feat: remove become from role
All checks were successful
test / Linting (push) Successful in 35s
test / Molecule tests (default, debian12) (push) Successful in 1m14s
test / Molecule tests (default, ubuntu2004) (push) Successful in 1m29s
test / Molecule tests (default, ubuntu2204) (push) Successful in 1m22s
test / Molecule tests (with_custom_config, debian11) (push) Successful in 1m15s
test / Molecule tests (with_custom_config, ubuntu2004) (push) Successful in 1m28s
test / Molecule tests (with_custom_config, ubuntu2204) (push) Successful in 1m31s
test / Molecule tests (with_custom_config, debian12) (push) Successful in 3m14s
test / Molecule tests (default, debian11) (push) Successful in 1m11s
All checks were successful
test / Linting (push) Successful in 35s
test / Molecule tests (default, debian12) (push) Successful in 1m14s
test / Molecule tests (default, ubuntu2004) (push) Successful in 1m29s
test / Molecule tests (default, ubuntu2204) (push) Successful in 1m22s
test / Molecule tests (with_custom_config, debian11) (push) Successful in 1m15s
test / Molecule tests (with_custom_config, ubuntu2004) (push) Successful in 1m28s
test / Molecule tests (with_custom_config, ubuntu2204) (push) Successful in 1m31s
test / Molecule tests (with_custom_config, debian12) (push) Successful in 3m14s
test / Molecule tests (default, debian11) (push) Successful in 1m11s
This commit is contained in:
parent
6a0feba8d8
commit
90a958fba0
@ -3,20 +3,17 @@
|
||||
- name: "Reload service file"
|
||||
ansible.builtin.systemd:
|
||||
daemon_reload: true
|
||||
become: true
|
||||
listen: "systemctl-daemon-reload"
|
||||
|
||||
- name: "Enable consul-certs service"
|
||||
ansible.builtin.service:
|
||||
name: consul-certs
|
||||
enabled: true
|
||||
become: true
|
||||
listen: "systemctl-enable-consul-certs"
|
||||
|
||||
- name: "Start consul-certs service"
|
||||
ansible.builtin.service:
|
||||
name: consul-certs
|
||||
state: restarted
|
||||
become: true
|
||||
listen: "systemctl-restart-consul-certs"
|
||||
when: renew_consul_certificates_start_service
|
||||
|
||||
@ -1,6 +1,7 @@
|
||||
---
|
||||
- name: Converge
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Include ednxzu.renew_consul_certificates"
|
||||
ansible.builtin.include_role:
|
||||
|
||||
@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Prepare
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Create group consul"
|
||||
ansible.builtin.group:
|
||||
name: "consul"
|
||||
state: present
|
||||
become: true
|
||||
|
||||
- name: "Create user consul"
|
||||
ansible.builtin.user:
|
||||
@ -14,4 +14,3 @@
|
||||
group: "consul"
|
||||
shell: /bin/false
|
||||
state: present
|
||||
become: true
|
||||
|
||||
@ -2,6 +2,7 @@
|
||||
- name: Verify
|
||||
hosts: all
|
||||
gather_facts: true
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Test: directory /etc/consul-template.d/consul"
|
||||
block:
|
||||
@ -19,7 +20,6 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/consul-template.d/consul/consul_config.hcl"
|
||||
register: slurp_etc_consul_template_d_consul_consul_config_hcl
|
||||
become: true
|
||||
|
||||
- name: "Verify directory /etc/consul-template.d/consul"
|
||||
ansible.builtin.assert:
|
||||
@ -60,7 +60,6 @@
|
||||
src: "{{ item.path }}"
|
||||
loop: "{{ find_etc_consul_template_d_consul_templates.files }}"
|
||||
register: slurp_etc_consul_template_d_nomad_templates
|
||||
become: true
|
||||
|
||||
- name: "Verify file /etc/consul-template.d/consul/templates/consul_ca.pem.tpl"
|
||||
vars:
|
||||
@ -125,9 +124,8 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/systemd/system/consul-certs.service"
|
||||
