70360bca6a
Moved roles to the parent directory so that different adapters don't have duplicated roles in their respective paths. Change-Id: Ia71c473b33fed94276d4d0b4764b2f4ab2e988e0
37 lines
1.2 KiB
YAML
37 lines
1.2 KiB
YAML
---
|
|
- name: install keystone packages
|
|
apt: name=keystone state=present force=yes
|
|
|
|
- name: update keystone conf
|
|
template: src=keystone.conf dest=/etc/keystone/keystone.conf backup=yes
|
|
notify: restart keystone
|
|
|
|
- name: delete sqlite database
|
|
shell: rm /var/lib/keystone/keystone.db || echo sqllite database already removed
|
|
|
|
- name: manually stop keystone once
|
|
service: name=keystone state=stopped
|
|
|
|
- name: keystone-manage db-sync
|
|
shell: su -s /bin/sh -c "keystone-manage db_sync"
|
|
|
|
- name: cron job to purge expired tokens hourly
|
|
shell: (crontab -l -u keystone 2>&1 | grep -q token_flush) || echo '@hourly /usr/bin/keystone-manage token_flush > /var/log/keystone/keystone-tokenflush.log 2>&1' >> /var/spool/cron/crontabs/keystone
|
|
|
|
- name: manually start keystone
|
|
service: name=keystone state=started
|
|
|
|
- name: place keystone init script under /opt/
|
|
template: src=keystone_init dest=/opt/keystone_init mode=0744
|
|
|
|
- name: run keystone_init
|
|
shell: /opt/keystone_init && touch keystone_init_complete || keystone_init_failed
|
|
args:
|
|
creates: keystone_init_complete
|
|
|
|
- name: keystone source files
|
|
template: src={{ item }} dest=/opt/{{ item }}
|
|
with_items:
|
|
- admin-openrc.sh
|
|
- demo-openrc.sh
|