- hosts: harbor roles: - { role: chrony, when: "hostvars[groups.deploy[0]]['NTP_ENABLED'] == 'yes'" } - prepare - docker - harbor - hosts: - kube-master - new-master - kube-node - new-node tasks: - name: harbor证书目录创建 file: name=/etc/docker/certs.d/{{ HARBOR_DOMAIN }} state=directory - name: harbor服务器证书安装 copy: src={{ ca_dir }}/ca.pem dest=/etc/docker/certs.d/{{ HARBOR_DOMAIN }}/ca.crt # 如果你的环境中有dns服务器,可以跳过hosts文件设置 - name: 增加harbor的hosts解析 lineinfile: dest: /etc/hosts state: present regexp: '{{ HARBOR_DOMAIN }}' line: '{{ HARBOR_IP }} {{ HARBOR_DOMAIN }}'