register: slurp_etc_systemd_system_consul_certs_service
|
||||
become: true
|
||||
|
||||
- name: "Verify service nomad"
|
||||
- name: "Verify service consul-certs"
|
||||
ansible.builtin.assert:
|
||||
that:
|
||||
- stat_etc_systemd_system_consul_certs_service.stat.exists
|
||||
|
||||
@ -1,6 +1,7 @@
|
||||
---
|
||||
- name: Converge
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Include ednxzu.renew_consul_certificates"
|
||||
ansible.builtin.include_role:
|
||||
|
||||
@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Prepare
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Create group consul"
|
||||
ansible.builtin.group:
|
||||
name: "consul"
|
||||
state: present
|
||||
become: true
|
||||
|
||||
- name: "Create user consul"
|
||||
ansible.builtin.user:
|
||||
@ -14,4 +14,3 @@
|
||||
group: "consul"
|
||||
shell: /bin/false
|
||||
state: present
|
||||
become: true
|
||||
|
||||
@ -2,6 +2,7 @@
|
||||
- name: Verify
|
||||
hosts: all
|
||||
gather_facts: true
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Test: directory /etc/consul-template.d/consul"
|
||||
block:
|
||||
@ -19,7 +20,6 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/consul-template.d/consul/consul_config.hcl"
|
||||
register: slurp_etc_consul_template_d_consul_consul_config_hcl
|
||||
become: true
|
||||
|
||||
- name: "Verify directory /etc/consul-template.d/consul"
|
||||
ansible.builtin.assert:
|
||||
@ -60,7 +60,6 @@
|
||||
src: "{{ item.path }}"
|
||||
loop: "{{ find_etc_consul_template_d_consul_templates.files }}"
|
||||
register: slurp_etc_consul_template_d_nomad_templates
|
||||
become: true
|
||||
|
||||
- name: "Verify file /etc/consul-template.d/consul/templates/consul_ca.pem.tpl"
|
||||
vars:
|
||||
@ -125,9 +124,8 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/systemd/system/consul-certs.service"
|
||||
register: slurp_etc_systemd_system_consul_certs_service
|
||||
become: true
|
||||
|
||||
- name: "Verify service nomad"
|
||||
- name: "Verify service consul-certs"
|
||||
ansible.builtin.assert:
|
||||
that:
|
||||
- stat_etc_systemd_system_consul_certs_service.stat.exists
|
||||
|
||||
@ -1,6 +1,7 @@
|
||||
---
|
||||
- name: Converge
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Include ednxzu.renew_consul_certificates"
|
||||
ansible.builtin.include_role:
|
||||
|
||||
@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Prepare
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Create group consul"
|
||||
ansible.builtin.group:
|
||||
name: "consul"
|
||||
state: present
|
||||
become: true
|
||||
|
||||
- name: "Create user consul"
|
||||
ansible.builtin.user:
|
||||
@ -14,4 +14,3 @@
|
||||
group: "consul"
|
||||
shell: /bin/false
|
||||
state: present
|
||||
become: true
|
||||
|
||||
@ -2,6 +2,7 @@
|
||||
- name: Verify
|
||||
hosts: all
|
||||
gather_facts: true
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Test: directory /etc/consul-template.d/consul"
|
||||
block:
|
||||
@ -19,7 +20,6 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/consul-template.d/consul/consul_config.hcl"
|
||||
register: slurp_etc_consul_template_d_consul_consul_config_hcl
|
||||
become: true
|
||||
|
||||
- name: "Verify directory /etc/consul-template.d/consul"
|
||||
ansible.builtin.assert:
|
||||
@ -60,7 +60,6 @@
|
||||
src: "{{ item.path }}"
|
||||
loop: "{{ find_etc_consul_template_d_consul_templates.files }}"
|
||||
register: slurp_etc_consul_template_d_nomad_templates
|
||||
become: true
|
||||
|
||||
- name: "Verify file /etc/consul-template.d/consul/templates/consul_ca.pem.tpl"
|
||||
vars:
|
||||
@ -125,9 +124,8 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/systemd/system/consul-certs.service"
