# 自动设置LB节点变量'LB_IF'
- name: 注册变量 LB_IF_TMP
  shell: "ip a|grep '{{ inventory_hostname }}/'|awk '{print $NF}'"
  register: LB_IF_TMP
  tags: restart_lb

- name: 设置变量 LB_IF
  set_fact: LB_IF={{ LB_IF_TMP.stdout }}
  tags: restart_lb

- name: prepare some dirs
  file: name={{ item }} state=directory
  with_items:
  - "/etc/l4lb/sbin"
  - "/etc/l4lb/logs"
  - "/etc/l4lb/conf"
  - "/etc/keepalived"

- name: 下载二进制文件l4lb(nginx)
  copy: src={{ base_dir }}/bin/nginx dest=/etc/l4lb/sbin/l4lb mode=0755

- name: 创建l4lb的配置文件
  template: src=l4lb.conf.j2 dest=/etc/l4lb/conf/l4lb.conf
  tags: restart_lb

- name: 创建l4lb的systemd unit文件
  template: src=l4lb.service.j2 dest=/etc/systemd/system/l4lb.service
  tags: restart_lb

- name: 开机启用l4lb服务
  shell: systemctl enable l4lb
  ignore_errors: true

- name: 开启l4lb服务
  shell: systemctl daemon-reload && systemctl restart l4lb
  ignore_errors: true
  tags: restart_lb

- name: 以轮询的方式等待l4lb服务启动
  shell: "systemctl is-active l4lb.service"
  register: svc_status
  until: '"active" in svc_status.stdout'
  retries: 3
  delay: 3
  tags: restart_lb


- name: 下载二进制文件keepalived
  copy: src={{ base_dir }}/bin/keepalived dest=/usr/local/sbin/keepalived mode=0755

- name: 配置 keepalived 主节点
  template: src=keepalived-master.conf.j2 dest=/etc/keepalived/keepalived.conf
  when: LB_ROLE == "master"
  tags: restart_lb

- name: 配置 keepalived 备节点
  template: src=keepalived-backup.conf.j2 dest=/etc/keepalived/keepalived.conf
  when: LB_ROLE == "backup"
  tags: restart_lb

- name: 创建keepalived的systemd unit文件
  template: src=keepalived.service.j2 dest=/etc/systemd/system/keepalived.service
  tags: restart_lb

- name: 开机启用keepalived服务
  shell: systemctl enable keepalived
  ignore_errors: true

- name: 开启keepalived服务
  shell: systemctl daemon-reload && systemctl restart keepalived
  ignore_errors: true
  tags: restart_lb

- name: 以轮询的方式等待keepalived服务启动
  shell: "systemctl is-active keepalived.service"
  register: svc_status
  until: '"active" in svc_status.stdout'
  retries: 3
  delay: 3
  tags: restart_lb

- name: 检查 ex-lb 的 kube-apiserver 是否正常
  uri:
    url: "https://{{ EX_APISERVER_VIP }}:{{ EX_APISERVER_PORT }}"
    validate_certs: no
    client_cert: "{{ cluster_dir }}/ssl/admin.pem"
    client_key: "{{ cluster_dir }}/ssl/admin-key.pem"
  register: result
  until: result.status == 200
  retries: 2
  delay: 5
  run_once: true
  connection: local

# - debug: var="result"