├── vendor ├── openshift-tools │ ├── docker │ │ ├── oso-zaio │ │ │ ├── roles │ │ │ ├── src │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ ├── zabbix.repo │ │ │ │ ├── zabbix │ │ │ │ │ ├── db_create │ │ │ │ │ │ ├── createdb.sh │ │ │ │ │ │ └── create_zabbix.sql │ │ │ │ │ └── conf │ │ │ │ │ │ └── zabbix.conf.php │ │ │ │ ├── run.sh.j2 │ │ │ │ ├── push.sh.j2 │ │ │ │ └── welcome.conf │ │ │ ├── centos7 │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── zabbix.repo │ │ │ │ └── zabbix │ │ │ │ │ ├── db_create │ │ │ │ │ ├── createdb.sh │ │ │ │ │ └── create_zabbix.sql │ │ │ │ │ └── conf │ │ │ │ │ └── zabbix.conf.php │ │ │ └── rhel7 │ │ │ │ ├── root │ │ │ │ ├── default_vars.yml │ │ │ │ └── config.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── zabbix.repo │ │ │ │ ├── zabbix │ │ │ │ ├── db_create │ │ │ │ │ ├── createdb.sh │ │ │ │ │ └── create_zabbix.sql │ │ │ │ └── conf │ │ │ │ │ └── zabbix.conf.php │ │ │ │ └── welcome.conf │ │ ├── oso-ops-base │ │ │ ├── roles │ │ │ ├── centos7 │ │ │ │ ├── root │ │ │ │ │ └── pdbrc │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── pamd.crond │ │ │ │ ├── copr-openshift-tools.repo │ │ │ │ ├── run.sh │ │ │ │ └── usr_local_bin │ │ │ │ │ └── yum-install-check.sh │ │ │ ├── rhel7 │ │ │ │ ├── root │ │ │ │ │ └── pdbrc │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── pamd.crond │ │ │ │ ├── copr-openshift-tools.repo │ │ │ │ ├── run.sh │ │ │ │ └── usr_local_bin │ │ │ │ │ └── yum-install-check.sh │ │ │ └── src │ │ │ │ ├── root │ │ │ │ └── pdbrc │ │ │ │ ├── run.sh.j2 │ │ │ │ ├── pamd.crond │ │ │ │ ├── copr-openshift-tools.repo │ │ │ │ └── usr_local_bin │ │ │ │ └── yum-install-check.sh │ │ ├── oso-saml-sso │ │ │ ├── roles │ │ │ ├── rhel7 │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── templates │ │ │ │ │ │ ├── google_api_client_secrets.json.j2 │ │ │ │ │ │ ├── authsources.php.j2 │ │ │ │ │ │ └── saml20-idp-hosted.php.j2 │ │ │ │ ├── index.php │ │ │ │ ├── AUTOGENERATED │ │ │ │ └── run.sh │ │ │ ├── src │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── templates │ │ │ │ │ │ ├── google_api_client_secrets.json.j2 │ │ │ │ │ │ ├── authsources.php.j2 │ │ │ │ │ │ └── saml20-idp-hosted.php.j2 │ │ │ │ ├── index.php │ │ │ │ └── run.sh.j2 │ │ │ ├── centos7 │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── templates │ │ │ │ │ │ ├── google_api_client_secrets.json.j2 │ │ │ │ │ │ ├── authsources.php.j2 │ │ │ │ │ │ └── saml20-idp-hosted.php.j2 │ │ │ │ ├── index.php │ │ │ │ ├── AUTOGENERATED │ │ │ │ └── run.sh │ │ │ └── example │ │ │ │ └── authorized-keys │ │ ├── oso-zabbix-web │ │ │ ├── roles │ │ │ ├── src │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ ├── zabbix.repo │ │ │ │ └── run.sh.j2 │ │ │ ├── centos7 │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ └── zabbix.repo │ │ │ ├── rhel7 │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── zabbix.repo │ │ │ │ └── welcome.conf │ │ │ └── README.adoc │ │ ├── oso-zagg-web │ │ │ ├── roles │ │ │ ├── centos7 │ │ │ │ ├── AUTOGENERATED │ │ │ │ └── ops-run-in-loop │ │ │ ├── rhel7 │ │ │ │ ├── AUTOGENERATED │ │ │ │ └── ops-run-in-loop │ │ │ └── src │ │ │ │ ├── ops-run-in-loop │ │ │ │ └── run.sh.j2 │ │ ├── oso-clam-update │ │ │ ├── roles │ │ │ ├── centos7 │ │ │ │ ├── playbooks │ │ │ │ │ └── playbooks │ │ │ │ │ │ └── default_vars.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── ops-run-in-loop │ │ │ │ └── run.sh │ │ │ ├── rhel7 │ │ │ │ ├── playbooks │ │ │ │ │ └── playbooks │ │ │ │ │ │ └── default_vars.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── ops-run-in-loop │ │ │ │ └── run.sh │ │ │ ├── src │ │ │ │ ├── playbooks │ │ │ │ │ └── playbooks │ │ │ │ │ │ └── default_vars.yml │ │ │ │ ├── run.sh.j2 │ │ │ │ └── ops-run-in-loop │ │ │ └── README.adoc │ │ ├── oso-host-monitoring │ │ │ ├── roles │ │ │ ├── src │ │ │ │ ├── vendor │ │ │ │ │ ├── prometheus_client │ │ │ │ │ │ ├── bridge │ │ │ │ │ │ │ └── __init__.py │ │ │ │ │ │ ├── twisted │ │ │ │ │ │ │ └── __init__.py │ │ │ │ │ │ └── README │ │ │ │ │ └── README │ │ │ │ ├── host_monitoring_vars.yml.example │ │ │ │ ├── container-build-env-fingerprint.sh │ │ │ │ └── root │ │ │ │ │ └── ansible-tower_default_vars.yml │ │ │ ├── centos7 │ │ │ │ ├── vendor │ │ │ │ │ ├── prometheus_client │ │ │ │ │ │ ├── bridge │ │ │ │ │ │ │ └── __init__.py │ │ │ │ │ │ ├── twisted │ │ │ │ │ │ │ └── __init__.py │ │ │ │ │ │ └── README │ │ │ │ │ └── README │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── host_monitoring_vars.yml.example │ │ │ │ ├── container-build-env-fingerprint.sh │ │ │ │ └── root │ │ │ │ │ └── ansible-tower_default_vars.yml │ │ │ └── rhel7 │ │ │ │ ├── vendor │ │ │ │ ├── prometheus_client │ │ │ │ │ ├── bridge │ │ │ │ │ │ └── __init__.py │ │ │ │ │ ├── twisted │ │ │ │ │ │ └── __init__.py │ │ │ │ │ └── README │ │ │ │ └── README │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── host_monitoring_vars.yml.example │ │ │ │ ├── container-build-env-fingerprint.sh │ │ │ │ └── root │ │ │ │ └── ansible-tower_default_vars.yml │ │ ├── oso-memcached-sso │ │ │ ├── roles │ │ │ ├── rhel7 │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ └── run.sh │ │ │ ├── src │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ └── run.sh.j2 │ │ │ ├── centos7 │ │ │ │ ├── root │ │ │ │ │ ├── default_vars.yml │ │ │ │ │ └── config.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ └── run.sh │ │ │ └── README.adoc │ │ ├── oso-monitor-sso │ │ │ ├── roles │ │ │ ├── centos7 │ │ │ │ ├── root │ │ │ │ │ └── default_vars.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── ops-run-in-loop │ │ │ │ └── run.sh │ │ │ ├── rhel7 │ │ │ │ ├── root │ │ │ │ │ └── default_vars.yml │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── ops-run-in-loop │ │ │ │ └── run.sh │ │ │ └── src │ │ │ │ ├── root │ │ │ │ └── default_vars.yml │ │ │ │ ├── run.sh.j2 │ │ │ │ └── ops-run-in-loop │ │ ├── oso-zabbix-server │ │ │ ├── roles │ │ │ ├── rhel7 │ │ │ │ ├── cronroot │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── zabbix.repo │ │ │ │ └── zabbix │ │ │ │ │ ├── db_create │ │ │ │ │ ├── zabbix_partition_maintenance.sh │ │ │ │ │ └── createdb.sh │ │ │ │ │ └── conf │ │ │ │ │ └── zabbix.conf.php │ │ │ ├── src │ │ │ │ ├── cronroot │ │ │ │ ├── zabbix.repo │ │ │ │ ├── zabbix │ │ │ │ │ ├── db_create │ │ │ │ │ │ ├── zabbix_partition_maintenance.sh │ │ │ │ │ │ └── createdb.sh │ │ │ │ │ └── conf │ │ │ │ │ │ └── zabbix.conf.php │ │ │ │ └── run.sh.j2 │ │ │ └── centos7 │ │ │ │ ├── cronroot │ │ │ │ ├── AUTOGENERATED │ │ │ │ ├── zabbix.repo │ │ │ │ └── zabbix │ │ │ │ ├── db_create │ │ │ │ ├── zabbix_partition_maintenance.sh │ │ │ │ └── createdb.sh │ │ │ │ └── conf │ │ │ │ └── zabbix.conf.php │ │ ├── local_development │ │ │ ├── repo_root │ │ │ ├── monitoring-secrets │ │ │ │ ├── zabbix-server-vars.yml │ │ │ │ └── opsmedic.yml │ │ │ └── stop-local-dev-env.sh │ │ └── roles │ │ │ └── generate_containers │ │ │ ├── meta │ │ │ └── main.yml │ │ │ └── vars │ │ │ └── main.yml │ ├── openshift_tools │ │ ├── __init__.py │ │ ├── ansible │ │ │ └── __init__.py │ │ ├── cloud │ │ │ ├── __init__.py │ │ │ ├── aws │ │ │ │ └── __init__.py │ │ │ └── gcp │ │ │ │ └── __init__.py │ │ ├── web │ │ │ └── __init__.py │ │ ├── monitoring │ │ │ └── __init__.py │ │ ├── reporting │ │ │ ├── __init__.py │ │ │ └── requirements.txt │ │ ├── inventory_clients │ │ │ ├── __init__.py │ │ │ ├── aws │ │ │ ├── gce │ │ │ └── multi_inventory.py │ │ ├── ircbot │ │ │ ├── requirements.txt │ │ │ └── README.md │ │ └── servicenow │ │ │ └── CREDENTIALS │ ├── ansible │ │ ├── roles │ │ │ ├── ops_os_firewall │ │ │ │ ├── AOS_UPSTREAM │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── os_zabbix │ │ │ │ ├── vars │ │ │ │ │ ├── main.yml │ │ │ │ │ ├── template_performance_copilot.yml │ │ │ │ │ ├── template_clam_update.yml │ │ │ │ │ ├── template_zabbix_config.yml │ │ │ │ │ └── template_multi_inventory.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── defaults │ │ │ │ │ └── main.yml │ │ │ ├── yum_repos │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── logrotate │ │ │ │ ├── tests │ │ │ │ │ ├── inventory │ │ │ │ │ └── test.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── README-openshift-ops │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ └── templates │ │ │ │ │ └── logrotate.d.j2 │ │ │ ├── oso_host_monitoring │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── templates │ │ │ │ │ └── docker-registry.ops.cfg.j2 │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── defaults │ │ │ │ │ └── main.yml │ │ │ ├── temp_dir_git_clone │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── tests │ │ │ │ │ ├── inventory │ │ │ │ │ └── test.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── aws_pre_warm_ebs │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_ami_prep │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── openshift_aws_iam_kms │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_iam_sso │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_pv_move │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_sysctl_config │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── tito │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── chrony │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ ├── README.md │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── lib_openshift_3.2 │ │ │ │ └── build │ │ │ │ │ └── test │ │ │ │ │ ├── roles │ │ │ │ │ ├── files │ │ │ │ │ ├── config.yml │ │ │ │ │ └── passwords.yml │ │ │ │ │ ├── README │ │ │ │ │ ├── image.yml │ │ │ │ │ └── version.yml │ │ │ ├── openshift_master_resource_quota │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_master_storage_class │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── defaults │ │ │ │ │ └── main.yml │ │ │ ├── copr_cli │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── kube_nfs_volumes │ │ │ │ ├── templates │ │ │ │ │ ├── v1 │ │ │ │ │ │ └── nfs.json.j2 │ │ │ │ │ └── v1beta3 │ │ │ │ │ │ └── nfs.json.j2 │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── defaults │ │ │ │ │ └── main.yml │ │ │ ├── vendor_openshift_ansible_rpms │ │ │ │ └── filter_plugins │ │ │ ├── openshift_gcp_set_zone │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── lib_zabbix │ │ │ │ ├── library │ │ │ │ │ └── __init__.py │ │ │ │ └── tasks │ │ │ │ │ └── create_user.yml │ │ │ ├── openshift_group_policy │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_secure_router │ │ │ │ ├── vars │ │ │ │ │ ├── gcp.yml │ │ │ │ │ └── aws.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_user_policy │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── ansible_tower_cli │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── templates │ │ │ │ │ └── tower_cli.cfg.j2 │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── lib_aws_service_limit │ │ │ │ ├── tests │ │ │ │ │ └── inventory │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── lib_openshift │ │ │ ├── openshift_disk_provision │ │ │ │ ├── tests │ │ │ │ │ ├── inventory │ │ │ │ │ └── test.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── aws_account_list │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── oso_monitoring_tools │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── package_update_needed │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── ansible_inventory │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── files │ │ │ │ │ └── inventory.sh │ │ │ ├── openshift_master_audit_config │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── handlers │ │ │ │ │ └── main.yml │ │ │ ├── openshift_dedicated_admin │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── epel_repository │ │ │ │ ├── defaults │ │ │ │ │ └── main.yaml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_user │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_online_ha_proxy │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── dns │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ ├── templates │ │ │ │ │ └── named.conf │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── openshift_users │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_reconcile_cluster_roles │ │ │ │ ├── vars │ │ │ │ │ └── main.yml │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_gcp_service_account │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── templates │ │ │ │ │ └── multi_inventory.yml.j2 │ │ │ ├── openshift_haproxy_passthrough │ │ │ │ ├── files │ │ │ │ │ └── haproxy_systemd_restart.conf │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── openshift_aws_iam_cert │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_udp_limits │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── files │ │ │ │ │ └── iptables_udp.conf │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_outbound_tcp_logging │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── files │ │ │ │ │ └── tcp_out_logging.conf │ │ │ ├── dnsmasq_proxy │ │ │ │ ├── templates │ │ │ │ │ ├── aws_resolv.conf.j2 │ │ │ │ │ └── dns_proxy.conf.j2 │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── os_update_latest │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── lib_dyn │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── install_docker_registry_certs │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── gcp_api_tools │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── openshift_dedicated_scripts │ │ │ │ ├── tasks │ │ │ │ │ └── install.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── lib_yaml_editor │ │ │ │ └── build │ │ │ │ │ ├── test │ │ │ │ │ └── foo.yml │ │ │ │ │ └── src │ │ │ │ │ └── base.py │ │ │ ├── openshift_logging │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── templates │ │ │ │ │ └── logging-deployer.yaml.j2 │ │ │ ├── dnsmasq_proxy_file │ │ │ │ ├── templates │ │ │ │ │ └── dns_proxy.conf.j2 │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── postfix_amazon_ses_client │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── handlers │ │ │ │ │ └── main.yml │ │ │ ├── openshift_template_deployer │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── gcp_compute_packages │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── files │ │ │ │ │ └── google-cloud.repo │ │ │ ├── openshift_gcp_image_creation │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_add_keys │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── docker_storage_setup │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── templates │ │ │ │ │ ├── devicemapper_dss.j2 │ │ │ │ │ └── overlay2_dss.j2 │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── ops_customizations │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ ├── templates │ │ │ │ │ └── ops_prompt.sh.j2 │ │ │ │ └── README.md │ │ │ ├── openshift_byo_generator │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_elb_instance_manager │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── set_aws_accountid │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── openshift_aws_registry │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_default_ns_settings │ │ │ │ ├── tasks │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── openshift_gcp_registry │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── templates │ │ │ │ │ └── registry_config.yml.j2 │ │ │ ├── gpg_encrypt_send │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── oso_zagg_deploy │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_ami_copy │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_group │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── openshift_gcp_ssh_keys │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── openshift_aws_ami_perms │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── openshift_clam_update │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_gcp_gcloud_config │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_metrics │ │ │ │ ├── defaults │ │ │ │ │ └── main.yml │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_sso_app │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_sso_app_zabbix │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── verify_aws_accountid │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── iptables_service │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── lib_aos_modules │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── lib_utils │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── openshift_volume_provisioner │ │ │ │ ├── handlers │ │ │ │ │ └── main.yml │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_gcp_add_users_to_project │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_update_packages │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_install_templates │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── fluentd_master │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── lib_ops_utils │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_node_schedulable │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── os_zabbix_cluster_stats │ │ │ │ └── meta │ │ │ │ │ └── main.yml │ │ │ ├── openshift_gcp_cluster_creation │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── ansible │ │ │ │ └── tasks │ │ │ │ │ └── main.yml │ │ │ ├── fstab_mount_options │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── README.md │ │ │ ├── openshift_gcp_persistent_volumes │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── templates │ │ │ │ │ └── persistent_volume.yml.j2 │ │ │ ├── openshift_aws_persistent_volumes │ │ │ │ ├── meta │ │ │ │ │ └── main.yml │ │ │ │ └── templates │ │ │ │ │ └── ebs_persistent_volume.yml.j2 │ │ │ ├── rootlog_ssh_logs │ │ │ │ └── files │ │ │ │ │ └── 10_root_profile_d.sh │ │ │ ├── os_reboot_server │ │ │ │ └── tasks │ │ │ │ │ └── main.yaml │ │ │ ├── os_ipv6_disable │ │ │ │ └── tasks │ │ │ │ │ └── main.yaml │ │ │ └── os_utils │ │ │ │ └── tasks │ │ │ │ └── main.yaml │ │ ├── playbooks │ │ │ └── adhoc │ │ │ │ ├── noc │ │ │ │ ├── roles │ │ │ │ └── filter_plugins │ │ │ │ ├── tools_roles │ │ │ │ ├── zabbix_setup │ │ │ │ ├── roles │ │ │ │ ├── filter_plugins │ │ │ │ └── oo-clean-zaio.yml │ │ │ │ ├── docker_storage_reinitialize │ │ │ │ └── roles │ │ │ │ ├── openshift_hosted_logging_efk.yaml │ │ │ │ ├── bootstrap-fedora.yml │ │ │ │ ├── create_pv │ │ │ │ └── pv-template.j2 │ │ │ │ ├── metrics_setup │ │ │ │ └── playbooks │ │ │ │ │ └── master_config_facts.yml │ │ │ │ ├── s3_registry │ │ │ │ └── s3_registry.j2 │ │ │ │ ├── manageiq │ │ │ │ └── miq-setup.sh │ │ │ │ └── setupnfs.yml │ │ └── inventory │ │ │ └── .gitignore │ └── vendor-version └── ansible-module-openshift │ ├── tasks │ └── main.yml │ ├── .gitignore │ ├── vendor-version │ ├── meta │ └── main.yml │ ├── tests │ └── data │ │ └── dc_patch1.json │ └── README.md ├── .gitignore ├── tools_roles └── lib_zabbix ├── filter_plugins ├── ops_filters.py ├── ops_zabbix_filters.py └── openshift.py ├── playbook.yml ├── templates └── zabbix-server-vars.yml.j2 ├── meta └── main.yml ├── files └── opsmedic.yml ├── handlers └── main.yml └── vendor-roles.yml /vendor/openshift-tools/docker/oso-zaio/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | .vscode 2 | *.retry 3 | *.bak 4 | *.pyc 5 | -------------------------------------------------------------------------------- /vendor/ansible-module-openshift/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zagg-web/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/ansible/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/cloud/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/web/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/ansible-module-openshift/.gitignore: -------------------------------------------------------------------------------- 1 | *.pyc 2 | *.bak* 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/roles: -------------------------------------------------------------------------------- 1 | ../roles/ -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/roles: -------------------------------------------------------------------------------- 1 | ../roles/ -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/roles: -------------------------------------------------------------------------------- 1 | ../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/cloud/aws/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/cloud/gcp/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/monitoring/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/reporting/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_os_firewall/AOS_UPSTREAM: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/yum_repos/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/inventory_clients/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tools_roles/lib_zabbix: -------------------------------------------------------------------------------- 1 | ../vendor/openshift-tools/ansible/roles/lib_zabbix -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/noc/roles: -------------------------------------------------------------------------------- 1 | ../../../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/tools_roles: -------------------------------------------------------------------------------- 1 | ../../roles/ -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/src/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/inventory/.gitignore: -------------------------------------------------------------------------------- 1 | multi_inventory.yaml 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/logrotate/tests/inventory: -------------------------------------------------------------------------------- 1 | localhost 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/oso_host_monitoring/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/temp_dir_git_clone/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/src/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/centos7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/rhel7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/zabbix_setup/roles: -------------------------------------------------------------------------------- 1 | ../../../roles -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/aws_pre_warm_ebs/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_ami_prep/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/temp_dir_git_clone/tests/inventory: -------------------------------------------------------------------------------- 1 | localhost -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/local_development/repo_root: -------------------------------------------------------------------------------- 1 | ../../../openshift-tools -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/rhel7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/src/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/centos7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/rhel7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/src/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/centos7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/rhel7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/noc/filter_plugins: -------------------------------------------------------------------------------- 1 | ../../../filter_plugins -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_iam_kms/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_iam_sso/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_pv_move/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_sysctl_config/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/tito/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for tito 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/centos7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/inventory_clients/aws: -------------------------------------------------------------------------------- 1 | ../../ansible/inventory/aws/ -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/inventory_clients/gce: -------------------------------------------------------------------------------- 1 | ../../ansible/inventory/gce/ -------------------------------------------------------------------------------- /filter_plugins/ops_filters.py: -------------------------------------------------------------------------------- 1 | ../vendor/openshift-tools/ansible/filter_plugins/ops_filters.py -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/chrony/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for chrony 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_openshift_3.2/build/test/roles: -------------------------------------------------------------------------------- 1 | ../../../../roles/ -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_resource_quota/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_storage_class/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/reporting/requirements.txt: -------------------------------------------------------------------------------- 1 | matplotlib 2 | pyzabbix 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/docker_storage_reinitialize/roles: -------------------------------------------------------------------------------- 1 | ../../../roles/ -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/zabbix_setup/filter_plugins: -------------------------------------------------------------------------------- 1 | ../../../filter_plugins/ -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/copr_cli/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for copr_cli 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_openshift_3.2/build/test/files/config.yml: -------------------------------------------------------------------------------- 1 | value: True 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/tito/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for tito 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/tito/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for tito 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/centos7/playbooks/playbooks/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/rhel7/playbooks/playbooks/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/src/playbooks/playbooks/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/src/vendor/prometheus_client/bridge/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/chrony/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for chrony 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/kube_nfs_volumes/templates/v1/nfs.json.j2: -------------------------------------------------------------------------------- 1 | ../v1beta3/nfs.json.j2 -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/vendor_openshift_ansible_rpms/filter_plugins: -------------------------------------------------------------------------------- 1 | ../../filter_plugins -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/centos7/vendor/prometheus_client/bridge/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/rhel7/vendor/prometheus_client/bridge/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /filter_plugins/ops_zabbix_filters.py: -------------------------------------------------------------------------------- 1 | ../vendor/openshift-tools/ansible/filter_plugins/ops_zabbix_filters.py -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/copr_cli/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for copr_cli 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/copr_cli/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for copr_cli 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_set_zone/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | zone_exists: True 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/temp_dir_git_clone/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | tdgc_branch: master 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/yum_repos/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | yr_yum_cert_dir: /var/lib/yum/ 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_zabbix/library/__init__.py: -------------------------------------------------------------------------------- 1 | ''' 2 | ZabbixAPI ansible module 3 | ''' 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_group_policy/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osgp_namespace: default 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_secure_router/vars/gcp.yml: -------------------------------------------------------------------------------- 1 | --- 2 | ossr_cloud_router_edits: [] 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_user_policy/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osup_namespace: default 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_tower_cli/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for ansible_tower_cli 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_aws_service_limit/tests/inventory: -------------------------------------------------------------------------------- 1 | localhost ansible_connection=local 2 | 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_openshift: -------------------------------------------------------------------------------- 1 | ../../openshift/installer/atomic-openshift-3.6/roles/lib_openshift -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_disk_provision/tests/inventory: -------------------------------------------------------------------------------- 1 | localhost ansible_connection=local 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/inventory_clients/multi_inventory.py: -------------------------------------------------------------------------------- 1 | ../../ansible/inventory/multi_inventory.py -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_tower_cli/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for ansible_tower_cli 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_tower_cli/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for ansible_tower_cli 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/aws_account_list/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | aal_aws_account_file_do_write: True 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/oso_monitoring_tools/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for oso_monitoring_tools 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/package_update_needed/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | pun_package_name: atomic-openshift 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_inventory/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for openshift_ansible_inventory 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_openshift_3.2/build/test/files/passwords.yml: -------------------------------------------------------------------------------- 1 | test1 2 | test2 3 | test3 4 | test4 5 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_audit_config/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | omac_auditConfig_enabled: False 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/oso_monitoring_tools/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for oso_monitoring_tools 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/oso_monitoring_tools/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for oso_monitoring_tools 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/temp_dir_git_clone/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for temp_dir_git_clone 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/tito/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - action: "{{ ansible_pkg_mgr }} name=tito state=present" 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_inventory/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for openshift_ansible_inventory 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_dedicated_admin/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for openshift_dedicated_admin 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_os_firewall/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | oof_firewall_allow: [] 3 | oof_firewall_deny: [] 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/rhel7/cronroot: -------------------------------------------------------------------------------- 1 | @reboot /usr/sbin/zabbix_server -c /etc/zabbix/zabbix_server.conf 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/src/cronroot: -------------------------------------------------------------------------------- 1 | @reboot /usr/sbin/zabbix_server -c /etc/zabbix/zabbix_server.conf 2 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/epel_repository/defaults/main.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | epelr_exclude: "" 3 | epelr_skip_if_unavailable: True 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/logrotate/defaults/main.yml: -------------------------------------------------------------------------------- 1 | logrotate_conf_dir: "/etc/logrotate.d/" 2 | logrotate_scripts: [] 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_user/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osau_default_gpg_keyserver: 'hkp://keys.gnupg.net' 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_dedicated_admin/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for openshift_dedicated_admin 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_online_ha_proxy/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for openshift_online_ha_proxy 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/centos7/cronroot: -------------------------------------------------------------------------------- 1 | @reboot /usr/sbin/zabbix_server -c /etc/zabbix/zabbix_server.conf 2 | -------------------------------------------------------------------------------- /playbook.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: masters[0] 3 | gather_facts: False 4 | 5 | roles: 6 | - role: ansible-role-openshift-zabbix-monitoring 7 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/dns/handlers/main.yml: -------------------------------------------------------------------------------- 1 | - name: restart bind 2 | service: 3 | name: named 4 | state: restarted 5 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_users/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - include: manage_user.yml 3 | with_items: "{{ osu_users }}" 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/rhel7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | config_success_touchfile: /configdata/reconfigure_successful 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/src/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | config_success_touchfile: /configdata/reconfigure_successful 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/ircbot/requirements.txt: -------------------------------------------------------------------------------- 1 | sopel 2 | git+https://github.com/nithinmurali/pygsheets.git#staging 3 | pytz 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_reconcile_cluster_roles/vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for openshift_reconcile_cluster_roles 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/centos7/root/pdbrc: -------------------------------------------------------------------------------- 1 | import rlcompleter 2 | pdb.Pdb.complete = rlcompleter.Completer(locals()).complete 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/rhel7/root/pdbrc: -------------------------------------------------------------------------------- 1 | import rlcompleter 2 | pdb.Pdb.complete = rlcompleter.Completer(locals()).complete 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/src/root/pdbrc: -------------------------------------------------------------------------------- 1 | import rlcompleter 2 | pdb.Pdb.complete = rlcompleter.Completer(locals()).complete 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/centos7/root/default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | config_success_touchfile: /configdata/reconfigure_successful 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/kube_nfs_volumes/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart nfs 3 | service: name=nfs-server state=restarted 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_service_account/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osgcpsa_force_update: False 3 | user_file_missing: False 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_haproxy_passthrough/files/haproxy_systemd_restart.conf: -------------------------------------------------------------------------------- 1 | [Service] 2 | Restart=always 3 | RestartSec=10 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_reconcile_cluster_roles/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # defaults file for openshift_reconcile_cluster_roles 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_reconcile_cluster_roles/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for openshift_reconcile_cluster_roles 3 | -------------------------------------------------------------------------------- /vendor/ansible-module-openshift/vendor-version: -------------------------------------------------------------------------------- 1 | name: ansible-module-openshift 2 | src: https://github.com/appuio/ansible-module-openshift 3 | version: v1.4.2 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/chrony/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Restart chronyd 3 | service: 4 | name: chronyd 5 | state: restarted 6 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_iam_cert/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osaic_default_chain_cert: "{{ osaic_chain_cert | default(None, True) }}" 3 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/temp_dir_git_clone/tests/test.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | remote_user: root 4 | roles: 5 | - temp_dir_git_clone -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | sudo docker run -ti --rm oso-{{ base_os }}-ops-base bash 5 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/centos7/index.php: -------------------------------------------------------------------------------- 1 | array( 5 | 'authgoogle:Google', 6 | 'AuthConfigFile' => '/configdata/google_api_client_secrets.json', 7 | ), 8 | ); 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/gcp_compute_packages/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: openshift operations 4 | description: GCE packages installed 5 | company: Red Hat, Inc. 