[ansible-project] maintaining database users
Hi,
I wrote a simple little oracle_user module in bash that accepts a username
and a state (present|absent) that creates or deletes a user depending on
the requested state. No action when user exists and state is present,
create user when state is present and user does not exist. When user exists
and state is absent, drop user and no action when state is absent and user
does not exist.
Quite simple.
In a playbook it looks like:
---
- hosts: orardbms
sudo: True
sudo_user: oracle
vars:
ORACLE_SID: ORCL
tasks:
- name: create or remove oracle users
action: oracle_user ORACLE_SID={{ ORACLE_SID }} ORACLE_USER={{
item.username }} ORACLE_STATE={{ item.state }}
with_items:
- { username : ronra, state : present }
- { username : ronrb, state : absent }
- { username : ronrc, state : present }
- { username : ronrd, state : present }
now my question: what about the users that are in the database and not in
my list?
How can I detect the fact that users do exist in the database that are not
in my list of managed users because they have been manually created by some
backdoor procedure? I would like to get rid of them on the first run. The
way it works now is that every user causes the invocation of the
oracle_user script, that returns a simple answer for every user. Simple but
not sufficient to catch aliens. How can I catch those aliens without making
this much harder or creating extra data structures? A pointer to a simple
example is very welcome.
Thanks,
Ronald.
--
You received this message because you are subscribed to the Google Groups
Ansible Project group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-project+unsubscr...@googlegroups.com.
To post to this group, send email to ansible-project@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/81417dde-c39d-49fa-8a8a-bc63483f10a5%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] ansible vs ssh-keys [Re: Globbing with Lookup]
Here's how I did it. Created a directory with the public keys in it. For
instance:
base-ami/files/public_ssh_keys/jack.pub
base-ami/files/public_ssh_keys/jill.pub
- name: Create basic users
user: name={{ item }} shell=/bin/bash groups=grabtaxi
with_items:
- jack
- jill
And then used lookup to populate the keys:
- name: Use the public keys from the users for the their login
authorized_key: user={{ item }} key={{ lookup('file',
'public_ssh_keys/' + item + '.pub') }}
with_items:
- jack
- jill
You could make it fancier using vars and all but I think you get the gist
of it.
On Tue, Oct 14, 2014 at 5:09 AM, Wawrzek Niewodniczanski m...@wawrzek.name
wrote:
On Friday, 10 October 2014 08:50:11 UTC+1, Navid Paya wrote:
Hi all
Not sure if this is even the right tile. So I have a set of SSH keys, I
want to be used as authorized keys for users. I've put all of them in a
directory and am trying to do the job but nothing happens.
Hi Navid,
I 'm trying something similar, based on:
http://blather.michaelwlucas.com/archives/1819
Do you mind share your approach?
Thanks,
Wawrzek
--
You received this message because you are subscribed to a topic in the
Google Groups Ansible Project group.
To unsubscribe from this topic, visit
https://groups.google.com/d/topic/ansible-project/E6--MjSuBJ8/unsubscribe.
To unsubscribe from this group and all its topics, send an email to
ansible-project+unsubscr...@googlegroups.com.
To post to this group, send email to ansible-project@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/3fc7e3fe-8278-49e7-a84a-29b24da097eb%40googlegroups.com
https://groups.google.com/d/msgid/ansible-project/3fc7e3fe-8278-49e7-a84a-29b24da097eb%40googlegroups.com?utm_medium=emailutm_source=footer
.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups
Ansible Project group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-project+unsubscr...@googlegroups.com.
