--- - name: create rados gateway directories file: path: "{{ item }}" state: directory owner: "{{ dir_owner }}" group: "{{ dir_group }}" mode: "{{ dir_mode }}" with_items: - /var/lib/ceph/bootstrap-rgw - /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }} - name: copy rados gateway bootstrap key copy: src: "{{ fetch_directory }}/{{ fsid }}{{ item.name }}" dest: "{{ item.name }}" owner: "{{ key_owner }}" group: "{{ key_group }}" mode: "{{ key_mode }}" with_items: - { name: /var/lib/ceph/bootstrap-rgw/ceph.keyring, copy_key: true } - { name: /etc/ceph/ceph.client.admin.keyring, copy_key: "{{ copy_admin_key }}" } when: cephx and item.copy_key|bool - name: create rados gateway keyring command: ceph --cluster ceph --name client.bootstrap-rgw --keyring /var/lib/ceph/bootstrap-rgw/ceph.keyring auth get-or-create client.rgw.{{ ansible_hostname }} osd 'allow rwx' mon 'allow rw' -o /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/keyring args: creates: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/keyring changed_when: false when: cephx - name: set rados gateway key permissions (for or after the infernalis release) file: path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/keyring mode: "{{ key_mode }}" owner: "{{ key_owner }}" group: "{{ key_group }}" when: cephx - name: activate rados gateway with upstart (for or after infernalis release) file: path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/{{ item }} state: touch owner: ceph group: ceph mode: 0644 with_items: - done - upstart changed_when: false when: ansible_distribution == "Ubuntu" and is_ceph_infernalis - name: activate rados gateway with upstart file: path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/{{ item }} state: touch owner: "{{ activate_file_owner }}" group: "{{ activate_file_group }}" mode: "{{ activate_file_mode }}" with_items: - done - upstart changed_when: false when: ansible_distribution == "Ubuntu" - name: activate rados gateway with sysvinit file: path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/{{ item }} state: touch owner: "{{ activate_file_owner }}" group: "{{ activate_file_group }}" mode: "{{ activate_file_mode }}" with_items: - done - sysvinit changed_when: false when: ansible_distribution != "Ubuntu" - name: generate rados gateway sudoers file template: src: ceph.j2 dest: /etc/sudoers.d/ceph owner: root group: root mode: 0400 when: ansible_distribution != "Ubuntu"