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | dependencies: 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/centos7/root/templates/authsources.php.j2: -------------------------------------------------------------------------------- 1 | array( 5 | 'authgoogle:Google', 6 | 'AuthConfigFile' => '/configdata/google_api_client_secrets.json', 7 | ), 8 | ); 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/rhel7/root/templates/authsources.php.j2: -------------------------------------------------------------------------------- 1 | array( 5 | 'authgoogle:Google', 6 | 'AuthConfigFile' => '/configdata/google_api_client_secrets.json', 7 | ), 8 | ); 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/src/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | vars: 7 | 8 | tasks: 9 | - name: Placeholder task 10 | debug: msg="This task does nothing" 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/centos7/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | vars: 7 | 8 | tasks: 9 | - name: Placeholder task 10 | debug: msg="This task does nothing" 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/rhel7/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | vars: 7 | 8 | tasks: 9 | - name: Placeholder task 10 | debug: msg="This task does nothing" 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_resource_quota/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osmrq_enable_quotas: True 3 | osmrq_cluster_pv_quota: 100Gi 4 | osmrq_exclude_quota_label: storage_pv_quota 5 | osmrq_projects_to_exclude: 6 | - default 7 | - openshift-infra 8 | - logging 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/oso_monitoring_tools/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Operations 4 | description: Install Openshift Monitoring tools 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | dependencies: [] 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/rhel7/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | vars: 7 | 8 | tasks: 9 | - name: Placeholder task 10 | debug: msg="This task does nothing" 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/src/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | vars: 7 | 8 | tasks: 9 | - name: Placeholder task 10 | debug: msg="This task does nothing" 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/aws_account_list/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Create an easily parsible list of AWS accounts 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | dependencies: [] 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_haproxy_passthrough/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: openshift operations 4 | description: Openshift HAProxy Passthrough 5 | company: Red Hat, Inc. 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | dependencies: 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/centos7/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | vars: 7 | 8 | tasks: 9 | - name: Placeholder task 10 | debug: msg="This task does nothing" 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_tower_cli/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: openshift operations name 4 | description: install ansible-tower-cli 5 | company: Red Hat, inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | dependencies: [] 9 | 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/src/zabbix/db_create/create_zabbix.sql: -------------------------------------------------------------------------------- 1 | create database zabbix character set utf8 collate utf8_bin; 2 | grant all privileges on zabbix.* to zabbix@localhost identified by 'redhat'; 3 | grant all privileges on zabbix.* to zabbix@'%' identified by 'redhat'; 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_openshift_3.2/build/test/README: -------------------------------------------------------------------------------- 1 | After generate.py has run, the ansible modules will be placed under openshift-tools/ansible/roles/lib_openshift_3.2/library. 2 | 3 | 4 | To run the tests you need to run them like this: 5 | ./services.yml -M ../../library 6 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_dedicated_admin/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers file for openshift_dedicated_admin 3 | - name: restart openshift-dedicated-role 4 | service: 5 | name: openshift-dedicated-role 6 | state: restarted 7 | when: oda_service_started | bool 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/centos7/zabbix/db_create/create_zabbix.sql: -------------------------------------------------------------------------------- 1 | create database zabbix character set utf8 collate utf8_bin; 2 | grant all privileges on zabbix.* to zabbix@localhost identified by 'redhat'; 3 | grant all privileges on zabbix.* to zabbix@'%' identified by 'redhat'; 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/rhel7/zabbix/db_create/create_zabbix.sql: -------------------------------------------------------------------------------- 1 | create database zabbix character set utf8 collate utf8_bin; 2 | grant all privileges on zabbix.* to zabbix@localhost identified by 'redhat'; 3 | grant all privileges on zabbix.* to zabbix@'%' identified by 'redhat'; 4 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_inventory/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Install and configure openshift-tools-scripts-inventory-clients 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | dependencies: [] 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/src/host_monitoring_vars.yml.example: -------------------------------------------------------------------------------- 1 | --- 2 | # This is an example of what the secrets vars file should look like 3 | g_default_zagg_server: overridden-zagg-server 4 | g_default_zagg_user: overridden-zagg-user 5 | g_default_zagg_pass: overridden-zagg-pass 6 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/centos7/host_monitoring_vars.yml.example: -------------------------------------------------------------------------------- 1 | --- 2 | # This is an example of what the secrets vars file should look like 3 | g_default_zagg_server: overridden-zagg-server 4 | g_default_zagg_user: overridden-zagg-user 5 | g_default_zagg_pass: overridden-zagg-pass 6 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/rhel7/host_monitoring_vars.yml.example: -------------------------------------------------------------------------------- 1 | --- 2 | # This is an example of what the secrets vars file should look like 3 | g_default_zagg_server: overridden-zagg-server 4 | g_default_zagg_user: overridden-zagg-user 5 | g_default_zagg_pass: overridden-zagg-pass 6 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/dnsmasq_proxy/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers dnsmasq_proxy 3 | - name: restart NetworkManager 4 | service: 5 | name: NetworkManager 6 | state: restarted 7 | 8 | - name: restart dnsmasq 9 | service: 10 | name: dnsmasq 11 | state: restarted 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_image_creation/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: create image in GCP project 3 | gcloud_compute_image: 4 | state: present 5 | name: "{{ osgic_image_name }}" 6 | source_uri: "gs://image-uploads/{{ osgic_image_name }}.tar.gz" 7 | register: imageout 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/dnsmasq_proxy_file/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # handlers dnsmasq_proxy 3 | - name: restart NetworkManager 4 | service: 5 | name: NetworkManager 6 | state: restarted 7 | 8 | - name: restart dnsmasq 9 | service: 10 | name: dnsmasq 11 | state: restarted 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_add_keys/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Add the public keys for the users 3 | ec2_key: 4 | name: "{{ item.username }}_key" 5 | key_material: "{{ item.pub_key }}" 6 | region: "{{ osaak_region }}" 7 | with_items: "{{ osaak_users }}" 8 | no_log: True 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/rhel7/zabbix/db_create/zabbix_partition_maintenance.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | while true; do 4 | /usr/bin/mysql -h${MYSQL_HOST} -u${MYSQL_USER} -p${MYSQL_PASSWORD} ${MYSQL_DATABASE} -e "CALL partition_maintenance_all(\"${MYSQL_DATABASE}\");" 5 | 6 | sleep 21600 7 | done 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/src/zabbix/db_create/zabbix_partition_maintenance.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | while true; do 4 | /usr/bin/mysql -h${MYSQL_HOST} -u${MYSQL_USER} -p${MYSQL_PASSWORD} ${MYSQL_DATABASE} -e "CALL partition_maintenance_all(\"${MYSQL_DATABASE}\");" 5 | 6 | sleep 21600 7 | done 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | sudo echo -e "\nTesting sudo works...\n" 5 | 6 | echo -n "Running zaio... " 7 | sudo docker run -ti --rm -p 10050:10050 -p 10051:10051 -p 80:80 -p 443:443 --name oso-{{ base_os }}-zaio oso-{{ base_os }}-zaio $@ 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/centos7/zabbix/db_create/zabbix_partition_maintenance.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | while true; do 4 | /usr/bin/mysql -h${MYSQL_HOST} -u${MYSQL_USER} -p${MYSQL_PASSWORD} ${MYSQL_DATABASE} -e "CALL partition_maintenance_all(\"${MYSQL_DATABASE}\");" 5 | 6 | sleep 21600 7 | done 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/src/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | tasks: 7 | - name: placeholder playbook 8 | debug: 9 | msg: "Just a placeholder for future ansible playbook steps to run on startup" 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/centos7/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | tasks: 7 | - name: placeholder playbook 8 | debug: 9 | msg: "Just a placeholder for future ansible playbook steps to run on startup" 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/rhel7/root/config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: localhost 3 | gather_facts: no 4 | vars_files: 5 | - /root/default_vars.yml 6 | tasks: 7 | - name: placeholder playbook 8 | debug: 9 | msg: "Just a placeholder for future ansible playbook steps to run on startup" 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/zabbix_setup/oo-clean-zaio.yml: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env ansible-playbook 2 | --- 3 | - include: clean_zabbix.yml 4 | vars: 5 | g_server: "http://localhost/zabbix/api_jsonrpc.php" 6 | g_user: "{{ zabbux_user | default('Admin') }}" 7 | g_password: "{{ zabbix_pass | default('zabbix') }}" 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/docker_storage_setup/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | dss_docker_device: /dev/xvdb 3 | dss_docker_storage_driver: devicemapper 4 | 5 | dss_default_container_size: 3G 6 | dss_docker_storage_dm_basesize: "{{ dss_default_container_size }}" 7 | dss_docker_storage_overlay2_size: "{{ dss_default_container_size }}" 8 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_aws_service_limit/meta/main.yml: -------------------------------------------------------------------------------- 1 | galaxy_info: 2 | author: Brett Lentz 3 | description: Module for exposing AWS service limits 4 | company: Red Hat, Inc. 5 | license: Apache Software License 2.0 6 | min_ansible_version: 2.0 7 | galaxy_tags: ['aws', 'cloud'] 8 | dependencies: [] 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_outbound_tcp_logging/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations outbound TCP logging 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/centos7/container-build-env-fingerprint.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | cat << EOF 4 | BuildUsername: `whoami` 5 | BuildDate: `date` 6 | BuildHostname: `hostname` 7 | BuildFilesystemLocation: `pwd` 8 | 9 | git remote -v 10 | `git remote -v` 11 | 12 | git log -3: 13 | `git log -3` 14 | EOF 15 | 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/rhel7/container-build-env-fingerprint.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | cat << EOF 4 | BuildUsername: `whoami` 5 | BuildDate: `date` 6 | BuildHostname: `hostname` 7 | BuildFilesystemLocation: `pwd` 8 | 9 | git remote -v 10 | `git remote -v` 11 | 12 | git log -3: 13 | `git log -3` 14 | EOF 15 | 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/src/container-build-env-fingerprint.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | cat << EOF 4 | BuildUsername: `whoami` 5 | BuildDate: `date` 6 | BuildHostname: `hostname` 7 | BuildFilesystemLocation: `pwd` 8 | 9 | git remote -v 10 | `git remote -v` 11 | 12 | git log -3: 13 | `git log -3` 14 | EOF 15 | 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_ami_prep/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations ami preparation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: [] 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_sysctl_config/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations sysctl role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: [] 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_customizations/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations general customizations 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | -------------------------------------------------------------------------------- /templates/zabbix-server-vars.yml.j2: -------------------------------------------------------------------------------- 1 | --- 2 | g_ses_mail_from: ops@example.com 3 | g_ses_smtp_domain: zabbix.ops.example.com # for SMTP HELO/EHLO command 4 | g_ses_smtp_server: email-smtp.us-east-1.amazonaws.com 5 | g_ses_user: AKIASECRET 6 | g_ses_password: secret 7 | g_zbx_scriptrunner_user: opsmedic 8 | g_zbx_scriptrunner_bastion_host: bastion-host.example.com 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/aws_pre_warm_ebs/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Pre Warm EBS Volume 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: [] 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/dnsmasq_proxy/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations dnsmasq proxy creation and setup 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_byo_generator/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations BYO Inventory Generator 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/dnsmasq_proxy_file/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations dnsmasq proxy creation and setup 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_outbound_tcp_logging/files/tcp_out_logging.conf: -------------------------------------------------------------------------------- 1 | # Ansible-managed 2 | if $msg startswith "tcp_out_logging:" then { 3 | action(type="omfile" FileCreateMode="0660" File="/var/log/tcp_out.log.gz" ZipLevel="8" veryRobustZip="on" IOBufferSize="32k" ASyncWriting="on" FlushInterval="60" FlushOnTXEnd="on") 4 | stop 5 | } 6 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_update_latest/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Make room for new kernel on /boot 3 | command: /usr/bin/package-cleanup --oldkernels --count=2 -y 4 | 5 | - name: Update all packages 6 | yum: 7 | name: "{{ oul_package_names }}" 8 | exclude: "{{ oul_exclude }}" 9 | state: latest 10 | when: oul_os_update 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/tito/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Thomas Wiest 4 | description: Manages Tito 5 | company: Red Hat 6 | license: Apache License, Version 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - packaging 14 | dependencies: [] 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_elb_instance_manager/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations ELB Instance Manager 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/set_aws_accountid/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: get the aws account 3 | iam_accountid: 4 | state: list 5 | register: aws_account_info 6 | 7 | - debug: 8 | var: aws_account_info 9 | 10 | - name: set the aws account id 11 | set_fact: 12 | saaid_retval_accountid: "{{ aws_account_info.iam_user.accountid }}" 13 | -------------------------------------------------------------------------------- /meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: APPUiO Team 4 | description: "Role configuring OpenShift monitoring with Zabbix" 5 | company: Puzzle ITC and VSHN 6 | license: Apache License, Version 2.0 7 | min_ansible_version: 2.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - cloud 14 | allow_duplicates: no 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/copr_cli/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Thomas Wiest 4 | description: Manages Copr CLI 5 | company: Red Hat 6 | license: Apache License, Version 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - packaging 14 | dependencies: [] 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_registry/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ osareg_master_nodes }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_default_ns_settings/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Change node-selector on default 3 | oc_edit: 4 | kind: namespace 5 | name: "{{ item }}" 6 | separator: ":" 7 | content: 8 | 'metadata:annotations:openshift.io/node-selector': 'type=infra' 9 | with_items: 10 | - default 11 | - openshift-infra 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_registry/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ osgreg_master_nodes }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/gpg_encrypt_send/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Group Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - ops_roles/lib_ansible_20 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/oso_host_monitoring/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osohm_monitor_capacity: False 3 | osohm_service_state: started 4 | osohm_service_enabled: yes 5 | 6 | osohm_hawk_config: 7 | active: False 8 | url: https://localhost:8443 9 | user: admin 10 | pass: password 11 | ssl_verify: False 12 | verbose: False 13 | debug: False 14 | 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/oso_zagg_deploy/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Zagg Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | echo -n "Running zabbix server..." 5 | sudo docker run -ti \ 6 | --net=host \ 7 | -p 10050:10050 \ 8 | -p 10051:10051 \ 9 | -v /var/lib/docker/volumes/shared:/shared:rw \ 10 | oso-{{ base_os }}-zabbix-server $@ 11 | echo "Done." 