To post to this group, send email to ansible-project@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/CAFsFwzu2vK%3DuC7DoEvaOdTz9LyRLQSLjQ7C2AdEinasXiHgscg%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] Include ansible-galaxy playbooks from another playbook
Bad choice of wording. So I like what a role in galaxy does so I download. Now I want to override some of those role's defaults. In the case of this rbenv role https://github.com/zzet/ansible-rbenv-role (which is also available in galaxy), the version of Ruby it installs. If I include the role using my site.file it just installs that role with its default values. - hosts: all user: ubuntu sudo: true roles: - base-ami - nodesource.node - rbenv - rails What's the right way of doing that? On Tue, Oct 14, 2014 at 4:57 AM, Michael DeHaan mich...@ansible.com wrote: Now try to use an include statement in my role playbook I'm having a bit of difficulty following. Galaxy is only a mechanism of downloading roles, not playbooks, so I'm currently understanding this to mean you seem to be requesting that roles that are not found are not an error? Can you perhaps clarify? Thanks! On Sun, Oct 12, 2014 at 11:38 PM, Navid Paya m...@navidpaya.com wrote: Hi all I'm using an ansible-galaxy playbook. Right now I'm having it included using my site.yml file: roles: - nodesource.node - base-ami Now try to use an include statement in my role playbook but it raises an error since the playbook is an external one and not part of my playbook. Any way around that, like telling my playbook this is an ansible-galaxy playbook so don't expect to see it in the directory structure? - name: Include the nodesource.node playbook include: nodesource.node -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/2bf1fccd-c0e6-44fc-b7c0-ce75f934faef%40googlegroups.com https://groups.google.com/d/msgid/ansible-project/2bf1fccd-c0e6-44fc-b7c0-ce75f934faef%40googlegroups.com?utm_medium=emailutm_source=footer . For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to a topic in the Google Groups Ansible Project group. To unsubscribe from this topic, visit https://groups.google.com/d/topic/ansible-project/ENJwHLN4ioA/unsubscribe. To unsubscribe from this group and all its topics, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CA%2BnsWgxm6p8ON8iO5HjQcDdKJ%2BFCJ%2BiGdYC0orCeckiZUTNWPw%40mail.gmail.com https://groups.google.com/d/msgid/ansible-project/CA%2BnsWgxm6p8ON8iO5HjQcDdKJ%2BFCJ%2BiGdYC0orCeckiZUTNWPw%40mail.gmail.com?utm_medium=emailutm_source=footer . For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAFsFwzu6cvwOE%2BU51j4TJLNrJiBXs1Hkf%3DYKhB5OwwmU%3DGqaOg%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
[ansible-project] Re: Dependencies between tasks possible?
This will imply that the order in which tasks are executed in a playbook is from top to bottom and I only have to use the right order. Is this (the order of executing tasks) a guaranteed feature of Ansible? Bernd -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/17dc964f-b9e2-4139-9e4f-08cdff2b857c%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] Re: Dependencies between tasks possible?
Hi Bernd, yes, it is how ansible works. Tasks are executed from top to bottom in order. David David Karban Specialista na správu linuxových serverů www.karban.eu 2014-10-14 11:34 GMT+02:00 berndadamow...@googlemail.com: This will imply that the order in which tasks are executed in a playbook is from top to bottom and I only have to use the right order. Is this (the order of executing tasks) a guaranteed feature of Ansible? Bernd -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/17dc964f-b9e2-4139-9e4f-08cdff2b857c%40googlegroups.com https://groups.google.com/d/msgid/ansible-project/17dc964f-b9e2-4139-9e4f-08cdff2b857c%40googlegroups.com?utm_medium=emailutm_source=footer . For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAOBFM95HBmkHtJgmyPpfdyzkzPx1MWq_YDVt2aXGzEj1OFyLNA%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] Re: Dependencies between tasks possible?
berndadamow...@googlemail.com napisał: This will imply that the order in which tasks are executed in a playbook is from top to bottom and I only have to use the right order. Is this (the order of executing tasks) a guaranteed feature of Ansible? Yes, it is. It's one of the selling points actually, as it makes orchestration simpler. Bernd -- Wysłane za pomocą K-9 Mail. -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/febfa62e-4e1a-48cb-b66a-90d627930961%40email.android.com. For more options, visit https://groups.google.com/d/optout.
