forked from CactuseSecurity/firewall-orchestrator
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsite.yml
More file actions
131 lines (115 loc) · 3.01 KB
/
site.yml
File metadata and controls
131 lines (115 loc) · 3.01 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
---
# for installation options see https://github.com/CactuseSecurity/firewall-orchestrator/blob/master/documentation/installer/install-advanced.md
- hosts: all
roles:
- { role: common }
tags:
- backend
- frontend
- importer
- ui
- api
- hosts: databaseserver
roles:
- { role: database, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- hosts: middlewareserver
roles:
- { role: openldap-server, when: "not installation_mode == 'uninstall'" }
- { role: lib, when: "not installation_mode == 'uninstall'" }
- { role: middleware, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- csharp
- hosts: apiserver
roles:
- { role: podman, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- api
# do not put this into the same play as podman (runtime needs to be installed first)
- hosts: apiserver
roles:
- { role: api, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- api
- hosts: frontends
roles:
- { role: lib, when: "not installation_mode == 'uninstall'"}
- { role: ui, when: "not installation_mode == 'uninstall'"}
tags:
- frontend
- csharp
- ui
- hosts: sampleserver
roles:
- { role: sample-data, when: "add_demo_data|bool and not installation_mode == 'uninstall'" }
tags:
- samples
- backend
- importer
- hosts: middlewareserver
roles:
- { role: sample-auth-data, when: "add_demo_data|bool and not installation_mode == 'uninstall'" }
tags:
- samples
- backend
- hosts: importers
roles:
- { role: importer, when: "not installation_mode == 'uninstall'" }
tags:
- frontend
- importer
- hosts: frontends
tasks:
- name: restart ui service to display new version
service:
name: "{{ ui_service_name }}"
state: restarted
become: true
when: "not installation_mode == 'uninstall' and (ui_deploy_changed | default(false))"
tags:
- frontend
- ui
- hosts: testservers
roles:
- { role: webhook, when: install_webhook|bool and not installation_mode == 'uninstall' }
tags:
- test
- hosts: all
roles:
- { role: finalize, when: "not installation_mode == 'uninstall'" }
tags:
- finalize
- backend
- frontend
- importer
- ui
- hosts: all
roles:
- { role: tests-unit, when: not installation_mode == 'uninstall' }
tags:
- test
- unittests
- hosts: all
roles:
- { role: tests-integration, when: not installation_mode == 'uninstall' }
tags:
- test
- integrationtests
- hosts: all
tasks:
# display status & pwds
- name: show listener status
import_tasks: scripts/show-fworch-listeners.yml
become: true
- name: display secrets for this installation
debug:
msg:
- "Your initial UI admin password is '{{ admin_password }}'"
- "Your api hasura admin secret is '{{ api_hasura_admin_secret }}'"
when: |
admin_password is defined and
api_hasura_admin_secret is defined