Name: ansible-role-pulp-secret
Owner: Project Atomic
Description: Ansible role that imports Pulp keys from local/remote filesystem into OpenShift.
Created: 2015-09-10 15:23:15.0
Updated: 2018-03-22 09:56:07.0
Pushed: 2016-05-02 16:57:45.0
Homepage: null
Size: 8
Language: null
GitHub Committers
| User | Most Recent Commit | # Commits |
|---|
Other Committers
| User | Most Recent Commit | # Commits |
|---|
This role imports Pulp keys from filesystem into OpenShift. See the OSBS documentation for more information.
This role is part of ansible-osbs playbook for deploying OpenShift build service. Please refer to that github repository for documentation and issue tracker.
The role imports the keys from the machine running ansible. You have to set the
pulp_secret_local_dir variable to the directory containing the certificate
and the key.
pulp_secret_local_dir: /home/mmilata/.pulp
The name of the secret in OpenShift is defined by the pulp_secret_name
variable.
pulp_secret_name: pulpsecret
The secret has to be associated with a service account. This service account
can be set by the pulp_secret_service_account variable.
pulp_secret_service_account: builder
We need a kubeconfig file on the remote machine in order to talk to OpenShift.
Its location is contained in the pulp_secret_kubeconfig.
pulp_secret_kubeconfig: /etc/origin/master/admin.kubeconfig
Following playbook imports the keys from my home directory on the machine where ansible is executed. You may need to run something like this after the current set of keys expires.
- hosts: builders
roles:
- role: pulp-secret
pulp_secret_local_dir: /home/mmilata/.pulp
BSD
Martin Milata <mmilata@redhat.com>