Ansible cluster installation #3
Conversation
ventifus
force-pushed
the
ansible-cluster-automation
branch
3 times, most recently
from
68d8215 to
8673260
Compare
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
8673260 to
56f7782
Compare
|
lgtm |
|
/assign sudobrendan |
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
6da33d3 to
6402b2c
Compare
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
3b8b3be to
cf4915f
Compare
|
/lgtm |
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
cf4915f to
8fbdedd
Compare
|
/lgtm |
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
8fbdedd to
c1328e7
Compare
| # Content that Ansible needs to load from another location or that has | ||
| # been deprecated/removed | ||
| # plugin_routing: | ||
| # action: | ||
| # redirected_plugin_name: | ||
| # redirect: ns.col.new_location | ||
| # deprecated_plugin_name: | ||
| # deprecation: | ||
| # removal_version: "4.0.0" | ||
| # warning_text: | | ||
| # See the porting guide on how to update your playbook to | ||
| # use ns.col.another_plugin instead. | ||
| # removed_plugin_name: | ||
| # tombstone: | ||
| # removal_version: "2.0.0" | ||
| # warning_text: | | ||
| # See the porting guide on how to update your playbook to | ||
| # use ns.col.another_plugin instead. | ||
| # become: | ||
| # cache: | ||
| # callback: | ||
| # cliconf: | ||
| # connection: | ||
| # doc_fragments: | ||
| # filter: | ||
| # httpapi: | ||
| # inventory: | ||
| # lookup: | ||
| # module_utils: | ||
| # modules: | ||
| # netconf: | ||
| # shell: | ||
| # strategy: | ||
| # terminal: | ||
| # test: | ||
| # vars: | ||
|
|
||
| # Python import statements that Ansible needs to load from another location | ||
| # import_redirection: | ||
| # ansible_collections.ns.col.plugins.module_utils.old_location: | ||
| # redirect: ansible_collections.ns.col.plugins.module_utils.new_location | ||
|
|
||
| # Groups of actions/modules that take a common set of options | ||
| # action_groups: | ||
| # group_name: | ||
| # - module1 | ||
| # - module2 |
There was a problem hiding this comment.
This came from the ansible project template, I've deleted it
| # oc project default (this test assumes we are using the default ns) | ||
| # oc new-app --image=nginx && oc expose svc/nginx | ||
| # oc get deployment,pod,route,svc | ||
| # curl -I --silent http://<hostname you get from the route> | ||
|
|
||
| # "Apply the following yml file: | ||
| # apiVersion: v1 | ||
| # kind: PersistentVolumeClaim | ||
| # metadata: | ||
| # name: azurefile-csi | ||
| # spec: | ||
| # storageClassName: azurefile-csi | ||
| # accessModes: | ||
| # - ReadWriteOnce | ||
| # resources: | ||
| # requests: | ||
| # storage: 3Gi | ||
| # --- | ||
| # apiVersion: v1 | ||
| # kind: PersistentVolumeClaim | ||
| # metadata: | ||
| # name: managed-csi | ||
| # spec: | ||
| # storageClassName: managed-csi | ||
| # accessModes: | ||
| # - ReadWriteOnce | ||
| # resources: | ||
| # requests: | ||
| # storage: 3Gi | ||
| # --- | ||
| # apiVersion: v1 | ||
| # kind: PersistentVolumeClaim | ||
| # metadata: | ||
| # name: managed-csi-encrypted-cmk | ||
| # spec: | ||
| # storageClassName: managed-csi-encrypted-cmk | ||
| # accessModes: | ||
| # - ReadWriteOnce | ||
| # resources: | ||
| # requests: | ||
| # storage: 3Gi | ||
| # " |
There was a problem hiding this comment.
This, and several similar comments were describing the manual steps from the smoketest spreadsheet that was getting automated.
| # storage: 3Gi | ||
| # " | ||
|
|
||
| # TODO: Push the required images to the cluster's internal registry so it will work on disconnected clusters. |
There was a problem hiding this comment.
Is this a TODO for later, or in this PR?
