---
- name: create rados gateway directories (for or after infernalis release)
  file:
    path: "{{ item }}"
    state: directory
    owner: ceph
    group: ceph
    mode: 0755
  with_items:
    - /var/lib/ceph/bootstrap-rgw
    - /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}
  when: is_ceph_infernalis

- name: create rados gateway directories (before infernalis release)
  file:
    path: "{{ item }}"
    state: directory
    owner: root
    group: root
    mode: 0755
  with_items:
    - /var/lib/ceph/bootstrap-rgw
    - /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}
  when: not is_ceph_infernalis

- name: copy rados gateway bootstrap key (for or after infernalis release)
  copy:
    src: "{{ fetch_directory }}/{{ fsid }}/var/lib/ceph/bootstrap-rgw/ceph.keyring"
    dest: /var/lib/ceph/bootstrap-rgw/ceph.keyring
    owner: ceph
    group: ceph
    mode: 0600
  when:
    cephx and
    is_ceph_infernalis

- name: copy rados gateway bootstrap key (before infernalis release)
  copy:
    src: "{{ fetch_directory }}/{{ fsid }}/var/lib/ceph/bootstrap-rgw/ceph.keyring"
    dest: /var/lib/ceph/bootstrap-rgw/ceph.keyring
    owner: root
    group: root
    mode: 0600
  when:
    cephx and
    not is_ceph_infernalis

- name: create rados gateway keyring
  command: ceph --cluster ceph --name client.bootstrap-rgw --keyring /var/lib/ceph/bootstrap-rgw/ceph.keyring auth get-or-create client.rgw.{{ ansible_hostname }} osd 'allow rwx' mon 'allow rw' -o /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/keyring
  args:
    creates: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/keyring
  changed_when: false
  when: cephx

- name: set rados gateway key permissions (for or after the infernalis release)
  file:
    path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/keyring
    mode: 0600
    owner: ceph
    group: ceph
  when:
    cephx and
    is_ceph_infernalis

- name: set rados gateway key permissions (before infernalis release)
  file:
    path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/keyring
    mode: 0600
    owner: root
    group: root
  when:
    cephx and
    not is_ceph_infernalis

- name: activate rados gateway with upstart (for or after infernalis release)
  file:
    path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/{{ item }}
    state: touch
    owner: ceph
    group: ceph
    mode: 0644
  with_items:
    - done
    - upstart
  changed_when: false
  when:
    ansible_distribution == "Ubuntu" and
    is_ceph_infernalis

- name: activate rados gateway with upstart (before infernalis release)
  file:
    path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/{{ item }}
    state: touch
    owner: root
    group: root
    mode: 0644
  with_items:
    - done
    - upstart
  changed_when: false
  when:
    ansible_distribution == "Ubuntu" and
    not is_ceph_infernalis

- name: activate rados gateway with sysvinit (for or after infernalis release)
  file:
    path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/{{ item }}
    state: touch
    owner: ceph
    group: ceph
    mode: 0644
  with_items:
    - done
    - sysvinit
  changed_when: false
  when:
    ansible_distribution != "Ubuntu" and
    is_ceph_infernalis

- name: activate rados gateway with sysvinit (before infernalis release)
  file:
    path: /var/lib/ceph/radosgw/ceph-rgw.{{ ansible_hostname }}/{{ item }}
    state: touch
    owner: root
    group: root
    mode: 0644
  with_items:
    - done
    - sysvinit
  changed_when: false
  when:
    ansible_distribution != "Ubuntu" and
    not is_ceph_infernalis

- name: generate rados gateway sudoers file
  template:
    src: ceph.j2
    dest: /etc/sudoers.d/ceph
    owner: root
    group: root
    mode: 0400
  when: ansible_distribution != "Ubuntu"