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_ami_copy/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS AMI copy Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_utils 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_group/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Group Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - ops_roles/lib_ansible_20 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_ssh_keys/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Add SSH Keys to GCP 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_gcloud 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/temp_dir_git_clone/meta/main.yml: -------------------------------------------------------------------------------- 1 | galaxy_info: 2 | author: OpenShift Ops 3 | description: Clones a git repo to a temp directory 4 | company: Red Hat, Inc. 5 | issue_tracker_url: https://github.com/openshift/openshift-ansible-ops/issues 6 | license: Apache 7 | min_ansible_version: 1.9 8 | dependencies: 9 | - tools_roles/lib_git 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_add_keys/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Group Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - ops_roles/lib_ansible_20 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_ami_perms/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS AMI sharing Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - ops_roles/lib_ansible_20 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_clam_update/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: ClamAV Signature Updater Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift_3.2 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_gcloud_config/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations GCP Gcloud config 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_gcloud 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_image_creation/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations GCP Image Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_gcloud 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_metrics/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osamet_cassandra_node: 2 3 | osamet_cassandra_limits_memory: 2G 4 | osamet_cassandra_requests_memory: 1G 5 | osamet_hawkular_limits_memory: 3G 6 | osamet_hawkular_requests_memory: 2G 7 | osamet_heapster_limits_memory: 3.75G 8 | osamet_heapster_requests_memory: 0.9375G 9 | osamet_image_version: "v3.4" 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_secure_router/vars/aws.yml: -------------------------------------------------------------------------------- 1 | --- 2 | ossr_cloud_router_edits: 3 | # needed to correspond with AWS ELB configuration that causes ELB to 4 | # communicated with the proxy protocol 5 | - key: spec.template.spec.containers[0].env 6 | value: 7 | name: ROUTER_USE_PROXY_PROTOCOL 8 | value: 'true' 9 | action: update 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_sso_app/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Single Sign-on Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_sso_app_zabbix/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations SSO Zabbix Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_zabbix 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/set_aws_accountid/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Set AWS Account ID 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_iam_accountid 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_iam_sso/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS IAM Single Sign-on Setup 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - ops_roles/lib_ansible_20 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_registry/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Registry Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_logging/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ osalog_master_nodes }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | run_once: true 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_metrics/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ osamet_master_nodes }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | run_once: true 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_secure_router/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations namespace settings 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/package_update_needed/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Package Update Check 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_repoquery 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/verify_aws_accountid/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Verify AWS Account ID 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_iam_accountid 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/rhel7/pamd.crond: -------------------------------------------------------------------------------- 1 | # 2 | # The PAM configuration file for the cron daemon 3 | # 4 | # 5 | # No PAM authentication called, auth modules not needed 6 | account required pam_access.so 7 | account include password-auth 8 | session required pam_loginuid.so 9 | session include password-auth 10 | auth include password-auth 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/src/pamd.crond: -------------------------------------------------------------------------------- 1 | # 2 | # The PAM configuration file for the cron daemon 3 | # 4 | # 5 | # No PAM authentication called, auth modules not needed 6 | account required pam_access.so 7 | account include password-auth 8 | session required pam_loginuid.so 9 | session include password-auth 10 | auth include password-auth 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/iptables_service/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Operations 4 | description: Enable iptables services 5 | company: Red Hat, Inc. 6 | license: Apache License, Version 2.0 7 | min_ansible_version: 1.7 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - system 14 | dependencies: 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_aos_modules/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Operations 4 | description: A role to provide Ops AOS Ansible modules 5 | company: Red Hat, Inc. 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - utils 14 | dependencies: 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_utils/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Thomas Wiest 4 | description: A role to provide general Ansible utility modules 5 | company: Red Hat, Inc. 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - utils 14 | dependencies: [] 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_pv_move/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations PV migration to new AZ on AWS 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_utils 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_default_ns_settings/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations namespace settings 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_template_deployer/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ ansible_play_hosts }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | run_once: true 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_volume_provisioner/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ osvp_master_nodes }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | run_once: true 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/centos7/pamd.crond: -------------------------------------------------------------------------------- 1 | # 2 | # The PAM configuration file for the cron daemon 3 | # 4 | # 5 | # No PAM authentication called, auth modules not needed 6 | account required pam_access.so 7 | account include password-auth 8 | session required pam_loginuid.so 9 | session include password-auth 10 | auth include password-auth 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_iam_kms/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS IAM KMS setup and management 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_utils 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_add_users_to_project/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations GCP Add Users to Project 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_gcloud 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_audit_config/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Master Audit Config 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_yaml_editor 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_resource_quota/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ ansible_play_hosts }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | run_once: true 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_storage_class/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ ansible_play_hosts }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | run_once: true 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_update_packages/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Openshift Package Updates 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_repoquery 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/centos7/vendor/README: -------------------------------------------------------------------------------- 1 | DO NOT EDIT THESE FILES!!! 2 | 3 | This is a place to put 3rd party vendor libs that are needed in the docker file. These files are not written by the Openshift team. These files are needed for operations. 4 | 5 | These files will eventually be packaged into RPM's and deployed through RPM's. As of now, these are not packaged. 6 | 7 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/rhel7/vendor/README: -------------------------------------------------------------------------------- 1 | DO NOT EDIT THESE FILES!!! 2 | 3 | This is a place to put 3rd party vendor libs that are needed in the docker file. These files are not written by the Openshift team. These files are needed for operations. 4 | 5 | These files will eventually be packaged into RPM's and deployed through RPM's. As of now, these are not packaged. 6 | 7 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/src/vendor/README: -------------------------------------------------------------------------------- 1 | DO NOT EDIT THESE FILES!!! 2 | 3 | This is a place to put 3rd party vendor libs that are needed in the docker file. These files are not written by the Openshift team. These files are needed for operations. 4 | 5 | These files will eventually be packaged into RPM's and deployed through RPM's. As of now, these are not packaged. 6 | 7 | -------------------------------------------------------------------------------- /files/opsmedic.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_user_opsmedic: 3 | uid: "{{ g_user_opsmedic_uid }}" 4 | gid: "{{ g_user_opsmedic_gid }}" 5 | groups: "{{ g_user_opsmedic_groups }}" 6 | username: opsmedic 7 | authkey_opts: command="/usr/bin/remote-healer READ_SSH" 8 | pub_key: ssh-rsa AAAAblahblahblah== opsmedic 9 | priv_key: |- 10 | -----BEGIN RSA PRIVATE KEY----- 11 | -----END RSA PRIVATE KEY----- 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_install_templates/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Install Templates and Examples 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_audit_config/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart openshift master services 3 | service: 4 | name: "{{ item[1] }}" 5 | state: restarted 6 | delegate_to: "{{ item[0] }}" 7 | with_nested: 8 | - "{{ ansible_play_hosts }}" 9 | - [ 'atomic-openshift-master-api', 'atomic-openshift-master-controllers' ] 10 | run_once: true 11 | 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/fluentd_master/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Red Hat 4 | description: Fluentd Master 5 | company: Red Hat, Inc. 6 | license: Apache License, Version 2.0 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - monitoring 14 | dependencies: 15 | - openshift_facts 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_ops_utils/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Operations 4 | description: A role to provide various generic modules by the Ops team 5 | company: Red Hat, Inc. 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - utils 14 | dependencies: 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_zabbix/tasks/create_user.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Update zabbix credentialss for a user 3 | zbx_user: 4 | server: "{{ ozb_server }}" 5 | user: "{{ ozb_user }}" 6 | password: "{{ ozb_password }}" 7 | alias: "{{ ozb_username }}" 8 | passwd: "{{ ozb_new_password | default(ozb_password, true) }}" 9 | register: user 10 | 11 | - debug: var=user.results 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_set_zone/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Zone Retriever 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_gcloud 14 | - tools_roles/lib_yaml_editor 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_node_schedulable/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Set node schedulable/unschedulable, and optionally drain. 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift 14 | -------------------------------------------------------------------------------- /vendor/ansible-module-openshift/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: APPUiO Team 4 | description: Role making OpenShift haproxy configurable through prestart scripts 5 | company: Puzzle ITC and VSHN 6 | license: Apache License, Version 2.0 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: [] 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_os_firewall/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Ops 4 | description: ops_os_firewall 5 | company: Red Hat, Inc. 6 | license: Apache License, Version 2.0 7 | min_ansible_version: 1.7 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - system 14 | dependencies: 15 | - role: tools_roles/lib_aos_modules 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix_cluster_stats/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Thomas Wiest 4 | description: Adds items to cluster instances in zabbix 5 | company: Red Hat 6 | license: ASL 2.0 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - monitoring 14 | dependencies: 15 | - tools_roles/lib_zabbix 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/roles/generate_containers/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Red Hat OpenShift Operations 4 | description: Container generator 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | - name: Fedora 13 | versions: 14 | - 22 15 | - 23 16 | dependencies: [] 17 | -------------------------------------------------------------------------------- /filter_plugins/openshift.py: -------------------------------------------------------------------------------- 1 | __metaclass__ = type 2 | 3 | def select_by_label(hosts, label, value, hostvars): 4 | return [host for host in hosts if hostvars[host].get('openshift_node_labels', {}).get(label, '') == value] 5 | 6 | class FilterModule(object): 7 | 8 | def filters(self): 9 | filters = { 10 | 'select_by_label': select_by_label, 11 | } 12 | 13 | return filters 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/epel_repository/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Install EPEL Repo 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_repoquery 14 | - role: tools_roles/lib_ops_utils 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_iam_cert/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Group Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - ops_roles/lib_ansible_20 14 | - tools_roles/lib_yaml_editor 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_cluster_creation/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Cluster Creation Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_gcloud 14 | - tools_roles/lib_dyn 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_group_policy/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: manage_group_policy 3 | oc_adm_policy_group: # call openshift-ansible lib_openshift module 4 | namespace: "{{ osgp_namespace }}" 5 | group: "{{ osgp_group }}" 6 | resource_kind: "{{ osgp_resource_kind }}" 7 | resource_name: "{{ osgp_resource_name }}" 8 | state: "{{ osgp_state }}" 9 | run_once: true 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_logging/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations logging 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift_3.2 14 | - role: tools_roles/lib_yaml_editor 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_metrics/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations metrics 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_openshift_3.2 14 | - role: tools_roles/lib_yaml_editor 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_registry/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Registry Role 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_utils 14 | - role: tools_roles/lib_openshift 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_sysctl_config/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - fail: 3 | msg: "{{ item }} is undefined" 4 | when: ossc_settings is undefined 5 | 6 | - name: set sysctl values 7 | sysctl: 8 | name: "{{ item.name }}" 9 | value: "{{ item.value }}" 10 | sysctl_file: "{{ item.sysctl_file | default(omit)}}" 11 | reload: True 12 | with_items: "{{ ossc_settings }}" 13 | 14 | 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/centos7/copr-openshift-tools.repo: -------------------------------------------------------------------------------- 1 | [openshift-tools] 2 | name=Copr repo for openshift-tools 3 | baseurl=https://copr-be.cloud.fedoraproject.org/results/@OpenShiftOnlineOps/openshift-tools/epel-7-$basearch/ 4 | skip_if_unavailable=True 5 | gpgcheck=1 6 | gpgkey=https://copr-be.cloud.fedoraproject.org/results/@OpenShiftOnlineOps/openshift-tools/pubkey.gpg 7 | enabled=1 8 | enabled_metadata=1 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/rhel7/copr-openshift-tools.repo: -------------------------------------------------------------------------------- 1 | [openshift-tools] 2 | name=Copr repo for openshift-tools 3 | baseurl=https://copr-be.cloud.fedoraproject.org/results/@OpenShiftOnlineOps/openshift-tools/epel-7-$basearch/ 4 | skip_if_unavailable=True 5 | gpgcheck=1 6 | gpgkey=https://copr-be.cloud.fedoraproject.org/results/@OpenShiftOnlineOps/openshift-tools/pubkey.gpg 7 | enabled=1 8 | enabled_metadata=1 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/src/copr-openshift-tools.repo: -------------------------------------------------------------------------------- 1 | [openshift-tools] 2 | name=Copr repo for openshift-tools 3 | baseurl=https://copr-be.cloud.fedoraproject.org/results/@OpenShiftOnlineOps/openshift-tools/epel-7-$basearch/ 4 | skip_if_unavailable=True 5 | gpgcheck=1 6 | gpgkey=https://copr-be.cloud.fedoraproject.org/results/@OpenShiftOnlineOps/openshift-tools/pubkey.gpg 7 | enabled=1 8 | enabled_metadata=1 9 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_udp_limits/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations outbound UDP limits 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_ops_utils 14 | - role: tools_roles/lib_openshift 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | echo -n "Running oso-{{ base_os }}-saml-sso... " 5 | {% if base_os == 'rhel7' %} 6 | sudo docker run -ti --net=host --rm=true --name saml-sso oso-rhel7-saml-sso $@ 7 | {% elif base_os == 'centos7' %} 8 | sudo docker run -ti --net=host --rm=true --name saml-sso oso-centos7-saml-sso $@ 9 | {% endif %} 10 | echo "Done." 