kubespray/roles/vault/tasks/cluster/main.yml

45 lines
1.0 KiB
YAML
Raw Normal View History

2017-01-14 04:31:10 +08:00
---
- include: ../shared/check_vault.yml
when: inventory_hostname in groups.vault
- include: ../shared/check_etcd.yml
when: inventory_hostname in groups.vault
2017-01-14 04:31:10 +08:00
## Vault Cluster Setup
- include: configure.yml
when: inventory_hostname in groups.vault
- include: binary.yml
when: inventory_hostname in groups.vault and vault_deployment_type == "host"
- include: systemd.yml
when: inventory_hostname in groups.vault
2017-01-14 04:31:10 +08:00
- include: init.yml
when: inventory_hostname in groups.vault
2017-01-14 04:31:10 +08:00
- include: unseal.yml
when: inventory_hostname in groups.vault
- include: ../shared/find_leader.yml
when: inventory_hostname in groups.vault
- include: ../shared/pki_mount.yml
when: inventory_hostname == groups.vault|first
- include: ../shared/config_ca.yml
2017-01-14 04:31:10 +08:00
vars:
ca_name: ca
mount_name: pki
when: inventory_hostname == groups.vault|first
2017-01-14 04:31:10 +08:00
## Vault Policies, Roles, and Auth Backends
2017-01-14 04:31:10 +08:00
- include: role_auth_cert.yml
when: vault_role_auth_method == "cert"
- include: role_auth_userpass.yml
when: vault_role_auth_method == "userpass"