group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
mode: "0755"
+- name: fetch ceph mgr keyring
+ ceph_key:
+ name: "mgr.{{ ansible_hostname }}"
+ state: present
+ caps:
+ mon: allow profile mgr
+ osd: allow *
+ mds: allow *
+ cluster: "{{ cluster }}"
+ secret: "{{ (mgr_secret != 'mgr_secret') | ternary(mgr_secret, omit) }}"
+ owner: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
+ group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
+ mode: "0400"
+ dest: "/var/lib/ceph/mgr/{{ cluster }}-{{ ansible_hostname }}/keyring"
+ environment:
+ CEPH_CONTAINER_IMAGE: "{{ ceph_docker_registry + '/' + ceph_docker_image + ':' + ceph_docker_image_tag if containerized_deployment else None }}"
+ CEPH_CONTAINER_BINARY: "{{ container_binary }}"
+ when:
+ - groups.get(mgr_group_name, []) | length == 0 # the key is present already since one of the mons created it in "create ceph mgr keyring(s)"
+
- name: copy ceph keyring(s) if needed
copy:
src: "{{ fetch_directory }}/{{ fsid }}/{{ item.name }}"
- { name: "/etc/ceph/{{ cluster }}.client.admin.keyring", dest: "/etc/ceph/{{ cluster }}.client.admin.keyring", copy_key: "{{ copy_admin_key }}" }
when:
- cephx
+ - groups.get(mgr_group_name, []) | length > 0
- item.copy_key|bool
- name: set mgr key permissions
group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
mode: "{{ ceph_keyring_permissions }}"
when:
- - cephx
- - groups.get(mgr_group_name, []) | length > 0
+ - cephx
\ No newline at end of file
+++ /dev/null
----
-- name: include start_docker_mgr.yml
- include_tasks: start_docker_mgr.yml
+++ /dev/null
----
-- name: generate systemd unit file
- become: true
- template:
- src: "{{ role_path }}/templates/ceph-mgr.service.j2"
- dest: /etc/systemd/system/ceph-mgr@.service
- owner: "root"
- group: "root"
- mode: "0644"
- notify:
- - restart ceph mgrs
-
-- name: systemd start mgr container
- systemd:
- name: ceph-mgr@{{ ansible_hostname }}
- state: started
- enabled: yes
- daemon_reload: yes
\ No newline at end of file
include_tasks: pre_requisite.yml
when: not containerized_deployment
-- name: include docker/main.yml
- include_tasks: docker/main.yml
- when: containerized_deployment
+- name: inclide start_mgr.yml
+ include_tasks: start_mgr.yml
- name: get enabled modules from ceph-mgr
command: "{{ docker_exec_cmd_mgr | default('') }} ceph --cluster {{ cluster }} --format json mgr module ls"
default_release: "{{ ceph_stable_release_uca | default(omit) }}{{ ansible_distribution_release ~ '-backports' if ceph_origin == 'distro' and ceph_use_distro_backports else '' }}"
when:
- ansible_os_family == 'Debian'
-
-- name: ensure systemd service override directory exists
- file:
- state: directory
- path: "/etc/systemd/system/ceph-mgr@.service.d/"
- when:
- - ceph_mgr_systemd_overrides is defined
- - ansible_service_mgr == 'systemd'
-
-- name: add ceph-mgr systemd service overrides
- config_template:
- src: "ceph-mgr.service.d-overrides.j2"
- dest: "/etc/systemd/system/ceph-mgr@.service.d/ceph-mgr-systemd-overrides.conf"
- config_overrides: "{{ ceph_mgr_systemd_overrides | default({}) }}"
- config_type: "ini"
- when:
- - ceph_mgr_systemd_overrides is defined
- - ansible_service_mgr == 'systemd'
-
-- name: start and add that the mgr service to the init sequence
- service:
- name: "ceph-mgr@{{ ansible_hostname }}"
- state: started
- enabled: yes
- changed_when: false
--- /dev/null
+---
+- name: ensure systemd service override directory exists
+ file:
+ state: directory
+ path: "/etc/systemd/system/ceph-mgr@.service.d/"
+ when:
+ - ceph_mgr_systemd_overrides is defined
+ - ansible_service_mgr == 'systemd'
+
+- name: add ceph-mgr systemd service overrides
+ config_template:
+ src: "ceph-mgr.service.d-overrides.j2"
+ dest: "/etc/systemd/system/ceph-mgr@.service.d/ceph-mgr-systemd-overrides.conf"
+ config_overrides: "{{ ceph_mgr_systemd_overrides | default({}) }}"
+ config_type: "ini"
+ when:
+ - ceph_mgr_systemd_overrides is defined
+ - ansible_service_mgr == 'systemd'
+
+- name: generate systemd unit file
+ become: true
+ template:
+ src: "{{ role_path }}/templates/ceph-mgr.service.j2"
+ dest: /etc/systemd/system/ceph-mgr@.service
+ owner: "root"
+ group: "root"
+ mode: "0644"
+ when:
+ - containerized_deployment
+ notify:
+ - restart ceph mgrs
+
+- name: systemd start mgr
+ systemd:
+ name: ceph-mgr@{{ ansible_hostname }}
+ state: started
+ enabled: yes
+ daemon_reload: yes
\ No newline at end of file
projects / ceph-ansible.git / commitdiff