ceph-ansible/roles/ceph-nfs/tasks/main.yml

---
# global/common requirement
- name: stop nfs server service
  systemd:
    name: "{{ 'nfs-server' if ansible_os_family == 'RedHat' else 'nfsserver' if ansible_os_family == 'Suse' else 'nfs-kernel-server' if ansible_os_family == 'Debian' }}"
    state: stopped
    enabled: no
  failed_when: false

- name: include pre_requisite_non_container.yml
  include_tasks: pre_requisite_non_container.yml
  when: not containerized_deployment | bool

- name: include pre_requisite_container.yml
  include_tasks: pre_requisite_container.yml
  when: containerized_deployment | bool

- name: include create_rgw_nfs_user.yml
  import_tasks: create_rgw_nfs_user.yml
  when: groups.get(mon_group_name, []) | length > 0

# NOTE (leseb): workaround for issues with ganesha and librgw
- name: include ganesha_selinux_fix.yml
  import_tasks: ganesha_selinux_fix.yml
  when:
    - not containerized_deployment | bool
    - ansible_os_family == 'RedHat'

- name: nfs with external ceph cluster task related
  when:
    - groups.get(mon_group_name, []) | length == 0
    - ceph_nfs_ceph_user is defined
  block:
    - name: create keyring directory
      file:
        path: "/var/lib/ceph/radosgw/{{ cluster }}-rgw.{{ item }}"
        state: directory
        owner: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
        group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
        mode: "0755"
      with_items:
        - "{{ ceph_nfs_ceph_user }}"
        - "{{ ansible_hostname }}"

    - name: set_fact rgw_client_name
      set_fact:
        rgw_client_name: "client.rgw.{{ ceph_nfs_ceph_user }}"

    - name: get client cephx keys
      copy:
        dest: "{{ item.1 }}"
        content: "{{ item.0.content | b64decode }}"
        mode: "{{ item.0.item.get('mode', '0600') }}"
        owner: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
        group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
      with_nested:
        - "{{ hostvars[groups['_filtered_clients'][0]]['slurp_client_keys']['results'] | default([]) }}"
        - ['/var/lib/ceph/radosgw/{{ cluster }}-rgw.{{ ceph_nfs_ceph_user }}/keyring', '/var/lib/ceph/radosgw/{{ cluster }}-rgw.{{ ansible_hostname }}/keyring']
      when:
        - not item.0.get('skipped', False)
        - item.0.item.name == 'client.' + ceph_nfs_ceph_user or item.0.item.name == rgw_client_name

- name: include start_nfs.yml
  import_tasks: start_nfs.yml
Add support for Ceph NFS Gateway Ceph has the ability to export it's filesystem via NFS using Ganesha. Add a ceph-nfs role that will start Ganesha and export the Ceph filesystems. Note that, although support is going in to export RGW via NFS, this is not working yet. Signed-off-by: Daniel Gryniewicz <dang@redhat.com> 2016-05-06 02:20:03 +08:00			`---`
nfs: stop nfs server service in all context This commit moves this task in order to stop the nfs server service regardless the deployment type desired (containerized or non containerized). Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1508506 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2019-10-07 16:34:07 +08:00			`# global/common requirement`
			`- name: stop nfs server service`
			`systemd:`
			`name: "{{ 'nfs-server' if ansible_os_family == 'RedHat' else 'nfsserver' if ansible_os_family == 'Suse' else 'nfs-kernel-server' if ansible_os_family == 'Debian' }}"`
			`state: stopped`
			`enabled: no`
			`failed_when: false`