[ansible-project] Including and overriding Ansible galaxy roles in my roles
Hi So this is a refined version of a question I asked before. I have a role that aims to: - Do some specific change such as creating users - Install nodejs and ruby using rbenv - Run a rails app I'm using two dependencies from Ansible galaxy for that: - nodesource.node https://github.com/nodesource/ansible-nodejs-role - zzet.rbenv https://github.com/zzet/ansible-rbenv-role How I do that at the moment is to install those roles using a requirements.txt file, and include them in my site.yml: - hosts: all user: ubuntu sudo: true roles: - base-ami - nodesource.node - zzet.rbenv - rails Now I have two questions. 1. Is there a way to include these roles from within one of my roles instead of the site.yml file so that I'll have just one role (base-ami) instead of four showing up in my site.yml. I tried to do something like this: - name: Include the nodesource.node role include: zzet.rbenv But then it would expect to see the role in my Ansible playbook. Is there a way to include a Ansible galaxy role from within my role? 2. I like what zzet.rbenv does but I want to change the version of Ruby it installs. According to the github page, that is controlled like this: rbenv: env: user ruby_version: 2.1.2 How can I include this Ansible galaxy role in my base-ami role and then override these values? -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/e44794a2-0c06-4337-92b5-b9bde5e5400a%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] template backups in conf.d style locations
Shouldn't such programs have a filter exclude setting? dpkg and rpm will both place temp files into .d style folders, while installing a package. I can't speak as to what temp extension rpm uses, but dpkg will create a $file.dpkg-new or $file.dpkg-old in such a folder. Plus, vim creates .$file.swp. So, it seems that these other programs will already need to have a way to exclude those files, and ansible should(or might already be) do something similar. On 10/14/2014 03:50 AM, Josef Špak wrote: I've just been auditing things and found that sometimes we used the template module with backups=yes even though it was configuring e.g. logrotate stuff in /etc/logrotate.d/ However, programs like logrotate may/will read all files in the directory, including the backups. So perhaps this would be a useful tip. I was also wondering - did anyone get burned by this? Josef -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com mailto:ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com mailto:ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/4e462ee4-1802-44d0-905c-a8c04d4801d3%40googlegroups.com https://groups.google.com/d/msgid/ansible-project/4e462ee4-1802-44d0-905c-a8c04d4801d3%40googlegroups.com?utm_medium=emailutm_source=footer. For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/543D50B0.1010402%40brainfood.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] template backups in conf.d style locations
I've worked around it several ways: - exclude specific extensions: *~ (also works for editor backups) - include specific extensions: Include *.conf - make the backups hidden: .backupfile Also there might be an update in the works for making backups live on the 'master' not on the target machines. Currently you can simulate this with a fetch + file/absent set of tasks. On Tue, Oct 14, 2014 at 9:34 AM, Adam Heath a...@brainfood.com wrote: Shouldn't such programs have a filter exclude setting? dpkg and rpm will both place temp files into .d style folders, while installing a package. I can't speak as to what temp extension rpm uses, but dpkg will create a $file.dpkg-new or $file.dpkg-old in such a folder. Plus, vim creates .$file.swp. So, it seems that these other programs will already need to have a way to exclude those files, and ansible should(or might already be) do something similar. On 10/14/2014 03:50 AM, Josef Špak wrote: I've just been auditing things and found that sometimes we used the template module with backups=yes even though it was configuring e.g. logrotate stuff in /etc/logrotate.d/ However, programs like logrotate may/will read all files in the directory, including the backups. So perhaps this would be a useful tip. I was also wondering - did anyone get burned by this? Josef -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com mailto:ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com mailto:ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/4e462ee4-1802-44d0-905c-a8c04d4801d3%40googlegroups.com https://groups.google.com/d/msgid/ansible-project/4e462ee4-1802-44d0-905c-a8c04d4801d3%40googlegroups.com?utm_medium=emailutm_source=footer. For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/543D50B0.1010402%40brainfood.com. For more options, visit https://groups.google.com/d/optout. -- Brian Coca Stultorum infinitus est numerus 0111011100100110010101101110001001110111011000010110011101010010011100110110110101110111001001110111 Pedo mellon a minno -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CADn%2BHswWoSD%3D188PQap6z1Ed3yoA0c9f0qrYvxcXqogt0iAsEg%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
[ansible-project] Escaping colon
- name: Set iptables to log rejected packets 5
lineinfile: dest=/etc/rsyslog.conf
insertafter=^#kern\.\*\ \ *\/dev\/console
line={{item}}
with_items:
- ~
- :msg,contains,\iptables \ /var/log/iptables.log
- # iptables logs
-
The line :msg,contains,\iptables \ /var/log/iptables.log always bombs
out. I've tried:
\:msg,contains,\iptables \ /var/log/iptables.log
':msg,contains,iptables /var/log/iptables.log'
':'msg,contains,\iptables \ /var/log/iptables.log
and I think a couple of other goofy things I found while Googling like
enclosing everything after lineinfile: with strong quotes.
What the heck do I need to do to get that line to pass?
--
You received this message because you are subscribed to the Google Groups
Ansible Project group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-project+unsubscr...@googlegroups.com.
