2016-12-09 17:38:17 +08:00
|
|
|
---
|
|
|
|
- set_fact:
|
|
|
|
has_bastion: "{{ 'bastion' in groups['all'] }}"
|
|
|
|
|
|
|
|
- set_fact:
|
2017-10-14 16:52:40 +08:00
|
|
|
bastion_ip: "{{ hostvars['bastion']['ansible_host'] }}"
|
2016-12-09 17:38:17 +08:00
|
|
|
when: has_bastion
|
|
|
|
|
|
|
|
# As we are actually running on localhost, the ansible_ssh_user is your local user when you try to use it directly
|
2017-10-14 16:52:40 +08:00
|
|
|
# To figure out the real ssh user, we delegate this task to the bastion and store the ansible_user in real_user
|
2016-12-09 17:38:17 +08:00
|
|
|
- set_fact:
|
2017-10-14 16:52:40 +08:00
|
|
|
real_user: "{{ ansible_user }}"
|
2016-12-09 17:38:17 +08:00
|
|
|
delegate_to: bastion
|
|
|
|
when: has_bastion
|
|
|
|
|
|
|
|
- name: create ssh bastion conf
|
|
|
|
become: false
|
2017-02-18 05:22:34 +08:00
|
|
|
template:
|
|
|
|
src: ssh-bastion.conf
|
|
|
|
dest: "{{ playbook_dir }}/ssh-bastion.conf"
|