nfs: fix container setup and re-arrange files Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-27 05:16:43 +08:00			`- name: include pre_requisite_non_container.yml`
don't use "include" to include tasks Use "import_tasks" or "include_tasks" instead. Signed-off-by: Rishabh Dave <ridave@redhat.com> 2018-08-21 22:23:35 +08:00			`include_tasks: pre_requisite_non_container.yml`
ansible: use 'bool' filter on boolean conditionals By running ceph-ansible there are a lot ``[DEPRECATION WARNING]`` like these: ``` [DEPRECATION WARNING]: evaluating containerized_deployment as a bare variable, this behaviour will go away and you might need to add \|bool to the expression in the future. Also see CONDITIONAL_BARE_VARS configuration toggle.. This feature will be removed in version 2.12. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. ``` Now appended ``\| bool`` on a lot of the affected variables. Sometimes the coding style from ``variable\|bool`` changed to ``variable \| bool`` (with spaces at the pipe). Closes: #4022 Signed-off-by: L3D <l3d@c3woc.de> 2019-05-22 16:02:42 +08:00			`when: not containerized_deployment \| bool`
nfs: several fixes - move the file fetch/push to the existing task - rename the include - generate the ganesha template from ansible - re-arrange role structure - re-use tasks for non-container and container - configure keys for non-container and container - fix rgw container key collection; Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-19 22:19:14 +08:00
nfs: fix container setup and re-arrange files Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-27 05:16:43 +08:00			`- name: include pre_requisite_container.yml`
don't use "include" to include tasks Use "import_tasks" or "include_tasks" instead. Signed-off-by: Rishabh Dave <ridave@redhat.com> 2018-08-21 22:23:35 +08:00			`include_tasks: pre_requisite_container.yml`
ansible: use 'bool' filter on boolean conditionals By running ceph-ansible there are a lot ``[DEPRECATION WARNING]`` like these: ``` [DEPRECATION WARNING]: evaluating containerized_deployment as a bare variable, this behaviour will go away and you might need to add \|bool to the expression in the future. Also see CONDITIONAL_BARE_VARS configuration toggle.. This feature will be removed in version 2.12. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. ``` Now appended ``\| bool`` on a lot of the affected variables. Sometimes the coding style from ``variable\|bool`` changed to ``variable \| bool`` (with spaces at the pipe). Closes: #4022 Signed-off-by: L3D <l3d@c3woc.de> 2019-05-22 16:02:42 +08:00			`when: containerized_deployment \| bool`
nfs: fix container setup and re-arrange files Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-27 05:16:43 +08:00
nfs: several fixes - move the file fetch/push to the existing task - rename the include - generate the ganesha template from ansible - re-arrange role structure - re-use tasks for non-container and container - configure keys for non-container and container - fix rgw container key collection; Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-19 22:19:14 +08:00			`- name: include create_rgw_nfs_user.yml`
don't use "include" to include tasks Use "import_tasks" or "include_tasks" instead. Signed-off-by: Rishabh Dave <ridave@redhat.com> 2018-08-21 22:23:35 +08:00			`import_tasks: create_rgw_nfs_user.yml`
nfs: support internal Ganesha with external ceph cluster This commits allows to deploy an internal ganesha with an external ceph cluster. This requires to define `external_cluster_mon_ips` with a comma separated list of external monitors. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1710358 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2019-05-20 21:58:10 +08:00			`when: groups.get(mon_group_name, []) \| length > 0`
nfs: several fixes - move the file fetch/push to the existing task - rename the include - generate the ganesha template from ansible - re-arrange role structure - re-use tasks for non-container and container - configure keys for non-container and container - fix rgw container key collection; Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-19 22:19:14 +08:00
nfs: fix container setup and re-arrange files Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-27 05:16:43 +08:00			`# NOTE (leseb): workaround for issues with ganesha and librgw`
			`- name: include ganesha_selinux_fix.yml`
don't use "include" to include tasks Use "import_tasks" or "include_tasks" instead. Signed-off-by: Rishabh Dave <ridave@redhat.com> 2018-08-21 22:23:35 +08:00			`import_tasks: ganesha_selinux_fix.yml`
nfs: several fixes - move the file fetch/push to the existing task - rename the include - generate the ganesha template from ansible - re-arrange role structure - re-use tasks for non-container and container - configure keys for non-container and container - fix rgw container key collection; Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-19 22:19:14 +08:00			`when:`
ansible: use 'bool' filter on boolean conditionals By running ceph-ansible there are a lot ``[DEPRECATION WARNING]`` like these: ``` [DEPRECATION WARNING]: evaluating containerized_deployment as a bare variable, this behaviour will go away and you might need to add \|bool to the expression in the future. Also see CONDITIONAL_BARE_VARS configuration toggle.. This feature will be removed in version 2.12. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. ``` Now appended ``\| bool`` on a lot of the affected variables. Sometimes the coding style from ``variable\|bool`` changed to ``variable \| bool`` (with spaces at the pipe). Closes: #4022 Signed-off-by: L3D <l3d@c3woc.de> 2019-05-22 16:02:42 +08:00			`- not containerized_deployment \| bool`
nfs: fix container setup and re-arrange files Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-27 05:16:43 +08:00			`- ansible_os_family == 'RedHat'`
Add support for Ceph NFS Gateway Ceph has the ability to export it's filesystem via NFS using Ganesha. Add a ceph-nfs role that will start Ganesha and export the Ceph filesystems. Note that, although support is going in to export RGW via NFS, this is not working yet. Signed-off-by: Daniel Gryniewicz <dang@redhat.com> 2016-05-06 02:20:03 +08:00
nfs: fix nfs with external ceph cluster support This commit refact and fix the nfs deployment with external ceph cluster support. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1814942 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-03-20 03:44:20 +08:00			`- name: nfs with external ceph cluster task related`
nfs: support internal Ganesha with external ceph cluster This commits allows to deploy an internal ganesha with an external ceph cluster. This requires to define `external_cluster_mon_ips` with a comma separated list of external monitors. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1710358 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2019-05-20 21:58:10 +08:00			`when:`
			`- groups.get(mon_group_name, []) \| length == 0`
			`- ceph_nfs_ceph_user is defined`
nfs: fix nfs with external ceph cluster support This commit refact and fix the nfs deployment with external ceph cluster support. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1814942 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-03-20 03:44:20 +08:00			`block:`
			`- name: create keyring directory`
			`file:`
ceph-nfs: fix keyring copy for external ganesha Fix the condition on the keyring copy task that prevent the ganesha keyring to be created in the /var/lib/ceph directory. Also ensure that the directory exists first. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1831285 Signed-off-by: Dimitri Savineau <dsavinea@redhat.com> 2020-05-05 22:46:14 +08:00			`path: "/var/lib/ceph/radosgw/{{ cluster }}-rgw.{{ item }}"`
nfs: fix nfs with external ceph cluster support This commit refact and fix the nfs deployment with external ceph cluster support. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1814942 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-03-20 03:44:20 +08:00			`state: directory`
			`owner: "{{ ceph_uid if containerized_deployment else 'ceph' }}"`
			`group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"`
			`mode: "0755"`
ceph-nfs: fix keyring copy for external ganesha Fix the condition on the keyring copy task that prevent the ganesha keyring to be created in the /var/lib/ceph directory. Also ensure that the directory exists first. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1831285 Signed-off-by: Dimitri Savineau <dsavinea@redhat.com> 2020-05-05 22:46:14 +08:00			`with_items:`
			`- "{{ ceph_nfs_ceph_user }}"`
			`- "{{ ansible_hostname }}"`
nfs: create empty rados index object for nfs standalone This commit creates an empty rados index object even when deploying standalone nfs-ganesha. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1822328 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-04-10 17:05:25 +08:00
			`- name: set_fact rgw_client_name`
			`set_fact:`
			`rgw_client_name: "client.rgw.{{ ceph_nfs_ceph_user }}"`
nfs: fix nfs with external ceph cluster support This commit refact and fix the nfs deployment with external ceph cluster support. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1814942 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-03-20 03:44:20 +08:00
			`- name: get client cephx keys`
			`copy:`
nfs: create empty rados index object for nfs standalone This commit creates an empty rados index object even when deploying standalone nfs-ganesha. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1822328 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-04-10 17:05:25 +08:00			`dest: "{{ item.1 }}"`
			`content: "{{ item.0.content \| b64decode }}"`
			`mode: "{{ item.0.item.get('mode', '0600') }}"`
nfs: fix nfs with external ceph cluster support This commit refact and fix the nfs deployment with external ceph cluster support. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1814942 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-03-20 03:44:20 +08:00			`owner: "{{ ceph_uid if containerized_deployment else 'ceph' }}"`
			`group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"`
nfs: create empty rados index object for nfs standalone This commit creates an empty rados index object even when deploying standalone nfs-ganesha. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1822328 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-04-10 17:05:25 +08:00			`with_nested:`
			`- "{{ hostvars[groups['_filtered_clients'][0]]['slurp_client_keys']['results'] \| default([]) }}"`
			`- ['/var/lib/ceph/radosgw/{{ cluster }}-rgw.{{ ceph_nfs_ceph_user }}/keyring', '/var/lib/ceph/radosgw/{{ cluster }}-rgw.{{ ansible_hostname }}/keyring']`
nfs: fix nfs with external ceph cluster support This commit refact and fix the nfs deployment with external ceph cluster support. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1814942 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-03-20 03:44:20 +08:00			`when:`
nfs: fix 2 typo The condition is missing an index here which makes the playbook failing. Typical error: ``` The conditional check 'not item.get('skipped', False)' failed. The error was: error while evaluating conditional (not item.get('skipped', False)): 'list object' has no attribute 'get'", ``` Also, adds the missing '/keyring' on the `exec_cmd_nfs` fact. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1831342 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2020-04-30 22:21:14 +08:00			`- not item.0.get('skipped', False)`
ceph-nfs: fix keyring copy for external ganesha Fix the condition on the keyring copy task that prevent the ganesha keyring to be created in the /var/lib/ceph directory. Also ensure that the directory exists first. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1831285 Signed-off-by: Dimitri Savineau <dsavinea@redhat.com> 2020-05-05 22:46:14 +08:00			`- item.0.item.name == 'client.' + ceph_nfs_ceph_user or item.0.item.name == rgw_client_name`
nfs: support internal Ganesha with external ceph cluster This commits allows to deploy an internal ganesha with an external ceph cluster. This requires to define `external_cluster_mon_ips` with a comma separated list of external monitors. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1710358 Signed-off-by: Guillaume Abrioux <gabrioux@redhat.com> 2019-05-20 21:58:10 +08:00
nfs: fix container setup and re-arrange files Signed-off-by: Sébastien Han <seb@redhat.com> 2017-09-27 05:16:43 +08:00			`- name: include start_nfs.yml`
don't use "include" to include tasks Use "import_tasks" or "include_tasks" instead. Signed-off-by: Rishabh Dave <ridave@redhat.com> 2018-08-21 22:23:35 +08:00			`import_tasks: start_nfs.yml`