refactor ansible code in to ansible-2.0 folder, and created space for ansible-2.10

2021-12-21 10:03:39 -05:00
parent e156b183ed
commit 22ef544758
159 changed files with 59 additions and 36 deletions
--- a/ansible-2.0/roles/docker_registry/defaults/creds.yml
+++ b/ansible-2.0/roles/docker_registry/defaults/creds.yml
@@ -0,0 +1,6 @@
+---
+# private credentials used in docker_registry
+
+docker_registry.users:
+  - { "richard" : "richard" }
+  - { "testuser" : "testpassword" }
--- a/ansible-2.0/roles/docker_registry/files/docker-compose.yml
+++ b/ansible-2.0/roles/docker_registry/files/docker-compose.yml
@@ -0,0 +1,20 @@
+registry:
+  restart: always
+  image: registry:2
+  ports:
+    - 5000:5000
+  environment:
+    REGISTRY_HTTP_SECRET: aabuioqlwlcpp2
+#    REGISTRY_HTTP_TLS_CERTIFICATE: /certs/cert.pem
+#    REGISTRY_HTTP_TLS_KEY: /certs/privkey.pem
+    REGISTRY_HTTP_LETSENCRYPT_CACHEFILE: /var/run/letsencrypt.cache
+    REGISTRY_HTTP_LETSENCRYPT_EMAIL: r_morgan@sympatico.ca
+#    REGISTRY_HTTP_HOST: https://192.168.4.41:5000
+#    REGISTRY_HTTP_ADDR: 192.168.4.41:5000
+    REGISTRY_AUTH: htpasswd
+    REGISTRY_AUTH_HTPASSWD_PATH: /auth/htpasswd
+    REGISTRY_AUTH_HTPASSWD_REALM: Registry Realm
+  volumes:
+    - /opt/shared/dkregistry/data:/var/lib/registry
+    - /etc/letsencrypt/live/dkregistry.xai-corp.net:/certs
+    - /opt/shared/dkregistry/auth:/auth
--- a/ansible-2.0/roles/docker_registry/tasks/main.yml
+++ b/ansible-2.0/roles/docker_registry/tasks/main.yml
@@ -0,0 +1,40 @@
+---
+# Main task for creating a docker registry
+
+- name: clean up old config
+  command: "{{ item }}"
+  with_items:
+    - "rm -rf /opt/dkrepository"
+    - "rm -rf /opt/shared/dkrepository/auth"
+
+# create folders for certs, data,
+- name: create data folders (/opt/dkregistry)
+  file:
+    path: "{{ item }}"
+    state: directory
+    owner: root
+    group: docker
+    mode: 0770
+  with_items:
+    - /opt/shared/dkregistry/data
+    - /opt/shared/dkregistry/auth
+
+# make auth files using docker container
+- name: create auth file
+  shell: echo '' > /opt/shared/dkregistry/auth/htpasswd
+
+- name: add user to auth file
+  shell: "docker run --entrypoint htpasswd registry:2 -Bbn {{ item.name }} {{ item.pass }} >> /opt/shared/dkregistry/auth/htpasswd"
+  with_items:
+    - { "name" : "richard", "pass" : "richard" }
+    - { "name" : "testuser", "pass" : "testpassword" }
+
+- name: copy composer file
+  copy:
+    src: docker-compose.yml
+    dest: /opt/dkregistry/docker-compose.yml
+
+- name: run docker up
+  shell: "docker-compose down && docker-compose create && docker-compose start"
+  args:
+    chdir: /opt/dkregistry