File tree Expand file tree Collapse file tree 5 files changed +36
-49
lines changed
Expand file tree Collapse file tree 5 files changed +36
-49
lines changed Original file line number Diff line number Diff line change 11---
22# File: tasks/install.yml - package installation tasks for vault
33
4- - name : Update package cache
5- ansible.builtin.package :
6- update_cache : true
7- tags : update_cache
8-
9- - name : OS packages
10- become : true
11- ansible.builtin.package :
12- name : " {{ vault_os_packages }}"
13- state : present
14- tags : installation
15- when : (vault_os_packages is defined) and (vault_os_packages | length > 0)
16-
17- # Temporary place for one-off version diff packages, etc.
18- - name : OS packages diff (Debian)
19- become : true
20- ansible.builtin.package :
21- name : " libcap2-bin"
22- state : present
23- tags : installation
24- when :
25- - ansible_distribution == "Debian"
26- - (ansible_distribution_version == 'buster/sid') or (ansible_distribution_version is version(8.5, '>'))
27-
284- name : Check Vault package file (local)
295 ansible.builtin.stat :
306 path : " {{ role_path }}/files/{{ vault_pkg }}"
Original file line number Diff line number Diff line change 22# File: tasks/install_remote.yml
33# Package installation tasks for vault
44
5- - name : OS packages
6- become : true
7- ansible.builtin.package :
8- name : " {{ vault_os_packages }}"
9- state : present
10- tags : installation
11- when : (vault_os_packages is defined) and (vault_os_packages | length > 0)
12-
135- name : Ensure remote vault dir exists
146 ansible.builtin.file :
157 path : /tmp/vault
Original file line number Diff line number Diff line change 22- name : Include asserts
33 ansible.builtin.include_tasks : asserts.yml
44
5- - name : Add Vault group
6- become : true
7- ansible.builtin.group :
8- name : " {{ vault_group }}"
9- state : present
10- when : vault_manage_group | bool
11-
12- - name : Add Vault user
13- become : true
14- ansible.builtin.user :
15- name : " {{ vault_user }}"
16- comment : " Vault user"
17- group : " {{ vault_group }}"
18- groups : " {{ vault_groups }}"
19- system : true
20- when : vault_manage_user | bool
21-
225- name : Include OS-specific variables
236 ansible.builtin.include_vars : " {{ lookup('first_found', params) }}"
247 vars :
2912 paths :
3013 - vars
3114
15+ - name : Run preinstall tasks
16+ ansible.builtin.include_tasks : preinstall.yml
17+ tags : preinstall
18+
3219- name : Check Vault installation
3320 ansible.builtin.shell :
3421 cmd : command -v vault # noqa command-instead-of-shell # command is a shell builtin
Original file line number Diff line number Diff line change 1+ ---
2+ # File: tasks/preinstall.yml - pre-installation tasks for vault
3+
4+ - name : Add Vault group
5+ become : true
6+ ansible.builtin.group :
7+ name : " {{ vault_group }}"
8+ state : present
9+ when : vault_manage_group | bool
10+
11+ - name : Add Vault user
12+ become : true
13+ ansible.builtin.user :
14+ name : " {{ vault_user }}"
15+ comment : " Vault user"
16+ group : " {{ vault_group }}"
17+ groups : " {{ vault_groups }}"
18+ system : true
19+ when : vault_manage_user | bool
20+
21+ - name : Update package cache
22+ ansible.builtin.package :
23+ update_cache : true
24+ tags : update_cache
25+
26+ - name : OS packages
27+ become : true
28+ ansible.builtin.package :
29+ name : " {{ vault_os_packages }}"
30+ state : present
31+ when : (vault_os_packages is defined) and (vault_os_packages | length > 0)
Original file line number Diff line number Diff line change @@ -6,6 +6,7 @@ vault_os_packages:
66 - unzip
77 - acl
88 - gpg
9+ - libcap2-bin
910
1011_vault_repository_url : " https://apt.releases.hashicorp.com"
1112_vault_repository_key_url : " {{ _vault_repository_url }}/gpg"
You can’t perform that action at this time.
0 commit comments