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # Install ansible client 3 | 4 | - name: Install Ansible 5 | action: "{{ ansible_pkg_mgr }} name=ansible state=present" 6 | 7 | - name: modify ansible.cfg 8 | lineinfile: 9 | dest: /etc/ansible/ansible.cfg 10 | backrefs: yes 11 | regexp: "^#?({{ item.option }})( *)=" 12 | line: '\1\2= {{ item.value }}' 13 | with_items: "{{ ans_config }}" 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/fstab_mount_options/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Operations 4 | description: Configure options in fstab 5 | company: Red Hat 6 | license: Apache 2.0 7 | min_ansible_version: 1.9.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | - name: Fedora 13 | versions: 14 | - all 15 | categories: 16 | - system 17 | dependencies: 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_user/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations EC2 SG setup and management 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: ops_roles/lib_ansible_20 14 | - role: tools_roles/lib_yaml_editor 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_service_account/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations GCP Service Account Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - tools_roles/lib_gcloud 14 | - tools_roles/lib_yaml_editor 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_resource_quota/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Operations 4 | description: This role configures clusterresourcequotas 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 2.2 8 | platforms: 9 | - name: EL 10 | verisons: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: 15 | - role: tools_roles/lib_yaml_editor 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_users/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Operations 4 | description: A role to manage OpenShift users 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: 15 | - "aos_{{ g_play_openshift_version }}_roles/lib_openshift" 16 | -------------------------------------------------------------------------------- /vendor/ansible-module-openshift/tests/data/dc_patch1.json: -------------------------------------------------------------------------------- 1 | { 2 | "spec": { 3 | "template": { 4 | "spec": { 5 | "containers": [ 6 | { 7 | "name": "openshift3-docker-hello", 8 | "env": [ 9 | { 10 | "name": "TZ", 11 | "value": "UTC" 12 | } 13 | ] 14 | } 15 | ] 16 | } 17 | } 18 | } 19 | } 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/install_docker_registry_certs/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Persistent Volume Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: ops_roles/lib_ansible_20 14 | - role: tools_roles/lib_openshift 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_persistent_volumes/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations GCP Persistent Volume Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: ops_roles/lib_openshift 14 | - role: tools_roles/lib_gcloud 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/local_development/monitoring-secrets/zabbix-server-vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_ses_mail_from: ops@example.com 3 | g_ses_smtp_domain: zabbix.ops.example.com 4 | g_ses_smtp_server: email-smtp.us-east-1.amazonaws.com 5 | g_ses_user: AKIASECRET 6 | # AWS SMTP user (zabbix_smtp) secret key: secret 7 | g_ses_password: secret 8 | g_zbx_scriptrunner_user: opsmedic 9 | g_zbx_scriptrunner_bastion_host: bastion-host.example.com 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/create_pv/pv-template.j2: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: PersistentVolume 4 | metadata: 5 | name: {{ pv_name }} 6 | labels: 7 | type: ebs 8 | spec: 9 | capacity: 10 | storage: {{ vol_size }}Gi 11 | accessModes: 12 | - ReadWriteOnce 13 | persistentVolumeReclaimPolicy: Delete 14 | awsElasticBlockStore: 15 | volumeID: aws://{{ vol_az }}/{{ vol_id }} 16 | fsType: ext4 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/kube_nfs_volumes/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Jan Safranek 4 | description: Partition disks and use them as Kubernetes NFS physical volumes. 5 | company: Red Hat, Inc. 6 | license: license (Apache) 7 | min_ansible_version: 1.4 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | - name: Fedora 13 | versions: 14 | - all 15 | categories: 16 | - cloud 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/logrotate/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Nick Hammond & Openshift Ops 4 | description: Role to configure logrotate scripts 5 | license: BSD 6 | min_ansible_version: 1.9 7 | platforms: 8 | - name: Ubuntu 9 | versions: 10 | - lucid 11 | - precise 12 | - trusty 13 | - name: EL 14 | versions: 15 | - 7 16 | categories: 17 | - system 18 | dependencies: [] 19 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_persistent_volumes/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations AWS Persistent Volume Creation 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: ops_roles/lib_ansible_20 14 | - role: tools_roles/lib_openshift 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_dedicated_admin/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Max Whittingham 4 | description: This role deploys the OpenShift Dedicated Admin Role 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | verisons: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: 15 | - role: tools_roles/openshift_dedicated_scripts 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_group_policy/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Operations 4 | description: A role to manage OpenShift group policy 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: 15 | - "aos_{{ g_play_openshift_version }}_roles/lib_openshift" 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_user_policy/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Operations 4 | description: A role to manage OpenShift user policy 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: 15 | - "aos_{{ g_play_openshift_version }}_roles/lib_openshift" 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_disk_provision/tests/test.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # test requires: lvm2, parted, xfsprogs 3 | 4 | - hosts: localhost 5 | remote_user: root 6 | roles: 7 | - role: openshift_disk_provision 8 | odp_volume_name: "/dev/null" 9 | odp_mount_location: "/mnt" 10 | odp_lvm_vg_name: 'testvg' 11 | odp_lvm_lv_name: 'testlv' 12 | odp_filesystem_type: "ext2" 13 | ignore_errors: true 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | echo -n "Running oso-{{ base_os }}-clam-update... " 5 | {% if base_os == 'rhel7' %} 6 | sudo docker run -ti --net=host --rm=true --name oso-clam-update oso-rhel7-clam-update $@ 7 | {% elif base_os == 'centos7' %} 8 | sudo docker run -ti --net=host --rm=true --name oso-clam-update oso-centos7-clam-update $@ 9 | {% endif %} 10 | echo "Done." 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | echo -n "Running oso-{{ base_os }}-monitor-sso... " 5 | {% if base_os == 'rhel7' %} 6 | sudo docker run -ti --net=host --rm=true --name oso-monitor-sso oso-rhel7-monitor-sso $@ 7 | {% elif base_os == 'centos7' %} 8 | sudo docker run -ti --net=host --rm=true --name oso-monitor-sso oso-centos7-monitor-sso $@ 9 | {% endif %} 10 | echo "Done." 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/chrony/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Operations 4 | description: Configure chrony as an ntp server 5 | company: Red Hat 6 | license: Apache 2.0 7 | min_ansible_version: 1.9.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | - name: Fedora 13 | versions: 14 | - all 15 | categories: 16 | - system 17 | dependencies: 18 | - tools_roles/lib_timedatectl 19 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_ami_prep/defaults/main.yml: -------------------------------------------------------------------------------- 1 | oap_package_list: 2 | - atomic-openshift-master 3 | - atomic-openshift-sdn-ovs 4 | - atomic-openshift-tests 5 | - atomic-openshift-node 6 | - atomic-openshift-pod 7 | - atomic-openshift-utils 8 | - atomic-openshift-clients 9 | - atomic-openshift-clients-redistributable 10 | - atomic-openshift-dockerregistry 11 | - tuned-profiles-atomic 12 | - tuned-profiles-atomic-openshift-node 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/rootlog_ssh_logs/files/10_root_profile_d.sh: -------------------------------------------------------------------------------- 1 | # for root (only), source any scriptlets from /root/.profile.d/ 2 | if [ "$UID" == "0" ]; then 3 | for i in /root/.profile.d/*.sh ; do 4 | if [ -r "$i" ]; then 5 | # check to see if this an interactive shell 6 | if [ "${-#*i}" != "$-" ]; then 7 | . "$i" 8 | else 9 | . "$i" >/dev/null 2>&1 10 | fi 11 | fi 12 | done 13 | fi 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_reboot_server/tasks/main.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | # Role to reboot a server 3 | - name: Restart server 4 | shell: sleep 2 && shutdown -r now "Ansible updates triggered" 5 | async: 1 6 | poll: 0 7 | ignore_errors: true 8 | 9 | - name: Wait for server to restart 10 | local_action: 11 | module: wait_for 12 | host={{ ansible_ssh_host }} 13 | port=22 14 | delay=3 15 | timeout=600 16 | sudo: false 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/local_development/monitoring-secrets/opsmedic.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_user_opsmedic: 3 | uid: "{{ g_user_opsmedic_uid }}" 4 | gid: "{{ g_user_opsmedic_gid }}" 5 | groups: "{{ g_user_opsmedic_groups }}" 6 | username: opsmedic 7 | authkey_opts: command="/usr/bin/remote-healer READ_SSH" 8 | pub_key: ssh-rsa AAAAblahblahblah== opsmedic 9 | priv_key: |- 10 | -----BEGIN RSA PRIVATE KEY----- 11 | -----END RSA PRIVATE KEY----- 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/docker_storage_setup/templates/devicemapper_dss.j2: -------------------------------------------------------------------------------- 1 | # Edit this file to override any configuration options specified in 2 | # /usr/lib/docker-storage-setup/docker-storage-setup. 3 | # 4 | # For more details refer to "man docker-storage-setup" 5 | DEVS={{ dss_docker_device }} 6 | VG=docker_vg 7 | DATA_SIZE=99%VG 8 | AUTO_EXTEND_POOL=no 9 | EXTRA_DOCKER_STORAGE_OPTIONS="--storage-opt dm.basesize={{ dss_docker_storage_dm_basesize }}" 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_dedicated_scripts/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Devan Goodwin 4 | description: Installs the correct version of openshift-dedicated-scripts for the major OpenShift version. 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | verisons: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: 15 | - role: tools_roles/lib_repoquery 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_disk_provision/meta/main.yml: -------------------------------------------------------------------------------- 1 | galaxy_info: 2 | author: OpenShift Operations 3 | description: Provision disk partition, lvm volume, and filesystem 4 | company: Red Hat, Inc. 5 | license: Apache Software License 2.0 6 | min_ansible_version: 2.0 7 | platforms: 8 | - name: EL 9 | versions: 10 | - 6 11 | - 7 12 | 13 | galaxy_tags: ['disk', 'block', 'lvm'] 14 | dependencies: [] 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_persistent_volumes/templates/persistent_volume.yml.j2: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: PersistentVolume 4 | metadata: 5 | name: {{ item.name }} 6 | labels: 7 | type: pd 8 | spec: 9 | capacity: 10 | storage: {{ item.properties.sizeGb }}Gi 11 | accessModes: 12 | - ReadWriteOnce 13 | persistentVolumeReclaimPolicy: Retain 14 | gcePersistentDisk: 15 | pdName: {{ item.name }} 16 | fsType: ext4 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/postfix_amazon_ses_client/handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: restart postfix 3 | service: 4 | name: postfix 5 | state: restarted 6 | 7 | - name: hash saml_passwd 8 | command: /usr/sbin/postmap hash:/etc/postfix/sasl_passwd 9 | notify: 10 | - chmod sasl_passwd.db 11 | 12 | - name: chmod sasl_passwd.db 13 | file: 14 | path: /etc/postfix/sasl_passwd.db 15 | owner: root 16 | group: root 17 | mode: 0600 18 | 19 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/metrics_setup/playbooks/master_config_facts.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: "Load master config" 3 | hosts: masters 4 | vars: 5 | master_config_file: "/tmp/ansible-metrics-{{ ansible_hostname }}" 6 | tasks: 7 | - name: "Fetch master config from remote" 8 | fetch: "src=/etc/origin/master/master-config.yaml dest={{ master_config_file }} flat=yes" 9 | - name: "Load config" 10 | include_vars: "{{ master_config_file }}" 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_tower_cli/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Install python-ansible-tower-cli 3 | action: "{{ ansible_pkg_mgr }} name=python-ansible-tower-cli state=present" 4 | 5 | - template: 6 | src: tower_cli.cfg.j2 7 | dest: /etc/tower/tower_cli.cfg 8 | owner: awx 9 | group: awx 10 | mode: 0640 11 | 12 | - file: 13 | state: link 14 | src: /etc/tower 15 | dest: /etc/awx 16 | owner: awx 17 | group: awx 18 | 19 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_storage_class/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Openshift Operations 4 | description: This role configures the StorageClass in Openshift 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 2.2 8 | platforms: 9 | - name: EL 10 | verisons: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: 15 | - role: tools_roles/lib_yaml_editor 16 | - role: tools_roles/lib_openshift 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_reconcile_cluster_roles/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: Max Whittingham 4 | description: A role to run the OpenShift reconciler on a cluster to update the policies stored in etcd for the cluster during a cluster upgrade. 5 | company: Red Hat 6 | license: Apache 7 | min_ansible_version: 1.9 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | categories: 13 | - cloud 14 | dependencies: [] 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/src/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/src/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zagg-web/rhel7/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zagg-web/src/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_utils/README.md: -------------------------------------------------------------------------------- 1 | lib_utils 2 | ========= 3 | 4 | A role containing general utility Ansible modules created by the OpenShift Ops team. 5 | 6 | Requirements 7 | ------------ 8 | 9 | None 10 | 11 | Example Playbook 12 | ---------------- 13 | 14 | To make sure that we can reference these modules, include a role as such: 15 | 16 | - hosts: servers 17 | roles: 18 | - lib_utils 19 | 20 | License 21 | ------- 22 | 23 | Apache 24 | 25 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_online_ha_proxy/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Configure haproxy for OpenShift Online 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: "aos_{{ g_play_openshift_version }}_roles/lib_utils" 14 | - role: "aos_{{ g_play_openshift_version }}_roles/lib_openshift" 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_template_deployer/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Template Deployer 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 2.0 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: "aos_{{ g_play_openshift_version }}_roles/lib_utils" 14 | - role: "aos_{{ g_play_openshift_version }}_roles/lib_openshift" 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/centos7/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/rhel7/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | echo -n "Running oso-{{ base_os }}-zabbix-web... " 5 | {% if base_os == 'rhel7' %} 6 | sudo docker run -ti --net=host --rm=true -p 11211:11211 --name oso-memcached-sso oso-rhel7-memcached-sso $@ 7 | {% elif base_os == 'centos7' %} 8 | sudo docker run -ti --net=host --rm=true -p 11211:11211 --name oso-memcached-sso oso-centos7-memcached-sso $@ 9 | {% endif %} 10 | echo "Done." 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/centos7/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/rhel7/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zagg-web/centos7/ops-run-in-loop: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # This is a temporary script until we get cron running as non-root (or find something else) 4 | 5 | if [ $# -lt 2 ] ; then 6 | echo "Usage: $(basename $0) [arg] ..." 7 | exit 1 8 | fi 9 | 10 | SLEEP_TIME=$1 11 | shift 12 | 13 | # The purpose of this script is to run something in an infinite loop 14 | while true ; do 15 | "$@" 16 | sleep $SLEEP_TIME 17 | done 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_persistent_volumes/templates/ebs_persistent_volume.yml.j2: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: PersistentVolume 4 | metadata: 5 | name: {{ item.volume.tags["Name"] }} 6 | labels: 7 | type: ebs 8 | spec: 9 | capacity: 10 | storage: {{ item.volume.size }}Gi 11 | accessModes: 12 | - ReadWriteOnce 13 | persistentVolumeReclaimPolicy: Retain 14 | awsElasticBlockStore: 15 | volumeID: {{ item.volume.id }} 16 | fsType: ext4 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_volume_provisioner/meta/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | galaxy_info: 3 | author: OpenShift Ops 4 | description: Openshift Operations Volume Provisioner Deployer 5 | company: Red Hat, Inc 6 | license: ASL 2.0 7 | min_ansible_version: 1.2 8 | platforms: 9 | - name: EL 10 | versions: 11 | - 7 12 | dependencies: 13 | - role: tools_roles/lib_yaml_editor 14 | - role: tools_roles/lib_openshift_3.2 15 | - role: tools_roles/openshift_dedicated_scripts 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/src/zabbix/db_create/createdb.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | /usr/bin/mysqlshow -u${MYSQL_USER} -h${MYSQL_HOST} -p${MYSQL_PASSWORD} ${MYSQL_DATABASE} | grep -q trigger_discovery 4 | 5 | if [ "$?" == 1 ]; then 6 | DBCREATEFILE=$(rpm -ql zabbix-server-mysql | grep 'create.sql') 7 | zcat $DBCREATEFILE | /usr/bin/mysql -u${MYSQL_USER} -p${MYSQL_PASSWORD} -h${MYSQL_HOST} zabbix 8 | else 9 | echo "Database ${MYSQL_DATABASE} exists. Skipping setup." 10 | fi 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/centos7/zabbix/db_create/createdb.