|
||||
register: slurp_etc_systemd_system_consul_certs_service
|
||||
become: true
|
||||
|
||||
- name: "Verify service nomad"
|
||||
- name: "Verify service consul-certs"
|
||||
ansible.builtin.assert:
|
||||
that:
|
||||
- stat_etc_systemd_system_consul_certs_service.stat.exists
|
||||
|
||||
@ -1,6 +1,7 @@
|
||||
---
|
||||
- name: Converge
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Include ednxzu.renew_consul_certificates"
|
||||
ansible.builtin.include_role:
|
||||
|
||||
@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Prepare
|
||||
hosts: all
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Create group consul"
|
||||
ansible.builtin.group:
|
||||
name: "consul"
|
||||
state: present
|
||||
become: true
|
||||
|
||||
- name: "Create user consul"
|
||||
ansible.builtin.user:
|
||||
@ -14,4 +14,3 @@
|
||||
group: "consul"
|
||||
shell: /bin/false
|
||||
state: present
|
||||
become: true
|
||||
|
||||
@ -2,6 +2,7 @@
|
||||
- name: Verify
|
||||
hosts: all
|
||||
gather_facts: true
|
||||
become: true
|
||||
tasks:
|
||||
- name: "Test: directory /etc/consul-template.d/consul"
|
||||
block:
|
||||
@ -19,7 +20,6 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/consul-template.d/consul/consul_config.hcl"
|
||||
register: slurp_etc_consul_template_d_consul_consul_config_hcl
|
||||
become: true
|
||||
|
||||
- name: "Verify directory /etc/consul-template.d/consul"
|
||||
ansible.builtin.assert:
|
||||
@ -60,7 +60,6 @@
|
||||
src: "{{ item.path }}"
|
||||
loop: "{{ find_etc_consul_template_d_consul_templates.files }}"
|
||||
register: slurp_etc_consul_template_d_nomad_templates
|
||||
become: true
|
||||
|
||||
- name: "Verify file /etc/consul-template.d/consul/templates/consul_ca.pem.tpl"
|
||||
vars:
|
||||
@ -125,9 +124,8 @@
|
||||
ansible.builtin.slurp:
|
||||
src: "/etc/systemd/system/consul-certs.service"
|
||||
register: slurp_etc_systemd_system_consul_certs_service
|
||||
become: true
|
||||
|
||||
- name: "Verify service nomad"
|
||||
- name: "Verify service consul-certs"
|
||||
ansible.builtin.assert:
|
||||
that:
|
||||
- stat_etc_systemd_system_consul_certs_service.stat.exists
|
||||
|
||||
@ -1,7 +1,6 @@
|
||||
---
|
||||
# task/configure file for renew_consul_certificates
|
||||
- name: "Configure files for consul certificate renewal"
|
||||
become: true
|
||||
notify:
|
||||
- "systemctl-enable-consul-certs"
|
||||
- "systemctl-restart-consul-certs"
|
||||
@ -39,7 +38,6 @@
|
||||
mode: '0600'
|
||||
|
||||
- name: "Configure consul-certs systemd service"
|
||||
become: true
|
||||
notify:
|
||||
- "systemctl-daemon-reload"
|
||||
block:
|
||||
|
||||
@ -7,7 +7,6 @@
|
||||
owner: "{{ renew_consul_certificates_consul_user }}"
|
||||
group: "{{ renew_consul_certificates_consul_group }}"
|
||||
mode: '0755'
|
||||
become: true
|
||||
|
||||
- name: "Create directory templates directory in {{ renew_consul_certificates_config_dir }}"
|
||||
ansible.builtin.file:
|
||||
@ -16,7 +15,6 @@
|
||||
owner: "{{ renew_consul_certificates_consul_user }}"
|
||||
group: "{{ renew_consul_certificates_consul_group }}"
|
||||
mode: '0755'
|
||||
become: true
|
||||
|
||||
- name: "Ensure certificate/key directory(ies) exist(s)"
|
||||
ansible.builtin.file:
|
||||
@ -25,7 +23,6 @@
|
||||
owner: "{{ renew_consul_certificates_consul_user }}"
|
||||
group: "{{ renew_consul_certificates_consul_group }}"
|
||||
mode: '0755'
|
||||
become: true
|
||||
loop:
|
||||
- "{{ renew_consul_certificates_cert_dest }}"
|
||||
- "{{ renew_consul_certificates_key_dest }}"
|
||||
|
||||
Loading…
Reference in New Issue
Block a user