ansible/role_keepalived
2
Fork 0
Code Pull Requests Releases Activity

Compare commits

base: ansible:main
Branches Tags
ansible:main
..
compare: ansible:c342aa9438122da05298b41f6c044df59941f083
Branches Tags
ansible:main

13 Commits
main ... c342aa9438

Author SHA1 Message Date
pulsar89.5
c342aa9438 Merge pull request 'cleanPlaybook' (#3) from cleanPlaybook into master 
Reviewed-on: #3
 2024-05-06 22:48:12 +00:00
pulsar89.5
f3df32e2c2 fix: Add a dependency to nftables 2024-05-07 00:47:00 +02:00
Alexandre Le Gall
c20f87e83a [EVO] Nettoyer le playbook 2023-10-11 22:16:35 +02:00
pulsar89.5
0d4cd47771 Merge pull request 'unicast_peer' (#2) from unicast_peer into master 
Reviewed-on: #2
 2023-09-26 15:13:09 +00:00
Alexandre Le Gall
54e2b70bd6 [EVO] Ajouter la source de l'unicast 2023-09-26 17:12:56 +02:00
pulsar89.5
ef4a4fcba4 [CONF] Créer l'utilisateur dédié aux script 2023-05-24 11:11:37 +02:00
pulsar89.5
006d302f61 [FIX] Mettre entre guillemet la commande à exécuter 2023-05-23 12:48:01 +02:00
pulsar89.5
0efc0c6887 [EVO] Ajouter les scripts de notifications 2023-05-02 15:18:09 +02:00
pulsar89.5
954528bd4d [EVO] Ajouter la gestion de l'unicast 2023-04-21 17:28:41 +02:00
pulsar89.5
2ae07d3c35 [FIX] Mauvais nom de rôle dans les entêtes 2023-04-12 17:28:52 +02:00
pulsar89.5
225a8c8021 [DOC] Nettoyage 2023-04-12 16:58:17 +02:00
pu!s@r
570ceda411 Merge pull request '[INFO] Création du rôle' (#1) from alpha into master 
Reviewed-on: #1
 2023-04-12 14:53:47 +00:00
pulsar89.5
434ec3ca1f [INFO] Création du rôle 2023-04-12 16:53:19 +02:00
7 changed files with 50 additions and 63 deletions
Expand all files Collapse all files

4
defaults/main.yml
View File

@@ -21,14 +21,14 @@ keepalived_notify_is_fault: {}
keepalived_notify_by_default: {} keepalived_notify_by_default: {}
keepalived_track_scripts: [] keepalived_track_scripts: []
# Example: # Exemple:
# - name: check_haproxy_8080 # - name: check_haproxy_8080
# command: /usr/bin/nc -zv 127.0.0.1 8080 # command: /usr/bin/nc -zv 127.0.0.1 8080
# - name: check_haproxy_8081 # - name: check_haproxy_8081
# command: /usr/bin/nc -zv 127.0.0.1 8081 # command: /usr/bin/nc -zv 127.0.0.1 8081
keepalived_track_processes: [] keepalived_track_processes: []
# Example: # Exemple:
# - name: check_haproxy # - name: check_haproxy
# search: /usr/sbin/haproxy # search: /usr/sbin/haproxy
# quorum: 2 # quorum: 2

2
handlers/main.yml
View File

@@ -1,7 +1,7 @@
--- ---
# handlers file for keepalived # handlers file for keepalived
- name: Restart keepalived.service - name: Redémarrer keepalived.service
become: true become: true
ansible.builtin.systemd: ansible.builtin.systemd:
state: restarted state: restarted

10
meta/main.yml
View File

@@ -1,7 +1,7 @@
galaxy_info: galaxy_info:
namespace: ykn namespace: ykn
author: pulsar89.5 author: pulsar89.5
description: Deploy keepalived description: Rôle de déploiement de keepalived
license: GPL-3.0-or-later license: GPL-3.0-or-later
@@ -13,4 +13,12 @@ galaxy_info:
- all - all
dependencies: dependencies:
- role: nftables
- role: users - role: users
vars:
users_role_keepalived:
- name: keepalived_script
comment: "Dedicated user for keepalived script"
update_password: on_create
password_lock: true
shell: /bin/bash

37
tasks/configuration.yml
View File

@@ -1,37 +0,0 @@
---
# tasks file for keepalived
- name: Deploy configuration
ansible.builtin.template:
src: keepalived.j2
dest: /etc/keepalived/keepalived.conf
owner: root
group: root
mode: u=rw,g=r,o=r
become: true
notify: Restart keepalived.service
- name: Deploy sudoers configuration
ansible.builtin.template:
src: sudoers.j2
dest: /etc/sudoers.d/keepalived_script
owner: root
group: keepalived_script
mode: u=rwx,g=rx,o=
validate: /usr/sbin/visudo -cf %s
when:
- keepalived_notify_enable
- keepalived_sudoers_cmd | length > 0
become: true
notify: Restart keepalived.service
- name: Deploy notify script
ansible.builtin.template:
src: notify.bash.j2
dest: /etc/keepalived/notify.bash
owner: root
group: keepalived_script
mode: u=rwx,g=rx,o=
when: keepalived_notify_enable
become: true
notify: Restart keepalived.service

7
tasks/installation.yml
View File

@@ -1,7 +0,0 @@
---
# tasks file for keepalived
- name: Install keepalived
ansible.builtin.apt:
name: keepalived
become: true

44
tasks/main.yml
View File

@@ -1,10 +1,42 @@
--- ---
# tasks file for keepalived # tasks file for keepalived
- name: Import installation tasks - name: Installer le paquet
ansible.builtin.import_tasks: ansible.builtin.apt:
file: installation.yml name: keepalived
become: true
- name: Import configuration tasks - name: Déployer la configuration
ansible.builtin.import_tasks: ansible.builtin.template:
file: configuration.yml src: keepalived.j2
dest: /etc/keepalived/keepalived.conf
owner: root
group: root
mode: u=rw,g=r,o=r
become: true
notify: Redémarrer keepalived.service
- name: Déployer le fichier de configuration de sudoers
ansible.builtin.template:
src: sudoers.j2
dest: /etc/sudoers.d/keepalived_script
owner: root
group: keepalived_script
mode: u=rwx,g=rx,o=
validate: /usr/sbin/visudo -cf %s
when:
- keepalived_notify_enable
- keepalived_sudoers_cmd | length > 0
become: true
notify: Redémarrer keepalived.service
- name: Déployer les scripts
ansible.builtin.template:
src: notify.bash.j2
dest: /etc/keepalived/notify.bash
owner: root
group: keepalived_script
mode: u=rwx,g=rx,o=
when: keepalived_notify_enable
become: true
notify: Redémarrer keepalived.service

9
vars/main.yml
View File

@@ -1,9 +0,0 @@
---
# vars file for keepalived
users:
- name: keepalived_script
comment: "Dedicated user for keepalived script"
update_password: on_create
password_lock: true
shell: /bin/bash