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | /usr/bin/mysqlshow -u${MYSQL_USER} -h${MYSQL_HOST} -p${MYSQL_PASSWORD} ${MYSQL_DATABASE} | grep -q trigger_discovery 4 | 5 | if [ "$?" == 1 ]; then 6 | DBCREATEFILE=$(rpm -ql zabbix-server-mysql | grep 'create.sql') 7 | zcat $DBCREATEFILE | /usr/bin/mysql -u${MYSQL_USER} -p${MYSQL_PASSWORD} -h${MYSQL_HOST} zabbix 8 | else 9 | echo "Database ${MYSQL_DATABASE} exists. Skipping setup." 10 | fi 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/rhel7/zabbix/db_create/createdb.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | /usr/bin/mysqlshow -u${MYSQL_USER} -h${MYSQL_HOST} -p${MYSQL_PASSWORD} ${MYSQL_DATABASE} | grep -q trigger_discovery 4 | 5 | if [ "$?" == 1 ]; then 6 | DBCREATEFILE=$(rpm -ql zabbix-server-mysql | grep 'create.sql') 7 | zcat $DBCREATEFILE | /usr/bin/mysql -u${MYSQL_USER} -p${MYSQL_PASSWORD} -h${MYSQL_HOST} zabbix 8 | else 9 | echo "Database ${MYSQL_DATABASE} exists. Skipping setup." 10 | fi 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/logrotate/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: nickhammond.logrotate | Install logrotate 3 | package: 4 | name: logrotate 5 | state: present 6 | when: logrotate_scripts is defined and logrotate_scripts|length > 0 7 | 8 | - name: nickhammond.logrotate | Setup logrotate.d scripts 9 | template: 10 | src: logrotate.d.j2 11 | dest: "{{ logrotate_conf_dir }}{{ item.name }}" 12 | with_items: "{{ logrotate_scripts }}" 13 | when: logrotate_scripts is defined 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/logrotate/templates/logrotate.d.j2: -------------------------------------------------------------------------------- 1 | # {{ ansible_managed }} 2 | 3 | {% for path in item.paths -%} 4 | {{ path }} 5 | {% endfor -%} 6 | { 7 | {% if item.options is defined -%} 8 | {% for option in item.options -%} 9 | {{ option }} 10 | {% endfor -%} 11 | {% endif %} 12 | {%- if item.scripts is defined -%} 13 | {%- for name, script in item.scripts.iteritems() -%} 14 | {{ name }} 15 | {{ script }} 16 | endscript 17 | {% endfor -%} 18 | {% endif -%} 19 | } 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_customizations/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Add ops_promt.sh in /etc/profile.d 3 | template: 4 | src: ops_prompt.sh.j2 5 | dest: /etc/profile.d/ops_prompt.sh 6 | owner: root 7 | group: root 8 | mode: 0644 9 | 10 | - name: setup ops specific aliases 11 | lineinfile: 12 | dest: /root/.bashrc 13 | regexp: '^\s*alias\s*{{ item.name }}=' 14 | line: "alias {{ item.name }}='{{ item.alias }} '" 15 | with_items: 16 | - name: vi 17 | alias: vim 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_ipv6_disable/tasks/main.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | # Disable ipv6 on RHEL7 3 | 4 | - name: Disable all ipv6 5 | sysctl: name="net.ipv6.conf.all.disable_ipv6" value=1 sysctl_set=yes state=present reload=yes 6 | 7 | - name: Disable default ipv6 8 | sysctl: name="net.ipv6.conf.default.disable_ipv6" value=1 sysctl_set=yes state=present reload=yes 9 | 10 | - name: Remove ipv6 localhost from /etc/hosts 11 | lineinfile: dest='/etc/hosts' regexp='^::1 ' state=absent owner=root group=root mode=0644 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/roles/generate_containers/vars/main.yml: -------------------------------------------------------------------------------- 1 | generated_header: | 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_service_account/templates/multi_inventory.yml.j2: -------------------------------------------------------------------------------- 1 | --- 2 | g_multi_inventory_accountid: {{ osgcpsa_project }} 3 | g_multi_inventory_provider_files: 4 | - contents: {{ private_key | to_yaml }} 5 | name: priv_key.pem 6 | - contents: |- 7 | [gce] 8 | gce_service_account_email_address = {{ sa_user_email }} 9 | gce_service_account_pem_file_path = ${tmpdir}/priv_key.pem 10 | gce_project_id = {{ osgcpsa_project }} 11 | instance_states = RUNNING 12 | name: gce.ini 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zagg-web/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | {{ generated_header }} 3 | 4 | sudo echo -e "\nTesting sudo works...\n" 5 | 6 | sudo docker run -ti --rm --name oso-{{ base_os }}-zagg-web \ 7 | --link oso-{{ base_os }}-zaio:oso-{{ base_os }}-zaio \ 8 | -e "ZAGG_SERVER_USER=admin" \ 9 | -e "ZAGG_SERVER_PASSWORD=password" \ 10 | -v /etc/localtime:/etc/localtime \ 11 | -v /var/lib/docker/volumes/shared:/shared:rw \ 12 | -p 8000:8000 \ 13 | -p 8443:8443 \ 14 | oso-{{ base_os }}-zagg-web $1 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_openshift_3.2/build/test/image.yml: -------------------------------------------------------------------------------- 1 | #!/usr/bin/ansible-playbook 2 | --- 3 | - hosts: "oo_clusterid_opstest:&oo_master_primary" 4 | gather_facts: no 5 | user: root 6 | tasks: 7 | - name: get image 8 | oc_image: 9 | state: list 10 | name: rhel7 11 | namespace: default 12 | 13 | - name: create image 14 | oc_image: 15 | registry_url: registry.ops.openshift.com/ops 16 | image_name: oso-rhel7-zagg-web 17 | image_tag: int 18 | run_once: true 19 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_install_templates/README.md: -------------------------------------------------------------------------------- 1 | Role Name 2 | ========= 3 | 4 | Ansible role to use Openshift Example Templates 5 | 6 | Requirements 7 | ------------ 8 | 9 | Role Variables 10 | -------------- 11 | 12 | 13 | Dependencies 14 | ------------ 15 | 16 | 17 | Example Playbook 18 | ---------------- 19 | 20 | - role: tools_roles/openshift_install_templates 21 | 22 | License 23 | ------- 24 | 25 | Apache 2.0 26 | 27 | Author Information 28 | ------------------ 29 | 30 | Openshift Operations 31 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/src/run.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | {{ generated_header }} 3 | 4 | echo -n "Running oso-{{ base_os }}-zabbix-web... " 5 | {% if base_os == 'rhel7' %} 6 | sudo docker run -ti --net=host --rm=true -e 'ZABBIX_SERVER_HOSTNAME=oso-rhel7-zabbix-server' --name zabbix-web oso-rhel7-zabbix-web $@ 7 | {% elif base_os == 'centos7' %} 8 | sudo docker run -ti --net=host --rm=true -e 'ZABBIX_SERVER_HOSTNAME=oso-cent7-zabbix-server' --name zabbix-web oso-centos7-zabbix-web $@ 9 | {% endif %} 10 | echo "Done." 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/kube_nfs_volumes/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | kubernetes_url: https://172.30.0.1:443 3 | 4 | kube_api_version: v1 5 | 6 | kube_req_template: "../templates/{{ kube_api_version }}/nfs.json.j2" 7 | 8 | # Options of NFS exports. 9 | nfs_export_options: "*(rw,no_root_squash,insecure,no_subtree_check)" 10 | 11 | # Directory, where the created partitions should be mounted. They will be 12 | # mounted as /sda1 etc. 13 | mount_dir: /exports 14 | 15 | # Force re-partitioning the disks 16 | force: false 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix/vars/template_performance_copilot.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_template_performance_copilot: 3 | name: Template Performance Copilot 4 | zitems: 5 | - key: pcp.ping 6 | applications: 7 | - Performance Copilot 8 | value_type: int 9 | 10 | ztriggers: 11 | - name: "pcp.ping failed on {HOST.NAME}" 12 | expression: "{Template Performance Copilot:pcp.ping.max(#3)}<1" 13 | url: "https://github.com/openshift/ops-sop/blob/master/v3/alerts/check_pcp_ping.asciidoc" 14 | priority: average 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/gcp_compute_packages/files/google-cloud.repo: -------------------------------------------------------------------------------- 1 | [google-cloud-compute] 2 | name=Google Cloud Compute 3 | baseurl=https://packages.cloud.google.com/yum/repos/google-cloud-compute-el7-x86_64 4 | enabled=1 5 | gpgcheck=1 6 | # mwoodson note: I disabled repo_gpgcheck. Installs failed and I couldn't get google 7 | # cloud packages to install until I disabled this 8 | repo_gpgcheck=0 9 | gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg 10 | https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_yaml_editor/build/src/base.py: -------------------------------------------------------------------------------- 1 | # pylint: skip-file 2 | 3 | ''' 4 | module for managing yaml files 5 | ''' 6 | 7 | import json 8 | import os 9 | import re 10 | import ruamel.yaml as yaml 11 | 12 | # This is here because of a bug that causes yaml 13 | # to incorrectly handle timezone info on timestamps 14 | #def timestamp_constructor(_, node): 15 | # ''' return timestamps as strings''' 16 | # return str(node.value) 17 | #yaml.add_constructor(u'tag:yaml.org,2002:timestamp', timestamp_constructor) 18 | 19 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/dns/templates/named.conf: -------------------------------------------------------------------------------- 1 | options 2 | { 3 | directory "/var/named"; 4 | 5 | allow-query { {{ ansible_default_ipv4.network }}/24; }; 6 | 7 | recursion yes; 8 | 9 | {% if dns_forwarders is defined %} 10 | forwarders { 11 | {% for dns in dns_forwarders %} 12 | {{ dns }}; 13 | {% endfor %} 14 | }; 15 | {% endif %} 16 | }; 17 | {% for zone in dns_zones %} 18 | 19 | zone "{{ zone }}" IN { 20 | type master; 21 | file "openshift-cluster.zone"; 22 | }; 23 | {% endfor %} 24 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_user_policy/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: manage_user_policy 3 | oc_adm_policy_user: # call openshift-ansible lib_openshift module 4 | namespace: "{{ item.namespace | default(omit) }}" 5 | user: "{{ item.username }}" 6 | resource_kind: "{{ item.resource_kind }}" 7 | resource_name: "{{ item.resource_name }}" 8 | state: "{{ item.state | default(omit) }}" 9 | run_once: true 10 | when: inventory_hostname == ansible_play_hosts[0] 11 | with_items: "{{ osup_user_policy_bindings }}" 12 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_v2_monitor_url: 'https://www.google.com' 3 | g_webcheck_v3prodpreview_sso_url_version: 'https://www.redhat.com' 4 | g_webcheck_v3prodpreview_sso_url_fabric8: 'https://www.redhat.com' 5 | 6 | g_webcheck_v3prod_sso_url_version: 'https://www.openshift.com' 7 | g_webcheck_v3prod_sso_url_fabric8: 'https://www.openshift.com' 8 | 9 | g_webcheck_developerredhatcom_sso_url_version: 'https://www.openshift.org' 10 | g_webcheck_developerredhatcom_sso_url_rhd: 'https://www.openshift.org' 11 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/rhel7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | sudo docker run -ti --rm oso-rhel7-ops-base bash 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/gcp_api_tools/README.md: -------------------------------------------------------------------------------- 1 | gcp_api_tools 2 | ========= 3 | 4 | Ansible role for installing the needed packages for gcp management 5 | 6 | Requirements 7 | ------------ 8 | 9 | Ansible Modules: 10 | 11 | - tools_roles/gcp_api_tools 12 | 13 | 14 | Role Variables 15 | -------------- 16 | 17 | Dependencies 18 | ------------ 19 | 20 | 21 | Example Playbook 22 | ---------------- 23 | 24 | 25 | License 26 | ------- 27 | 28 | Apache 2.0 29 | 30 | Author Information 31 | ------------------ 32 | 33 | Openshift Operations 34 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/centos7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | sudo docker run -ti --rm oso-centos7-ops-base bash 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/rhel7/root/templates/saml20-idp-hosted.php.j2: -------------------------------------------------------------------------------- 1 | '__DEFAULT__', 10 | 'privatekey' => '{{saml2_sso_configdata.saml_privatekey_file}}', 11 | 'certificate' => '{{saml2_sso_configdata.saml_cert_file}}', 12 | 'auth' => '{{saml2_sso_configdata.idp_auth_module}}', 13 | ); 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/src/root/templates/saml20-idp-hosted.php.j2: -------------------------------------------------------------------------------- 1 | '__DEFAULT__', 10 | 'privatekey' => '{{saml2_sso_configdata.saml_privatekey_file}}', 11 | 'certificate' => '{{saml2_sso_configdata.saml_cert_file}}', 12 | 'auth' => '{{saml2_sso_configdata.idp_auth_module}}', 13 | ); 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ansible_inventory/files/inventory.sh: -------------------------------------------------------------------------------- 1 | #!/usr/bin/bash 2 | 3 | host=$(hostname -s) 4 | data=$(/usr/share/ansible/inventory/multi_inventory.py --refresh-cache 2>&1 1>/dev/null) 5 | 6 | 7 | if [ -n "$data" ]; then 8 | # Log stderr from multi_inventory account refresh 9 | echo "$(date "+%F %T") $data" >> /var/log/multi_inventory.log 10 | 11 | err_count=$(echo "$data" | wc -l) 12 | else 13 | err_count=0 14 | fi 15 | 16 | # Send metrics 17 | ops-metric-client -s $host -k multi_inventory.account.refresh -o $err_count 18 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/logrotate/tests/test.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - hosts: all 3 | become: True 4 | roles: 5 | - ansible-logrotate 6 | - role: ansible-logrotate 7 | logrotate_scripts: 8 | - name: nginx-options 9 | paths: 10 | - /var/log/nginx/options.log 11 | options: 12 | - daily 13 | 14 | - role: ansible-logrotate 15 | logrotate_scripts: 16 | - name: nginx-scripts 17 | paths: 18 | - /var/log/nginx/scripts.log 19 | scripts: 20 | postrotate: "echo test" 21 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_default_ns_settings/README.md: -------------------------------------------------------------------------------- 1 | openshift__namespace_settings 2 | ========= 3 | 4 | Ansible role to manage namespace settings 5 | 6 | Requirements 7 | ------------ 8 | 9 | Ansible Modules: 10 | 11 | - role: lib_openshift 12 | 13 | 14 | Role Variables 15 | -------------- 16 | 17 | Dependencies 18 | ------------ 19 | 20 | 21 | Example Playbook 22 | ---------------- 23 | 24 | 25 | License 26 | ------- 27 | 28 | Apache 2.0 29 | 30 | Author Information 31 | ------------------ 32 | 33 | Openshift Operations 34 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/src/usr_local_bin/yum-install-check.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | set -o errexit 4 | 5 | yum install "$@" 6 | 7 | for arg in "$@"; do 8 | case "$arg" in 9 | -*) 10 | ;; 11 | *) 12 | if ! rpm -q --whatprovides "$arg" &>/dev/null; then 13 | msg="${msg}${msg:+$'\n'}Error: Package not installed: $arg" 14 | fi 15 | ;; 16 | esac 17 | done 18 | 19 | if [ -n "$msg" ]; then 20 | echo 21 | echo "$msg" 22 | echo 23 | exit 1 24 | fi 25 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/centos7/root/templates/saml20-idp-hosted.php.j2: -------------------------------------------------------------------------------- 1 | '__DEFAULT__', 10 | 'privatekey' => '{{saml2_sso_configdata.saml_privatekey_file}}', 11 | 'certificate' => '{{saml2_sso_configdata.saml_cert_file}}', 12 | 'auth' => '{{saml2_sso_configdata.idp_auth_module}}', 13 | ); 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/chrony/README.md: -------------------------------------------------------------------------------- 1 | Role Name 2 | ========= 3 | 4 | A role to configure chrony as the ntp client 5 | 6 | Requirements 7 | ------------ 8 | 9 | 10 | Role Variables 11 | -------------- 12 | 13 | chrony_ntp_servers: a list of ntp servers to use the chrony.conf file 14 | 15 | Dependencies 16 | ------------ 17 | 18 | tools_roles/lib_timedatectl 19 | 20 | Example Playbook 21 | ---------------- 22 | 23 | License 24 | ------- 25 | 26 | Apache 2.0 27 | 28 | Author Information 29 | ------------------ 30 | 31 | Openshift Operations 32 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_os_firewall/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Add iptables allow rules 3 | aos_firewall_manage_iptables: 4 | action: add 5 | name: "{{ item.service }}" 6 | protocol: "{{ item.protocol }}" 7 | port: "{{ item.port }}" 8 | with_items: "{{ oof_firewall_allow }}" 9 | 10 | - name: Remove iptables rules 11 | aos_firewall_manage_iptables: 12 | action: remove 13 | name: "{{ item.service }}" 14 | protocol: "{{ item.port }}" 15 | port: "{{ item.protocol }}" 16 | with_items: "{{ oof_firewall_deny }}" 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/centos7/usr_local_bin/yum-install-check.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | set -o errexit 4 | 5 | yum install "$@" 6 | 7 | for arg in "$@"; do 8 | case "$arg" in 9 | -*) 10 | ;; 11 | *) 12 | if ! rpm -q --whatprovides "$arg" &>/dev/null; then 13 | msg="${msg}${msg:+$'\n'}Error: Package not installed: $arg" 14 | fi 15 | ;; 16 | esac 17 | done 18 | 19 | if [ -n "$msg" ]; then 20 | echo 21 | echo "$msg" 22 | echo 23 | exit 1 24 | fi 25 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-ops-base/rhel7/usr_local_bin/yum-install-check.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | set -o errexit 4 | 5 | yum install "$@" 6 | 7 | for arg in "$@"; do 8 | case "$arg" in 9 | -*) 10 | ;; 11 | *) 12 | if ! rpm -q --whatprovides "$arg" &>/dev/null; then 13 | msg="${msg}${msg:+$'\n'}Error: Package not installed: $arg" 14 | fi 15 | ;; 16 | esac 17 | done 18 | 19 | if [ -n "$msg" ]; then 20 | echo 21 | echo "$msg" 22 | echo 23 | exit 1 24 | fi 25 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_haproxy_passthrough/README.md: -------------------------------------------------------------------------------- 1 | gcp_compute_packages 2 | ========= 3 | 4 | This installs HAProxy on port 8080 to forward through to Openshift. This is used for HTTPHealthChecks in GCP 5 | 6 | Requirements 7 | ------------ 8 | 9 | N/A 10 | 11 | Role Variables 12 | -------------- 13 | 14 | N/A 15 | 16 | Dependencies 17 | ------------ 18 | 19 | 20 | Example Playbook 21 | ---------------- 22 | 23 | License 24 | ------- 25 | 26 | ASL 2.0 27 | 28 | Author Information 29 | ------------------ 30 | 31 | OpenShift Online Ops 32 | -------------------------------------------------------------------------------- /vendor/openshift-tools/vendor-version: -------------------------------------------------------------------------------- 1 | name: openshift-tools 2 | post_scripts: 3 | - chdir: docker/oso-host-monitoring/centos7 4 | shell: ./container-build-env-fingerprint.sh >./container-build-env-fingerprint.output 5 | - chdir: docker 6 | shell: sed -i 's,FROM openshifttools/oso-centos7-ops-base:latest,FROM quay.io/appuio/oso-centos7-ops-base:v1.0.1,' 7 | */centos7/Dockerfile 8 | sparse_checkout: 9 | - /docker 10 | - /ansible 11 | - /openshift_tools 12 | src: https://github.com/openshift/openshift-tools 13 | version: openshift-tools-scripts-0.1.119-1 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix/vars/template_clam_update.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_template_ops_clam_update: 3 | name: Template Ops Clam Update 4 | zitems: 5 | - key: clam.update.signatures.not.updating 6 | applications: 7 | - Ops Clam Update 8 | value_type: int 9 | 10 | ztriggers: 11 | - name: "Clam signatures older than 2 weeks" 12 | expression: "{Template Ops Clam Update:clam.update.signatures.not.updating.min(#3)}>0" 13 | url: "https://github.com/openshift/ops-sop/blob/master/v3/alerts/check_clam_update.asciidoc" 14 | priority: warning 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix/vars/template_zabbix_config.