ansible/role_keepalived
2
Fork 0
Code Pull Requests Releases Activity

Compare commits

base: ansible:main
Branches Tags
ansible:main
..
compare: ansible:54e2b70bd60c3096958714add50f63e6efed0ad4
Branches Tags
ansible:main

7 Commits
main ... 54e2b70bd6

Author SHA1 Message Date
Alexandre Le Gall
54e2b70bd6 [EVO] Ajouter la source de l'unicast 2023-09-26 17:12:56 +02:00
pulsar89.5
0efc0c6887 [EVO] Ajouter les scripts de notifications 2023-05-02 15:18:09 +02:00
pulsar89.5
954528bd4d [EVO] Ajouter la gestion de l'unicast 2023-04-21 17:28:41 +02:00
pulsar89.5
2ae07d3c35 [FIX] Mauvais nom de rôle dans les entêtes 2023-04-12 17:28:52 +02:00
pulsar89.5
225a8c8021 [DOC] Nettoyage 2023-04-12 16:58:17 +02:00
pu!s@r
570ceda411 Merge pull request '[INFO] Création du rôle' (#1) from alpha into master 
Reviewed-on: #1
 2023-04-12 14:53:47 +00:00
pulsar89.5
434ec3ca1f [INFO] Création du rôle 2023-04-12 16:53:19 +02:00
10 changed files with 50 additions and 115 deletions
Expand all files Collapse all files

11
defaults/main.yml
View File

@@ -13,22 +13,17 @@ keepalived_ipv6: ""
keepalived_peers: []
keepalived_notify_enable: false
keepalived_notify_pre: {}
keepalived_notify_is_master: {}
keepalived_notify_is_backup: {}
keepalived_notify_is_fault: {}
keepalived_notify_by_default: {}
keepalived_notify_script_enabled: false
keepalived_track_scripts: []
# Example:
# Exemple:
# - name: check_haproxy_8080
# command: /usr/bin/nc -zv 127.0.0.1 8080
# - name: check_haproxy_8081
# command: /usr/bin/nc -zv 127.0.0.1 8081
keepalived_track_processes: []
# Example:
# Exemple:
# - name: check_haproxy
# search: /usr/sbin/haproxy
# quorum: 2

2
handlers/main.yml
View File

@@ -1,7 +1,7 @@
---
# handlers file for keepalived
- name: Restart keepalived.service
- name: Redémarrer keepalived.service
become: true
ansible.builtin.systemd:
state: restarted

9
meta/main.yml
View File

@@ -1,7 +1,7 @@
galaxy_info:
namespace: ykn
author: pulsar89.5
description: Deploy keepalived
description: Rôle de déploiement de keepalived
license: GPL-3.0-or-later
@@ -14,3 +14,10 @@ galaxy_info:
dependencies:
- role: users
vars:
users_role_keepalived:
- name: keepalived_script
comment: "Dedicated user for keepalived script"
update_password: on_create
password_lock: true
shell: /bin/bash

37
tasks/configuration.yml
View File

@@ -1,37 +0,0 @@
---
# tasks file for keepalived
- name: Deploy configuration
ansible.builtin.template:
src: keepalived.j2
dest: /etc/keepalived/keepalived.conf
owner: root
group: root
mode: u=rw,g=r,o=r
become: true
notify: Restart keepalived.service
- name: Deploy sudoers configuration
ansible.builtin.template:
src: sudoers.j2
dest: /etc/sudoers.d/keepalived_script
owner: root
group: keepalived_script
mode: u=rwx,g=rx,o=
validate: /usr/sbin/visudo -cf %s
when:
- keepalived_notify_enable
- keepalived_sudoers_cmd | length > 0
become: true
notify: Restart keepalived.service
- name: Deploy notify script
ansible.builtin.template:
src: notify.bash.j2
dest: /etc/keepalived/notify.bash
owner: root
group: keepalived_script
mode: u=rwx,g=rx,o=
when: keepalived_notify_enable
become: true
notify: Restart keepalived.service

7
tasks/installation.yml
View File

@@ -1,7 +0,0 @@
---
# tasks file for keepalived
- name: Install keepalived
ansible.builtin.apt:
name: keepalived
become: true

41
tasks/main.yml
View File

@@ -1,10 +1,39 @@
---
# tasks file for keepalived
- name: Import installation tasks
ansible.builtin.import_tasks:
file: installation.yml
- name: Installer le paquet
ansible.builtin.apt:
name: keepalived
become: true
- name: Import configuration tasks
ansible.builtin.import_tasks:
file: configuration.yml
- name: Déployer la configuration
ansible.builtin.template:
owner: root
group: root
mode: u=rw,g=r,o=r
src: keepalived.j2
dest: /etc/keepalived/keepalived.conf
become: true
notify: Redémarrer keepalived.service
- name: Déployer les scripts
ansible.builtin.copy:
src: keepalived/notify.sh
dest: /etc/keepalived/
owner: keepalived_script
group: keepalived_script
mode: u=rx,g=rx,o=
when: keepalived_notify_script_enabled
become: true
notify: Redémarrer keepalived.service
- name: Déployer le fichier de configuration de sudoers
ansible.builtin.copy:
src: keepalived/sudoers
dest: /etc/sudoers.d/keepalived
owner: root
group: root
mode: u=rw,g=r,o=r
validate: /usr/sbin/visudo -cf %s
when: "'keepalived/sudoers' is file"
become: true

6
templates/keepalived.j2
View File

@@ -20,7 +20,7 @@ global_defs {
{% for script in keepalived_track_scripts %}
vrrp_script {{ script.name }} {
script "{{ script.command }}"
script {{ script.command }}
interval {{ script.interval }}
}
{% endfor %}
@@ -64,8 +64,8 @@ vrrp_instance VIP_{{ keepalived_uid }} {
}
{% endif %}
{% if keepalived_notify_enable %}
notify /etc/keepalived/notify.bash
{% if keepalived_notify_script_enabled %}
notify /etc/keepalived/notify.sh
{% endif %}
{% if keepalived_track_scripts | length > 0 %}

38
templates/notify.bash.j2
View File

@@ -1,38 +0,0 @@
#!/bin/bash
# {{ ansible_managed }}
TYPE=$1
NAME=$2
STATE=$3
{% if keepalived_notify_pre | length > 0 %}
{{ keepalived_notify_pre }}
{% endif %}
# Use keepalived state
case $STATE in
{% if keepalived_notify_is_master | length > 0 %}
"MASTER")
{{ keepalived_notify_is_master | indent(4) }}
exit 0
;;
{% endif %}
{% if keepalived_notify_is_backup | length > 0 %}
"BACKUP")
{{ keepalived_notify_is_backup | indent(4) }}
exit 0
;;
{% endif %}
{% if keepalived_notify_is_fault | length > 0 %}
"FAULT")
{{ keepalived_notify_is_fault | indent(4) }}
exit 0
;;
{% endif %}
{% if keepalived_notify_by_default | length > 0 %}
*)
{{ keepalived_notify_by_default | indent(4) }}
exit 1
;;
{% endif %}
esac

5
templates/sudoers.j2
View File

@@ -1,5 +0,0 @@
# {{ ansible_managed }}
{% for cmd in keepalived_sudoers_cmd %}
keepalived_script ALL=(ALL) NOPASSWD:{{ cmd }}
{% endfor %}

9
vars/main.yml
View File

@@ -1,9 +0,0 @@
---
# vars file for keepalived
users:
- name: keepalived_script
comment: "Dedicated user for keepalived script"
update_password: on_create
password_lock: true
shell: /bin/bash