There was a problem hiding this comment.
Later, it's not needed immediately
| # - name: create_aro_cluster | Download azaroext | ||
| # ansible.builtin.get_url: | ||
| # url: https://arosvc.blob.core.windows.net/azext/aro-{{ AZAROEXT_VERSION }}-py2.py3-none-any.whl | ||
| # dest: /tmp/aro-{{ AZAROEXT_VERSION }}-py2.py3-none-any.whl | ||
| # mode: "0644" | ||
| # delegate: "{{ delegation }}" | ||
| # register: download_aroazext | ||
| # - name: create_aro_cluster | Install azaroext | ||
| # when: download_aroazext is changed | ||
| # ansible.builtin.command: | ||
| # argv: | ||
| # - az | ||
| # - extension | ||
| # - add | ||
| # - -s="/tmp/aro-{{ AZAROEXT_VERSION }}-py2.py3-none-any.whl" |
| # - add | ||
| # - -s="/tmp/aro-{{ AZAROEXT_VERSION }}-py2.py3-none-any.whl" | ||
|
|
||
| # TODO: Create clusters with azure_rm_openshiftmanagedcluster if possible |
There was a problem hiding this comment.
Later; the ansible module azure_rm_openshiftmanagedcluster isn't at parity with our aro cli, we should work with the Azure Ansible team to get it updated.
| # private_link_service_network_policies: | ||
| # "{% if outbound_type is defined and outbound_type == 'UserDefinedRouting' %}Disabled{% else %}{{ omit }}{% endif %}" |
| # azure.azcollection.azure_rm_adserviceprincipal: | ||
| # app_id: "{{ aro_ad_sp_info.id }}" | ||
| # state: absent |
| # azure.azcollection.azure_rm_adapplication: | ||
| # app_id: "{{ aro_ad_sp_info.appId }}" | ||
| # state: absent |
| # - name: upgrade_cluster | Begin upgrade process | ||
| # loop: "{{ upgrade }}" | ||
| # when: upgrade is defined | ||
| # ansible.builtin.include_tasks: | ||
| # file: ../../tasks/upgrade_cluster.yaml |
There was a problem hiding this comment.
This is documentation on how to include this particular task file.
| endif | ||
|
|
||
| NO_CACHE ?= true | ||
| PODMAN_REMOTE_ARGS ?= |
There was a problem hiding this comment.
These are optional environment variables, Loki's RP-in-containers efforts made use of them so I included them here for completeness
…isn't supported by the Azure Ansible module at this time
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
c1328e7 to
83aa5f6
Compare
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
fd7c762 to
4af9d52
Compare
|
/retest |
ventifus
force-pushed
the
ansible-cluster-automation
branch
5 times, most recently
from
58273c0 to
7880c72
Compare
ventifus
force-pushed
the
ansible-cluster-automation
branch
from
7880c72 to
ae9af46
Compare
|
Added code in the latest commit for https://issues.redhat.com/browse/ARO-12055, enabling MIWI support and local RP support via |
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: s-fairchild, shubhadapaithankar, tsatam, ventifus The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
New changes are detected. LGTM label has been removed. |
|
@ventifus: The following test failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
Migrating Azure/ARO-RP#3843 to aro-e2e. Refactored to move the roles into an Ansible collection
azureredhatopenshift.cluster.What this PR does / why we need it:
This PR leverages Ansible to automate cluster creation in predefined configurations. These configurations are intended to exercise ARO features in a repeatable manner. For example, we want to make sure that various complex cluster configurations continue to work in production:
Also implemented is the ability to upgrade through a sequence of versions. See
ansible/inventory/upgrades.yamlandansible/inventory/upgrades-candidate.yamlfor examples.Refer to
ansible/README.mdfor details how to run the Ansible playbooks viamake ansible-imageandmake clustertargets.For development, this also adds
lint-ansibleandtest-ansibletargets. Lint requiresansible-lintto be installed. Linting also runs as part of the container image build.test-ansibleruns inside an aro-ansible container and does not need ansible installed.