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_template_zabbix_config: 3 | name: Template Zabbix Config 4 | zitems: 5 | - key: zabbix_config.run.exit_code 6 | applications: 7 | - Zabbix Config 8 | value_type: int 9 | 10 | ztriggers: 11 | - name: "zabbix_config.run.exit_code not zero on {HOST.NAME}" 12 | expression: "{Template Zabbix Config:zabbix_config.run.exit_code.min(#2)}>0" 13 | url: "https://github.com/openshift/ops-sop/blob/master/v3/alerts/check_zabbix_config.asciidoc" 14 | priority: average 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/README.adoc: -------------------------------------------------------------------------------- 1 | = SSO memcached Docker Container 2 | 3 | This container is used by the SSO container. 4 | 5 | == Setup 6 | 7 | Nothing additional needs to be setup for this container. 8 | 9 | == Build 10 | 11 | To build this container, simply execute the build script. 12 | 13 | .Example: 14 | [source,bash] 15 | ---- 16 | ./[rhel7|centos7]/build.sh 17 | ---- 18 | 19 | == Run 20 | 21 | To run this container, simply execute the run script. 22 | 23 | .Example: 24 | [source,bash] 25 | ---- 26 | ./[rhel7|centos7]/run.sh 27 | ---- 28 | -------------------------------------------------------------------------------- /handlers/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: "Restart the host monitoring service" 3 | service: 4 | name: "{{ osohm_host_monitoring }}" 5 | state: restarted 6 | with_items: "{{ groups.nodes }}" 7 | loop_control: 8 | loop_var: host 9 | when: "{{ hostvars[host]['openshift_node_labels']['host-monitoring'] is defined }}" 10 | delegate_to: "{{ host }}" 11 | remote_user: "{{ ansible_user | default(omit) }}" # Work around Ansible issue regarding copy, delegate_to and sudo 12 | become: "{{ ansible_become | default(omit) }}" 13 | 14 | # when: osohm_service_enabled | bool 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/s3_registry/s3_registry.j2: -------------------------------------------------------------------------------- 1 | version: 0.1 2 | log: 3 | level: debug 4 | http: 5 | addr: :5000 6 | storage: 7 | cache: 8 | layerinfo: inmemory 9 | s3: 10 | accesskey: {{ aws_access_key }} 11 | secretkey: {{ aws_secret_key }} 12 | region: {{ aws_bucket_region }} 13 | bucket: {{ aws_bucket_name }} 14 | encrypt: true 15 | secure: true 16 | v4auth: true 17 | rootdirectory: /registry 18 | auth: 19 | openshift: 20 | realm: openshift 21 | middleware: 22 | repository: 23 | - name: openshift 24 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_iam_kms/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - fail: 3 | msg: "{{ item }} needs to be defined." 4 | when: osaik_alias is undefined 5 | with_items: 6 | - osaik_alias 7 | 8 | - fail: 9 | msg: "{{ item }} needs to be defined." 10 | when: osaik_region is undefined 11 | with_items: 12 | - osaik_region 13 | 14 | - name: Create IAM KMS key with alias 15 | oo_iam_kms: 16 | state: present 17 | alias: "{{ osaik_alias }}" 18 | region: "{{ osaik_region }}" 19 | register: created_kms 20 | 21 | - debug: var=created_kms.results 22 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_registry/templates/registry_config.yml.j2: -------------------------------------------------------------------------------- 1 | version: 0.1 2 | log: 3 | level: debug 4 | http: 5 | addr: :5000 6 | storage: 7 | cache: 8 | layerinfo: inmemory 9 | delete: 10 | enabled: true 11 | gcs: 12 | bucket: {{ osgreg_bucket_name }} 13 | keyfile: {{ osgreg_registry_cred_path }}/{{ osgreg_registry_cred_secret_name }} 14 | rootdirectory: /registry 15 | auth: 16 | openshift: 17 | realm: openshift 18 | middleware: 19 | repository: 20 | - name: openshift 21 | options: 22 | pullthrough: true 23 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/tito/README.md: -------------------------------------------------------------------------------- 1 | Role Name 2 | ========= 3 | 4 | This role manages Tito. 5 | 6 | https://github.com/dgoodwin/tito 7 | 8 | Requirements 9 | ------------ 10 | 11 | None 12 | 13 | Role Variables 14 | -------------- 15 | 16 | None 17 | 18 | Dependencies 19 | ------------ 20 | 21 | None 22 | 23 | Example Playbook 24 | ---------------- 25 | 26 | - hosts: servers 27 | roles: 28 | - role: tito 29 | 30 | License 31 | ------- 32 | 33 | Apache License, Version 2.0 34 | 35 | Author Information 36 | ------------------ 37 | 38 | Thomas Wiest 39 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_openshift_3.2/build/test/version.yml: -------------------------------------------------------------------------------- 1 | #!/usr/bin/ansible-playbook 2 | --- 3 | - hosts: "oo_clusterid_opstest:&oo_version_3:&oo_master_primary" 4 | gather_facts: no 5 | user: root 6 | 7 | post_tasks: 8 | - name: Get version 9 | oc_version: 10 | register: ocversion 11 | - debug: var=ocversion 12 | 13 | - hosts: "oo_clusterid_upgradetest:&oo_version_3:&oo_master_primary" 14 | gather_facts: no 15 | user: root 16 | 17 | post_tasks: 18 | - name: Get version 19 | oc_version: 20 | register: ocversion 21 | - debug: var=ocversion 22 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/verify_aws_accountid/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: get the aws account 3 | iam_accountid: 4 | state: list 5 | register: aws_account_info 6 | 7 | - debug: 8 | msg: "{{ aws_account_info }}" 9 | 10 | - name: Fail if the returned AWS account doesn't match the passed in account 11 | fail: 12 | msg: |+ 13 | "The AWS Key being used is part of account: [{{ aws_account_info.iam_user.accountid }}] 14 | The AWS Account ID specified is [{{ vawsid_accountid }}]" 15 | when: aws_account_info.iam_user.accountid|int != vawsid_accountid|int 16 | -------------------------------------------------------------------------------- /vendor/ansible-module-openshift/README.md: -------------------------------------------------------------------------------- 1 | OpenShift Ansible Modules 2 | ------------------------- 3 | 4 | This repository contains an Ansible role providing Ansible modules for configuring 5 | OpenShift 3 clusters. 6 | 7 | The role is downloadable via `ansible-galaxy` and designed to be used as a dependency 8 | of other roles, e.g.: 9 | 10 | meta/main.yml of your role: 11 | 12 | dependencies: 13 | - src: git+https://github.com/appuio/ansible-module-openshift.git 14 | version: v1.0.0 15 | 16 | Documentation of the roles is contained within the roles as per Ansible conventions. 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/docker_storage_setup/templates/overlay2_dss.j2: -------------------------------------------------------------------------------- 1 | # Edit this file to override any configuration options specified in 2 | # /usr/lib/docker-storage-setup/docker-storage-setup. 3 | # 4 | # For more details refer to "man docker-storage-setup" 5 | DEVS={{ dss_docker_device }} 6 | VG=docker_vg 7 | DATA_SIZE=99%VG 8 | STORAGE_DRIVER="overlay2" 9 | CONTAINER_ROOT_LV_NAME="docker-root-lv" 10 | CONTAINER_ROOT_LV_SIZE="100%FREE" 11 | CONTAINER_ROOT_LV_MOUNT_PATH="/var/lib/docker" 12 | EXTRA_STORAGE_OPTIONS="--storage-opt overlay2.size={{ dss_docker_storage_overlay2_size }}" 13 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/manageiq/miq-setup.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Make sure we're in the same dir as this script 4 | cd $(dirname $0) 5 | 6 | MIQ_RELEASE_TAG=darga-4.1 7 | MIQ_ANS_MODULE_PATH="/tmp/oso-manageiq-${MIQ_RELEASE_TAG}-ans-module" 8 | 9 | 10 | mkdir -p $MIQ_ANS_MODULE_PATH 11 | 12 | pushd $MIQ_ANS_MODULE_PATH &> /dev/null 13 | git clone https://github.com/dkorn/manageiq-ansible-module.git 14 | popd &> /dev/null 15 | 16 | ansible-playbook -e "cli_miq_release_tag=$MIQ_RELEASE_TAG" -e "cli_miq_ans_module_path=$MIQ_ANS_MODULE_PATH/manageiq-ansible-module" miq-setup.yml 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_utils/tasks/main.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: remove ruamel.yaml 3 | yum: 4 | name: ruamel.yaml 5 | state: absent 6 | 7 | # Utility packages that make things helpful 8 | - name: Install useful rpm packages 9 | action: "{{ ansible_pkg_mgr }} name={{ item }} state=present" 10 | with_items: 11 | - wget 12 | - git 13 | - net-tools 14 | - bind-utils 15 | - iptables-services 16 | - bridge-utils 17 | - bash-completion 18 | - atop 19 | - htop 20 | - ack 21 | - telnet 22 | - jq 23 | - python2-ruamel-yaml 24 | - httpd-tools 25 | - fio 26 | - pv 27 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/rhel7/root/ansible-tower_default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # These are defaults variables, override using host_monitoring_vars.yml vars file 3 | g_default_templates: 4 | - Template Heartbeat # So we can send hearbeats 5 | - Template OS Linux # So we can send host related metrics 6 | - Template Docker # So we can send docker related metrics 7 | - Template Performance Copilot # So we can report PCP metrics 8 | - Template Operations Tools # So ops-runner works 9 | - Template Config Loop # So we can send config loop related metrics 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/src/root/ansible-tower_default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # These are defaults variables, override using host_monitoring_vars.yml vars file 3 | g_default_templates: 4 | - Template Heartbeat # So we can send hearbeats 5 | - Template OS Linux # So we can send host related metrics 6 | - Template Docker # So we can send docker related metrics 7 | - Template Performance Copilot # So we can report PCP metrics 8 | - Template Operations Tools # So ops-runner works 9 | - Template Config Loop # So we can send config loop related metrics 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/iptables_service/README.md: -------------------------------------------------------------------------------- 1 | iptables_service 2 | =========== 3 | 4 | This role ensures that iptables is installed, enabled, and running. This role removes firewalld 5 | 6 | Requirements 7 | ------------ 8 | 9 | None. 10 | 11 | Role Variables 12 | -------------- 13 | 14 | 15 | Dependencies 16 | ------------ 17 | 18 | None. 19 | 20 | Example Playbook 21 | ---------------- 22 | 23 | roles: 24 | - iptables_service 25 | 26 | License 27 | ------- 28 | 29 | Apache License, Version 2.0 30 | 31 | Author Information 32 | ------------------ 33 | Openshift Operations 34 | 35 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_dedicated_scripts/README.md: -------------------------------------------------------------------------------- 1 | openshift_dedicated_scripts 2 | ========= 3 | 4 | Ansible role for ensuring openshift-dedicated-scripts rpm is installed, and if 5 | not choosing a correct version for the major version of OpenShift in play. 6 | 7 | 8 | Requirements 9 | ------------ 10 | 11 | 12 | Role Variables 13 | -------------- 14 | 15 | 16 | Dependencies 17 | ------------ 18 | 19 | 20 | Example Playbook 21 | ---------------- 22 | 23 | License 24 | ------- 25 | 26 | Apache 2.0 27 | 28 | Author Information 29 | ------------------ 30 | 31 | Openshift Operations 32 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-host-monitoring/centos7/root/ansible-tower_default_vars.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # These are defaults variables, override using host_monitoring_vars.yml vars file 3 | g_default_templates: 4 | - Template Heartbeat # So we can send hearbeats 5 | - Template OS Linux # So we can send host related metrics 6 | - Template Docker # So we can send docker related metrics 7 | - Template Performance Copilot # So we can report PCP metrics 8 | - Template Operations Tools # So ops-runner works 9 | - Template Config Loop # So we can send config loop related metrics 10 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/copr_cli/README.md: -------------------------------------------------------------------------------- 1 | Role Name 2 | ========= 3 | 4 | This role manages Copr CLI. 5 | 6 | https://apps.fedoraproject.org/packages/copr-cli/ 7 | 8 | Requirements 9 | ------------ 10 | 11 | None 12 | 13 | Role Variables 14 | -------------- 15 | 16 | None 17 | 18 | Dependencies 19 | ------------ 20 | 21 | None 22 | 23 | Example Playbook 24 | ---------------- 25 | 26 | - hosts: servers 27 | roles: 28 | - role: copr_cli 29 | 30 | License 31 | ------- 32 | 33 | Apache License, Version 2.0 34 | 35 | Author Information 36 | ------------------ 37 | 38 | Thomas Wiest 39 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/install_docker_registry_certs/README.md: -------------------------------------------------------------------------------- 1 | install_docker_registry_certs 2 | ========= 3 | 4 | Ansible role to install the cluster registry docker certs 5 | 6 | Requirements 7 | ------------ 8 | 9 | 10 | Role Variables 11 | -------------- 12 | 13 | idrc_cluster_master: master host to get the registry service for 14 | 15 | Dependencies 16 | ------------ 17 | 18 | lib_ansible20 19 | lib_openshift 20 | 21 | Example Playbook 22 | ---------------- 23 | 24 | License 25 | ------- 26 | 27 | Apache 2.0 28 | 29 | Author Information 30 | ------------------ 31 | 32 | Openshift Operations 33 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_ssh_keys/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: get the user dictionary into a format to pass the the gcp key module 3 | set_fact: 4 | ssh_key_data: > 5 | {% set ssh_keys = {} %} 6 | {%- for user in osgsk_user_list %} 7 | {%- set _ = ssh_keys.update({user.username : user.pub_key}) %} 8 | {%- endfor %} 9 | {{- ssh_keys -}} 10 | 11 | - name: Add SSH keys to GCP 12 | gcloud_compute_projectinfo: 13 | state: present 14 | metadata: 15 | sshKeys: "{{ ssh_key_data }}" 16 | register: mdout 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/set_aws_accountid/README.md: -------------------------------------------------------------------------------- 1 | set_aws_accountid 2 | ========= 3 | This role sets the aws account ID based on AWS KEY ID 4 | 5 | Configure 6 | ------------ 7 | 8 | None 9 | 10 | Role Variables 11 | -------------- 12 | 13 | saaid_retval_accountid: The account ID that is returned 14 | 15 | Dependencies 16 | ------------ 17 | 18 | None 19 | 20 | Example Playbook 21 | ---------------- 22 | 23 | - role: tools_roles/set_aws_accountid 24 | 25 | License 26 | ------- 27 | 28 | ASL 2.0 29 | 30 | Author Information 31 | ------------------ 32 | 33 | OpenShift operations, Red Hat, Inc 34 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/fstab_mount_options/README.md: -------------------------------------------------------------------------------- 1 | Role Name 2 | ========= 3 | 4 | A role to configure fstab mount options 5 | 6 | Requirements 7 | ------------ 8 | 9 | 10 | Role Variables 11 | -------------- 12 | 13 | fmo_mount_point: the mount point in fstab (2nd column in fstab) 14 | fmo_mount_options: the options that the mount point should have (4th column in fstab) 15 | 16 | Dependencies 17 | ------------ 18 | 19 | 20 | Example Playbook 21 | ---------------- 22 | 23 | License 24 | ------- 25 | 26 | Apache 2.0 27 | 28 | Author Information 29 | ------------------ 30 | 31 | Openshift Operations 32 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/lib_dyn/README.md: -------------------------------------------------------------------------------- 1 | lib_dyn 2 | ========= 3 | 4 | A role containing the dyn_record module for managing DNS records through Dyn's 5 | API 6 | 7 | Requirements 8 | ------------ 9 | 10 | The module requires the `dyn` python module for interacting with the Dyn API. 11 | https://github.com/dyninc/dyn-python 12 | 13 | Example Playbook 14 | ---------------- 15 | 16 | To make sure the `dyn_record` module is available for use include the role 17 | before it is used. 18 | 19 | - hosts: servers 20 | roles: 21 | - lib_dyn 22 | 23 | License 24 | ------- 25 | 26 | Apache 27 | 28 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/local_development/stop-local-dev-env.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | cd $(dirname "$0") 4 | 5 | OC=$(which oc) 6 | if [ "$?" -ne "0" ]; then 7 | echo "Could not find 'oc' binary in path" 8 | exit 1 9 | fi 10 | 11 | echo "Stop host monitoring" 12 | sudo docker stop oso-centos7-host-monitoring 13 | sudo docker rm oso-centos7-host-monitoring 14 | echo "Stop OpenShift" 15 | sudo ${OC} cluster down 16 | 17 | echo "Unloading temporary firewall changes" 18 | if [ $(systemctl is-active firewalld) == "active" ]; then 19 | sudo firewall-cmd --reload 20 | else 21 | sudo systemctl restart iptables 22 | fi 23 | -------------------------------------------------------------------------------- /vendor-roles.yml: -------------------------------------------------------------------------------- 1 | --- 2 | vendor_roles: 3 | - src: https://github.com/appuio/ansible-module-openshift 4 | version: v1.4.2 5 | - src: https://github.com/openshift/openshift-tools 6 | version: openshift-tools-scripts-0.1.119-1 7 | sparse_checkout: 8 | - /docker 9 | - /ansible 10 | - /openshift_tools 11 | post_scripts: 12 | - shell: ./container-build-env-fingerprint.sh >./container-build-env-fingerprint.output 13 | chdir: docker/oso-host-monitoring/centos7 14 | - shell: sed -i 's,FROM openshifttools/oso-centos7-ops-base:latest,FROM quay.io/appuio/oso-centos7-ops-base:v1.0.1,' */centos7/Dockerfile 15 | chdir: docker 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_group/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Create IAM group 3 | iam: 4 | iam_type: group 5 | name: "{{ osagr_name }}" 6 | state: present 7 | register: result 8 | until: result | success 9 | retries: 10 10 | delay: 10 11 | 12 | - name: Associate inline IAM policies with group 13 | iam_policy: 14 | iam_type: group 15 | iam_name: "{{ osagr_name }}" 16 | policy_name: "{{ osagr_policy_name }}" 17 | policy_json: "{{ osagr_json_policy|to_json }}" 18 | state: present 19 | register: result 20 | until: result | success 21 | retries: 10 22 | delay: 10 23 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/centos7/zabbix/conf/zabbix.conf.php: -------------------------------------------------------------------------------- 1 | 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/rhel7/zabbix/conf/zabbix.conf.php: -------------------------------------------------------------------------------- 1 | 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/src/zabbix/conf/zabbix.conf.php: -------------------------------------------------------------------------------- 1 | 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_dedicated_admin/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Setup the OpenShift Dedicated Admin service config file 3 | lineinfile: 4 | dest: /etc/sysconfig/openshift-dedicated-role 5 | regexp: "^\\s*{{ item.key }}=" 6 | line: "{{ item.key }}={{ item.value }}" 7 | with_items: "{{ oda_config }}" 8 | notify: restart openshift-dedicated-role 9 | 10 | - name: Enable and start the Dedicated Admin scripts 11 | service: 12 | name: openshift-dedicated-role 13 | state: "{{ oda_service_started | bool | ternary('started', 'stopped') }}" 14 | enabled: "{{ oda_service_enabled | bool }}" 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_gcp_cluster_creation/README.md: -------------------------------------------------------------------------------- 1 | openshift_gcp_cluster_creation 2 | ========= 3 | 4 | Ansible role for creating a cluster in GCP 5 | 6 | Requirements 7 | ------------ 8 | 9 | Ansible Modules: lib_gcloud 10 | 11 | 12 | Role Variables 13 | -------------- 14 | 15 | 16 | 17 | Dependencies 18 | ------------ 19 | 20 | 21 | Example Playbook 22 | ---------------- 23 | 24 | - role: tools_roles/openshift_gcp_ssh_keys 25 | osgsk_user_list: 26 | 27 | License 28 | ------- 29 | 30 | Apache 2.0 31 | 32 | Author Information 33 | ------------------ 34 | 35 | Openshift Operations 36 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_logging/templates/logging-deployer.yaml.j2: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: ConfigMap 3 | metadata: 4 | name: logging-deployer 5 | data: 6 | curator-nodeselector: type=infra 7 | kibana-nodeselector: type=infra 8 | es-nodeselector: type=infra 9 | es-cluster-size: "{{ osalog_es_cluster_size | default(2) }}" 10 | es-instance-ram: {{ osalog_es_cluster_ram | default("7680M") }} 11 | kibana-hostname: logs.