux.yml" - name: configure SElinux
ansible.builtin.import_tasks: "configure_selinux.yml"
tags: [selinux] tags: [selinux]
- ansible.builtin.import_tasks: "configure_kdump.yml" - name: configure kdump
ansible.builtin.import_tasks: "configure_kdump.yml"
tags: [security, kdump] tags: [security, kdump]
### ROSETTA TASKS ### ROSETTA TASKS
# https://docs.ansible.com/ansible/latest/user_guide/playbooks_tags.html#tag-inheritance-adding-tags-to-multiple-tasks # https://docs.ansible.com/ansible/latest/user_guide/playbooks_tags.html#tag-inheritance-adding-tags-to-multiple-tasks
- ansible.builtin.include_tasks: "rosetta/main_rosetta.yml" - name: branch out to Rosetta tasks
ansible.builtin.include_tasks: "rosetta/main_rosetta.yml"
when: when:
- ( ansible_hostname is search("rosapp") ) or - ( ansible_hostname is search("rosapp") ) or
( ansible_hostname is search("rosetta-test") ) ( ansible_hostname is search("rosetta-test") )
...@@ -52,7 +61,8 @@ ...@@ -52,7 +61,8 @@
### ORACLE TASKS ### ORACLE TASKS
# https://docs.ansible.com/ansible/latest/user_guide/playbooks_tags.html#tag-inheritance-adding-tags-to-multiple-tasks # https://docs.ansible.com/ansible/latest/user_guide/playbooks_tags.html#tag-inheritance-adding-tags-to-multiple-tasks
- ansible.builtin.include_tasks: "oracle/main_oracle.yml" - name: branch out to Oracle tasks
ansible.builtin.include_tasks: "oracle/main_oracle.yml"
when: when:
- ( ansible_hostname is search("rosora") ) or - ( ansible_hostname is search("rosora") ) or
( ansible_hostname is search("rosettaora") ) ( ansible_hostname is search("rosettaora") )
......
--- ---
### ORACLE TASKS ### ORACLE TASKS
- ansible.builtin.import_tasks: "oracle/configure_iptables_oracle.yml" - name: configure iptables oracle
ansible.builtin.import_tasks: "oracle/configure_iptables_oracle.yml"
tags: [iptables] tags: [iptables]
- ansible.builtin.import_tasks: "oracle/create_db_users.yml" - name: create db users
ansible.builtin.import_tasks: "oracle/create_db_users.yml"
tags: [users] tags: [users]
- ansible.builtin.import_tasks: "oracle/configure_rman_backup.yml" - name: configure rman backup
ansible.builtin.import_tasks: "oracle/configure_rman_backup.yml"
tags: [rman, backup] tags: [rman, backup]
- ansible.builtin.import_tasks: "oracle/configure_tsmclient.yml" - name: configure tsmclient
ansible.builtin.import_tasks: "oracle/configure_tsmclient.yml"
tags: [backup, dsm, tsm, ibmsp] tags: [backup, dsm, tsm, ibmsp]
- ansible.builtin.import_tasks: "oracle/install_sql_scripts.yml" - name: install_sql scripts
ansible.builtin.import_tasks: "oracle/install_sql_scripts.yml"
tags: [scripts] tags: [scripts]
- ansible.builtin.import_tasks: "oracle/configure_system_limits.yml" - name: configure system limits
ansible.builtin.import_tasks: "oracle/configure_system_limits.yml"
tags: [oracle] tags: [oracle]
- ansible.builtin.import_tasks: "oracle/configure_logrotate.yml" - name: configure logrotate
ansible.builtin.import_tasks: "oracle/configure_logrotate.yml"
tags: [oracle, logrotate] tags: [oracle, logrotate]
--- ---
### ROSETTA TASKS ### ROSETTA TASKS
- ansible.builtin.import_tasks: "rosetta/configure_iptables_rosetta.yml" - name: configure iptables Rosetta
ansible.builtin.import_tasks: "rosetta/configure_iptables_rosetta.yml"
tags: [iptables] tags: [iptables]
- ansible.builtin.import_tasks: "rosetta/configure_iptables_qos.yml" - name: configure iptables QoS
ansible.builtin.import_tasks: "rosetta/configure_iptables_qos.yml"
tags: [iptables] tags: [iptables]
- ansible.builtin.import_tasks: "rosetta/configure_rosetta_prerequisites.yml" - name: configure Rosetta prerequisites
ansible.builtin.import_tasks: "rosetta/configure_rosetta_prerequisites.yml"
tags: [rosetta] tags: [rosetta]
- ansible.builtin.import_tasks: "rosetta/install_checkmk_plugins_rosetta.yml" - name: install Check_MK plugins for Rosetta
ansible.builtin.import_tasks: "rosetta/install_checkmk_plugins_rosetta.yml"
tags: [checkmk, monitoring] tags: [checkmk, monitoring]
- ansible.builtin.import_tasks: "rosetta/install_packages.yml" - name: install packages
ansible.builtin.import_tasks: "rosetta/install_packages.yml"
tags: [packages, yum] tags: [packages, yum]
- ansible.builtin.import_tasks: "rosetta/install_checkit_tiff.yml" - name: install checkit_tiff
ansible.builtin.import_tasks: "rosetta/install_checkit_tiff.yml"
tags: [packages, yum, checkit_tiff, cit] tags: [packages, yum, checkit_tiff, cit]
# - ansible.builtin.import_tasks: "rosetta/install_verapdf.yml" # - name: install_verapdf
# ansible.builtin.import_tasks: "rosetta/install_verapdf.yml"
# tags: [packages, yum, verapdf] # tags: [packages, yum, verapdf]
- ansible.builtin.import_tasks: "rosetta/install_mediaconch.yml" - name: install Mediaconch
ansible.builtin.import_tasks: "rosetta/install_mediaconch.yml"
tags: [packages, yum, mediaconch] tags: [packages, yum, mediaconch]
- ansible.builtin.import_tasks: "rosetta/configure_tsmclient.yml" - name: configure tsmclient
ansible.builtin.import_tasks: "rosetta/configure_tsmclient.yml"
tags: [backup] tags: [backup]
- ansible.builtin.import_tasks: "rosetta/install_format_library_xsds.yml" - name: install Format Library XSDs
ansible.builtin.import_tasks: "rosetta/install_format_library_xsds.yml"
tags: [rosetta, xsd] tags: [rosetta, xsd]
- ansible.builtin.import_tasks: "rosetta/install_error_summary.yml" - name: install error summary
ansible.builtin.import_tasks: "rosetta/install_error_summary.yml"
tags: [monitoring, reporting, visibility, errorsummary] tags: [monitoring, reporting, visibility, errorsummary]
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment