mirror of https://github.com/ceph/ceph-ansible.git
commit
2807258ebf
|
@ -35,6 +35,7 @@
|
||||||
# We want this check to be run only on one mon
|
# We want this check to be run only on one mon
|
||||||
- name: check if {{ fetch_directory }} directory exists
|
- name: check if {{ fetch_directory }} directory exists
|
||||||
local_action: stat path="{{ fetch_directory }}/monitor_keyring.conf"
|
local_action: stat path="{{ fetch_directory }}/monitor_keyring.conf"
|
||||||
|
become: false
|
||||||
register: monitor_keyring_conf
|
register: monitor_keyring_conf
|
||||||
run_once: true
|
run_once: true
|
||||||
|
|
||||||
|
@ -71,6 +72,7 @@
|
||||||
|
|
||||||
- name: write initial mon keyring in {{ fetch_directory }}/monitor_keyring.conf if it doesn't exist
|
- name: write initial mon keyring in {{ fetch_directory }}/monitor_keyring.conf if it doesn't exist
|
||||||
local_action: shell echo {{ monitor_keyring.stdout }} | tee {{ fetch_directory }}/monitor_keyring.conf
|
local_action: shell echo {{ monitor_keyring.stdout }} | tee {{ fetch_directory }}/monitor_keyring.conf
|
||||||
|
become: false
|
||||||
when:
|
when:
|
||||||
- test_initial_monitor_keyring.rc == 0
|
- test_initial_monitor_keyring.rc == 0
|
||||||
|
|
||||||
|
|
|
@ -6,6 +6,21 @@
|
||||||
path: /etc/ceph/{{ cluster }}.client.admin.keyring
|
path: /etc/ceph/{{ cluster }}.client.admin.keyring
|
||||||
when: cephx
|
when: cephx
|
||||||
|
|
||||||
|
- name: test if initial mon keyring is in mon kv store
|
||||||
|
command: ceph --cluster {{ cluster }} config-key get initial_mon_keyring
|
||||||
|
changed_when: false
|
||||||
|
failed_when: false
|
||||||
|
always_run: true
|
||||||
|
run_once: true
|
||||||
|
register: is_initial_mon_keyring_in_kv
|
||||||
|
|
||||||
|
- name: put initial mon keyring in mon kv store
|
||||||
|
command: ceph --cluster {{ cluster }} config-key put initial_mon_keyring {{ monitor_keyring.stdout }}
|
||||||
|
changed_when: false
|
||||||
|
always_run: true
|
||||||
|
run_once: true
|
||||||
|
when: is_initial_mon_keyring_in_kv.rc != 0
|
||||||
|
|
||||||
- name: create ceph rest api keyring when mon is not containerized
|
- name: create ceph rest api keyring when mon is not containerized
|
||||||
command: ceph --cluster {{ cluster }} auth get-or-create client.restapi osd 'allow *' mon 'allow *' -o /etc/ceph/{{ cluster }}.client.restapi.keyring
|
command: ceph --cluster {{ cluster }} auth get-or-create client.restapi osd 'allow *' mon 'allow *' -o /etc/ceph/{{ cluster }}.client.restapi.keyring
|
||||||
args:
|
args:
|
||||||
|
|
Loading…
Reference in New Issue