{{ osalog_clusterid }}.openshift.com 12 | public-master-url: https://api.{{ osalog_clusterid }}.openshift.com 13 | master-url: https://internal.api.{{ osalog_clusterid }}.openshift.com 14 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_customizations/templates/ops_prompt.sh.j2: -------------------------------------------------------------------------------- 1 | # File generated by ANSIBLE. DO NOT EDIT MANUALLY 2 | # Default ops prompt 3 | # 4 | 5 | TAGNAME={{ opsc_name }} 6 | 7 | RED='\[\e[0;31m\]' 8 | BOLDRED='\[\e[1;31m\]' 9 | YELLOW='\[\e[0;33m\]' 10 | BOLDYELLOW='\[\e[1;33m\]' 11 | GREEN='\[\e[0;32m\]' 12 | BOLDGREEN='\[\e[1;32m\]' 13 | NO_COLOR='\[\e[0m\]' 14 | 15 | if [ "`id -un`" = "root" ] ; then 16 | color=$RED 17 | export PS1="$color[${BOLDRED}\u${color}@${TAGNAME} \W]${RED}# ${NO_COLOR}" 18 | else 19 | color=$NO_COLOR 20 | export PS1="$color[\u@\${TAGNAME} \W]${NO_COLOR}\$ " 21 | fi 22 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/centos7/zabbix/conf/zabbix.conf.php: -------------------------------------------------------------------------------- 1 | 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/rhel7/zabbix/conf/zabbix.conf.php: -------------------------------------------------------------------------------- 1 | 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-server/src/zabbix/conf/zabbix.conf.php: -------------------------------------------------------------------------------- 1 | 20 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/ops_customizations/README.md: -------------------------------------------------------------------------------- 1 | ops_customizations 2 | ========= 3 | 4 | Ansible role to apply general ops_customizations 5 | 6 | Requirements 7 | ------------ 8 | 9 | None 10 | 11 | Role Variables 12 | -------------- 13 | 14 | opsc_name: name to set in the profile for the prompt bash 15 | 16 | 17 | Dependencies 18 | ------------ 19 | 20 | 21 | Example Playbook 22 | ---------------- 23 | - role: "ops_roles/ops_customizations" 24 | opsc_name: server-name 25 | 26 | 27 | License 28 | ------- 29 | 30 | Apache 2.0 31 | 32 | Author Information 33 | ------------------ 34 | 35 | Openshift Operations 36 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/rhel7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-rhel7-saml-sso... " 13 | sudo docker run -ti --net=host --rm=true --name saml-sso oso-rhel7-saml-sso $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/kube_nfs_volumes/templates/v1beta3/nfs.json.j2: -------------------------------------------------------------------------------- 1 | { 2 | "kind": "PersistentVolume", 3 | "apiVersion": "v1beta3", 4 | "metadata": { 5 | "name": "pv-{{ inventory_hostname | regex_replace("\.", "-") }}-{{ item.name }}", 6 | "labels": { 7 | "type": "nfs" 8 | } 9 | }, 10 | "spec": { 11 | "capacity": { 12 | "storage": "{{ item.size }}" 13 | }, 14 | "accessModes": [ 15 | "ReadWriteOnce" 16 | ], 17 | "NFS": { 18 | "Server": "{{ inventory_hostname }}", 19 | "Path": "{{ mount_dir }}/{{ item.name }}", 20 | "ReadOnly": false 21 | } 22 | } 23 | } 24 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/centos7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-centos7-saml-sso... " 13 | sudo docker run -ti --net=host --rm=true --name saml-sso oso-centos7-saml-sso $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_ami_prep/README.md: -------------------------------------------------------------------------------- 1 | openshift_logging 2 | ========= 3 | 4 | Ansible role for preparing an image 5 | 6 | Requirements 7 | ------------ 8 | 9 | Ansible Modules: 10 | 11 | 12 | Role Variables 13 | -------------- 14 | oap_package_list: List of packages to install in the base image 15 | 16 | Dependencies 17 | ------------ 18 | 19 | 20 | Example Playbook 21 | ---------------- 22 | - role: tools_roles/openshift_ami_prep 23 | oap_package_list: "{{ list_of_packages }}" 24 | 25 | License 26 | ------- 27 | 28 | Apache 2.0 29 | 30 | Author Information 31 | ------------------ 32 | 33 | Openshift Operations 34 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/README.adoc: -------------------------------------------------------------------------------- 1 | = Clam Update Docker Container 2 | 3 | This container is used to update our clam signature bucket with the latest official, unoffocial, and custom signature databases. 4 | 5 | == Setup 6 | 7 | Nothing additional needs to be setup for this container. 8 | 9 | == Build 10 | 11 | To build this container, simply execute the build script. 12 | 13 | .Example: 14 | [source,bash] 15 | ---- 16 | ./[rhel7|centos7]/build.sh 17 | ---- 18 | 19 | == Run 20 | 21 | To run this container, simply execute the run script. 22 | 23 | .Example: 24 | [source,bash] 25 | ---- 26 | ./[rhel7|centos7]/run.sh 27 | ---- 28 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_aws_ami_perms/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: set the new account id into a list because ec2_ami module expects it that way 3 | set_fact: 4 | dest_account_id: 5 | user_ids: 6 | - "{{ osaap_dest_aws_accountid }}" 7 | 8 | - name: Add launch and copy permissions to AMI to new aws account 9 | oo_ec2_ami20: 10 | aws_access_key: "{{ osaap_src_ami_access_id }}" 11 | aws_secret_key: "{{ osaap_src_ami_access_key }}" 12 | region: "{{ osaap_region }}" 13 | image_id: "{{ osaap_image_id }}" 14 | launch_permissions: "{{ dest_account_id }}" 15 | copy_permissions: "{{ dest_account_id }}" 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/rhel7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-rhel7-clam-update... " 13 | sudo docker run -ti --net=host --rm=true --name oso-clam-update oso-rhel7-clam-update $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/rhel7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-rhel7-monitor-sso... " 13 | sudo docker run -ti --net=host --rm=true --name oso-monitor-sso oso-rhel7-monitor-sso $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/chrony/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: remove ntp package 3 | yum: 4 | name: ntp 5 | state: absent 6 | 7 | - name: ensure chrony package is installed 8 | yum: 9 | name: chrony 10 | state: installed 11 | 12 | - name: Install /etc/chrony.conf 13 | template: 14 | src: chrony.conf.j2 15 | dest: /etc/chrony.conf 16 | owner: root 17 | group: root 18 | mode: 0644 19 | notify: 20 | - Restart chronyd 21 | 22 | - name: enabled timedatectl set-ntp yes 23 | timedatectl: 24 | ntp: True 25 | 26 | - name: 27 | service: 28 | name: chronyd 29 | state: started 30 | enabled: yes 31 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_master_storage_class/defaults/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | osmsc_storageclass_cloud: aws 3 | osmsc_storageclass_defaults: 4 | aws: 5 | name: gp2 6 | provisioner: kubernetes.io/aws-ebs 7 | type: gp2 8 | gcp: 9 | name: gcppd 10 | provisioner: kubernetes.io/gce-pd 11 | type: pd-standard 12 | 13 | osmsc_storageclass_name: "{{ osmsc_storageclass_defaults[osmsc_storageclass_cloud]['name'] }}" 14 | osmsc_storageclass_provisioner: "{{ osmsc_storageclass_defaults[osmsc_storageclass_cloud]['provisioner'] }}" 15 | osmsc_storageclass_type: "{{ osmsc_storageclass_defaults[osmsc_storageclass_cloud]['type'] }}" 16 | 17 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-clam-update/centos7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-centos7-clam-update... " 13 | sudo docker run -ti --net=host --rm=true --name oso-clam-update oso-centos7-clam-update $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-monitor-sso/centos7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-centos7-monitor-sso... " 13 | sudo docker run -ti --net=host --rm=true --name oso-monitor-sso oso-centos7-monitor-sso $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/openshift_online_ha_proxy/README.md: -------------------------------------------------------------------------------- 1 | Role Name 2 | ========= 3 | 4 | Configure the OpenShift Online haproxy: https://github.com/openshift/ops-sop/blob/master/v3/setup/online.asciidoc#configure-ose-haproxy-router 5 | 6 | Requirements 7 | ------------ 8 | 9 | Role Variables 10 | -------------- 11 | 12 | Dependencies 13 | ------------ 14 | 15 | 16 | Example Playbook 17 | ---------------- 18 | 19 | - hosts: servers 20 | roles: 21 | - tools_roles/openshift_online_ha_proxy 22 | 23 | License 24 | ------- 25 | 26 | Apache 2.0 27 | 28 | Author Information 29 | ------------------ 30 | 31 | OpenShift Operations Team 32 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/os_zabbix/vars/template_multi_inventory.yml: -------------------------------------------------------------------------------- 1 | --- 2 | g_template_multi_inventory: 3 | name: Template Multi-Inventory 4 | zitems: 5 | - key: multi_inventory.account.refresh 6 | applications: 7 | - MultiInventory 8 | value_type: int 9 | 10 | ztriggers: 11 | - name: Multi-Inventory account connectivity issues 12 | description: Ansible multi-inventory is having trouble accessing accounts 13 | expression: "{Template Multi-Inventory:multi_inventory.account.refresh.min(#3)}>0" 14 | priority: avg 15 | url: https://github.com/openshift/ops-sop/blob/master/v3/alerts/check_multi_inventory.asciidoc 16 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-saml-sso/example/authorized-keys: -------------------------------------------------------------------------------- 1 | command="get_saml_token beatrice@example.com" ssh-rsa AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA beatrice@example.com 2 | command="get_saml_token robert@example.com" ssh-rsa AAAAAAAABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB robert@example.com 3 | command="get_saml_token george@example.com" ssh-rsa AAAAAAAACCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC george@example.com 4 | command="get_saml_token wanda@example.com" ssh-rsa AAAAAAAADDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD wanda@example.com 5 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/README.adoc: -------------------------------------------------------------------------------- 1 | = Zabbix web Docker container 2 | 3 | This container runs the zabbix web ui. 4 | 5 | == Setup 6 | See https://github.com/openshift/openshift-tools/blob/prod/docker/README.adoc#setup[general setup]. 7 | 8 | Nothing additional needs to be setup for this container. 9 | 10 | == Build 11 | 12 | To build this container, simply execute the build script. 13 | 14 | .Example: 15 | [source,bash] 16 | ---- 17 | ./[rhel7|centos7]/build.sh 18 | ---- 19 | 20 | == Run 21 | 22 | To run this container, simply execute the run script. 23 | 24 | .Example: 25 | [source,bash] 26 | ---- 27 | ./[rhel7|centos7]/run.sh 28 | ---- 29 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/dns/tasks/main.yml: -------------------------------------------------------------------------------- 1 | - name: Install Bind 2 | action: "{{ ansible_pkg_mgr }} name=bind" 3 | 4 | - name: Configure Bind 5 | template: 6 | src: "{{ item.src }}" 7 | dest: "{{ item.dest }}" 8 | validate: "{{ item.validate }}" 9 | with_items: 10 | - src: openshift-cluster.zone 11 | dest: /var/named/openshift-cluster.zone 12 | validate: "named-checkzone {{ dns_zones[0] }} %s" 13 | - src: named.conf 14 | dest: /etc/named.conf 15 | validate: "named-checkconf %s" 16 | notify: restart bind 17 | 18 | - name: Enable Bind 19 | service: 20 | name: named 21 | state: started 22 | enabled: yes 23 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/roles/docker_storage_setup/tasks/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | - name: Ensure docker is installed 3 | package: 4 | name: docker 5 | state: present 6 | 7 | - name: Copy the docker-storage-setup config file 8 | template: 9 | src: "{{ dss_docker_storage_driver }}_dss.j2" 10 | dest: /etc/sysconfig/docker-storage-setup 11 | owner: root 12 | group: root 13 | mode: 0664 14 | 15 | - name: Ensure docker is started 16 | service: 17 | name: docker 18 | state: started 19 | enabled: true 20 | 21 | - name: docker info 22 | command: docker info 23 | register: dockerinfo 24 | 25 | - debug: 26 | msg: "{{ dockerinfo }}" 27 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/rhel7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-rhel7-zabbix-web... " 13 | sudo docker run -ti --net=host --rm=true -p 11211:11211 --name oso-memcached-sso oso-rhel7-memcached-sso $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/rhel7/welcome.conf: -------------------------------------------------------------------------------- 1 | # 2 | # This configuration file enables the default "Welcome" page if there 3 | # is no default index page present for the root URL. To disable the 4 | # Welcome page, comment out all the lines below. 5 | # 6 | # NOTE: if this file is removed, it will be restored on upgrades. 7 | # 8 | RedirectMatch ^/$ /zabbix/ 9 | 10 | 11 | Options -Indexes 12 | ErrorDocument 403 /.noindex.html 13 | 14 | 15 | 16 | AllowOverride None 17 | Require all granted 18 | 19 | 20 | Alias /.noindex.html /usr/share/httpd/noindex/index.html 21 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/src/push.sh.j2: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | {{ generated_header }} 3 | 4 | {% if base_os == "rhel7" %} 5 | if ! grep -qi 'Red Hat Enterprise Linux' /etc/redhat-release ; then 6 | echo "ERROR: We only allow pushing from a RHEL machine because it allows secrets volumes." 7 | exit 1 8 | fi 9 | {% endif %} 10 | 11 | echo 12 | {% if base_os == "rhel7" %} 13 | echo "oso-rhel7-zaio isn't pushed to any Docker repository" 14 | {% elif base_os == "centos7" %} 15 | echo "Pushing oso-centos7-zaio..." 16 | echo "Ensure you have successfully authenticated against docker with a 'docker login'" 17 | sudo docker push openshifttools/oso-centos7-zaio 18 | {% endif %} 19 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zaio/src/welcome.conf: -------------------------------------------------------------------------------- 1 | # 2 | # This configuration file enables the default "Welcome" page if there 3 | # is no default index page present for the root URL. To disable the 4 | # Welcome page, comment out all the lines below. 5 | # 6 | # NOTE: if this file is removed, it will be restored on upgrades. 7 | # 8 | RedirectMatch ^/$ /zabbix/ 9 | 10 | 11 | Options -Indexes 12 | ErrorDocument 403 /.noindex.html 13 | 14 | 15 | 16 | AllowOverride None 17 | Require all granted 18 | 19 | 20 | Alias /.noindex.html /usr/share/httpd/noindex/index.html 21 | -------------------------------------------------------------------------------- /vendor/openshift-tools/openshift_tools/ircbot/README.md: -------------------------------------------------------------------------------- 1 | # IRC bot 2 | 3 | [Sopel IRC](https://sopel.chat/) modules 4 | 5 | 6 | ## Running 7 | 8 | See [Sopel library](https://sopel.chat/). Decorated methods are triggered via a socket that Sopel keeps open. Sopel assumes config in `~/.sopel/default.cfg`. 9 | 10 | ### IRC Bot dev environment 11 | 12 | . Install sopel 13 | 14 | pip install -r requirements 15 | . Create a ~/.sopel.default.cfg file. See `sopel.cfg.example` 16 | . Run sopel irc bot in foreground 17 | 18 | sopel 19 | . Join IRC test channel for testing 20 | . Restart sopel server to reload changes to config or modules, e.g. trello/trello.py 21 | 22 | -------------------------------------------------------------------------------- /vendor/openshift-tools/ansible/playbooks/adhoc/setupnfs.yml: -------------------------------------------------------------------------------- 1 | --- 2 | ### This playbook is old and we are currently not using NFS. 3 | - hosts: tag_Name_nfs-v3-stg 4 | sudo: no 5 | remote_user: root 6 | gather_facts: no 7 | roles: 8 | - role: openshift_storage_nfs_lvm 9 | mount_dir: /exports/stg-black 10 | volume_prefix: "kwoodsontest" 11 | volume_size: 5 12 | volume_num_start: 222 13 | number_of_volumes: 3 14 | tasks: 15 | - fetch: 16 | dest: json/ 17 | src: /root/"{{ item }}" 18 | with_items: 19 | - persistent-volume.kwoodsontest5g0222.json 20 | - persistent-volume.kwoodsontest5g0223.json 21 | - persistent-volume.kwoodsontest5g0224.json 22 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-memcached-sso/centos7/run.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash -e 2 | # ___ ___ _ _ ___ ___ _ _____ ___ ___ 3 | # / __| __| \| | __| _ \ /_\_ _| __| \ 4 | # | (_ | _|| .` | _|| / / _ \| | | _|| |) | 5 | # \___|___|_|\_|___|_|_\/_/_\_\_|_|___|___/_ _____ 6 | # | \ / _ \ | \| |/ _ \_ _| | __| \_ _|_ _| 7 | # | |) | (_) | | .` | (_) || | | _|| |) | | | | 8 | # |___/ \___/ |_|\_|\___/ |_| |___|___/___| |_| 9 | # 10 | 11 | 12 | echo -n "Running oso-centos7-zabbix-web... " 13 | sudo docker run -ti --net=host --rm=true -p 11211:11211 --name oso-memcached-sso oso-centos7-memcached-sso $@ 14 | echo "Done." 15 | -------------------------------------------------------------------------------- /vendor/openshift-tools/docker/oso-zabbix-web/rhel7/welcome.conf: -------------------------------------------------------------------------------- 1 | # 2 | # This configuration file enables the default "Welcome" page if there 3 | # is no default index page present for the root URL. To disable the 4 | # Welcome page, comment out all the lines below. 5 | # 6 | # NOTE: if this file is removed, it will be restored on upgrades. 7 | # 8 | RedirectMatch ^/$ /zabbix/ 9 | 10 | 11 | Options -Indexes 12 | ErrorDocument 403 /.noindex.html 13 | 14 | 15 | 16 | AllowOverride None 17 | Require all granted 18 | 19 | 20 | Alias /.noindex.html /usr/share/httpd/noindex/index.html 21 | --------------------------------------------------------------------------------