To post to this group, send email to ansible-project@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/ee2babe4-e3ca-4c0b-bba5-b54b4d779882%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
[ansible-project] No color when running ansible SSH as an argument
If I ssh into a box , interactively, then run ansible, I get color, without any issue. However, if I run it as a batch command, like: ssh rele...@myserver.com ansible-playbook ... Then it doesn't have color. The TERM is setup correctly and the same as when I run ssh interactively. Any advice? -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/dfbf5fcd-43a4-4013-b5d9-d7f0c71fd84f%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] No color when running ansible SSH as an argument
Use ssh -t On 10/14/2014 12:55 PM, Kevin Burton wrote: If I ssh into a box , interactively, then run ansible, I get color, without any issue. However, if I run it as a batch command, like: ssh rele...@myserver.com ansible-playbook ... Then it doesn't have color. The TERM is setup correctly and the same as when I run ssh interactively. Any advice? -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com mailto:ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com mailto:ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/dfbf5fcd-43a4-4013-b5d9-d7f0c71fd84f%40googlegroups.com https://groups.google.com/d/msgid/ansible-project/dfbf5fcd-43a4-4013-b5d9-d7f0c71fd84f%40googlegroups.com?utm_medium=emailutm_source=footer. For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/543D645D.7040803%40brainfood.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] No color when running ansible SSH as an argument
Ha. yup. Realized that as I was posting the email... did I didn't try forcing the pseudo terminal : ... so basically I get to be that guy who pretty much answers his own question! :-P Thanks for the help! -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/1613d6dd-8bac-4274-bc93-2dd812166dff%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[ansible-project] Mapping out/visualizing Ansible Directory
Hi all, Has anyone come up with a way/tool to map out the playbooks, roles, tasks, templates, custom modules maybe even variables in an Ansible directory. The use case is to: A. Be able to pick up playbooks and understand their flow quicker (or at all) either ones I wrote wayy back or ones others have written. B. Find tasks, package installs etc that I'm repeating (for no good reason) C. Find orphaned code, roles etc that I wrote that are no longer refered to. It;s a tall order I know, but would be really helpful. Regards Paul Angus -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/453bc811-1e25-4ac5-9e32-dd1a711693de%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] Role dependencies and ansible-galaxy
As per that issue (https://github.com/ansible/ansible/issues/9173), I am
still experiencing problems despite the committed changes. I've removed the
sample repositories linked to in that issue since all that is really needed
to replicate this issue is the requirements.yaml file.
Given the following
gist: https://gist.github.com/cspicer/7c3c37eaf8eff386f9ce
ansible-galaxy install will still fail using:
$ ansible-galaxy install -r requirements.yml
Traceback (most recent call last):
File /Users/spicy/Development/oss/ansible/bin/ansible-galaxy, line
901, in module
main()
File /Users/spicy/Development/oss/ansible/bin/ansible-galaxy, line
895, in main
fn(args, options, parser)
File /Users/spicy/Development/oss/ansible/bin/ansible-galaxy, line
711, in execute_install
roles_left = map(ansible.utils.role_yaml_parse, yaml.safe_load(f))
File
/Users/spicy/Development/oss/ansible/lib/ansible/utils/__init__.py, line
432, in role_yaml_parse
if 'github.com' in role[src] and 'http' in role[src] and '+' not
in role[src] and not role[src].endswith('.tar.gz'):
TypeError: string indices must be integers, not str
Not sure if this is my syntax that is an issue, or if this is still a bug.
Should I file a new bug?
Thanks!
On Tuesday, September 30, 2014 12:05:09 PM UTC-7, Michael DeHaan wrote:
Yeah so we have this is in the bug tracker now for Ansible I think, so
should be being tracked.
https://github.com/ansible/ansible/issues/9173
If not, please make sure there's a new bug.
On Fri, Sep 26, 2014 at 4:00 PM, James Cammarata jcamm...@ansible.com
javascript: wrote:
You can always use the --ignore-errors option too, so that the
installation continues if you're not concerned about those failures.
On Fri, Sep 26, 2014 at 2:56 PM, seas...@gmail.com javascript: wrote:
Great, thanks for the clarification!
It looks like I am running into a bug then. If my requirements.yml
includes a role and that dependency itself has further non-galaxy
dependencies (say from GitHub for example), ansible-galaxy install will
fail to install the first level dependency and error out. I'm not expecting
it to resolve transitive dependencies (though that would be nice). I'll see
if I can create an example demo of this and then submit an issue.
Thanks again!
On Friday, September 26, 2014 12:46:48 PM UTC-7, James Cammarata wrote:
Role dependencies that are not on Galaxy can be listed in the metadata
along with roles that are - however as Michael said, such roles should not
be shared via Galaxy since other users won't have access to them, and the
role will therefore not work.
If you're writing a role for personal use however, you can list any
role dependencies there that you wish. The commented generated by the CLI
tool when using init to create a new role directly simply assumes that
the role will be uploaded to Galaxy, so really the comment should read #
If you're going to upload this role to Galaxy, be sure to list only
dependencies that are also available via Galaxy.
Hope that clears things up.
On Fri, Sep 26, 2014 at 11:46 AM, seas...@gmail.com wrote:
Hi Michael,
Thanks for your response.
Absolutely, I understand that Galaxy is not a private content store –
this is exactly what I'm trying to avoid. I think there might be
confusion
when I say galaxy the tool vs galaxy the service.
I'm using ansible-galaxy as a role depsolver to download roles from
private GitHub repositories, and occasionally from Galaxy (the service).
Because Ansible itself seems to understand meta/main.yml in that it'll
include any dependencies listed there in a run, it seemed like it could
be
used for non-galaxy roles (ie private roles). Since this happens
automatically within Ansible, it is very useful to include both public
and
private roles in the meta directory.
If it isn't intended to use the meta directory to list both open
source and internal deps, is there a functionally equivalent alternative?
Thanks.
On Friday, September 26, 2014 5:15:59 AM UTC-7, Michael DeHaan wrote:
Is that a hard rule, that you can't add dependencies via the
meta/main.yml workflow?
Right, That's the only way you add dependencies.
What that was saying is roles on galaxy should have all their
dependencies on galaxy, else the role should *not* be on galaxy.
Why? Because it's totally wrong to be sharing content with people
they can't use :)
Galaxy is not a place for personal private content, it's a place to
share content with other OSS users.
On Fri, Sep 26, 2014 at 4:06 AM, seas...@gmail.com wrote:
Hi there,
I'm currently using the in-development 1.8 version of Ansible to get
access to the enhanced requirements.yml features for the ansible-galaxy
command line tool. I'm using it to install roles from GitHub with the
appropriate config, and for the most part everything is working OK.
However, a few times
[ansible-project] Cloudformation - What Does This Mean?
I'm using the cloudformation module http://docs.ansible.com/cloudformation_module.html to start a stack. Everything works. But, I'd like to update the stack now that it is running. According to the documentation, the stack can be updated if the template changed (below) https://lh4.googleusercontent.com/-2CKWsUSXuVM/VD2QHiBIISI/ACI/_37Nu24dz4w/s1600/screenshot.png Just touching the template file with new date values doesn't work. What about the template has to change before the module will update a running stack? -T -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/6feec89e-4b9e-4f7b-941f-7ac31347c059%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[ansible-project] Looking for singleton... sort of.
In my app deployment scheme the first part happens locally, and the second part in the remote targets. Now, I want the first part to be executed only once no matter how many hosts the run is for, then the second part can be parallelized Is there a way to indicate that a part of the play execute a single time, and others once per host? Thanks -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/eab33dab-1cf2-44d6-958d-e3d43ca52fd3%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [ansible-project] Looking for singleton... sort of.
seems like you want run_once, just take into account that if you use serial, it won't be per play but per serial batch On Tue, Oct 14, 2014 at 3:59 PM, Tiglath te...@tiglath.net wrote: In my app deployment scheme the first part happens locally, and the second part in the remote targets. Now, I want the first part to be executed only once no matter how many hosts the run is for, then the second part can be parallelized Is there a way to indicate that a part of the play execute a single time, and others once per host? Thanks -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/eab33dab-1cf2-44d6-958d-e3d43ca52fd3%40googlegroups.com. For more options, visit https://groups.google.com/d/optout. -- Brian Coca Stultorum infinitus est numerus 0111011100100110010101101110001001110111011000010110011101010010011100110110110101110111001001110111 Pedo mellon a minno -- You received this message because you are subscribed to the Google Groups Ansible Project group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CADn%2BHsw%3DkzcsRkDjAJ3x2e%2BLKhMBYpY0n3p5xEWXd_V%2BpP1nbg%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
