forked from CactuseSecurity/firewall-orchestrator
-
Notifications
You must be signed in to change notification settings - Fork 0
/
site.yml
125 lines (110 loc) · 2.88 KB
/
site.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
---
# for installation options see https://github.com/CactuseSecurity/firewall-orchestrator/blob/master/documentation/installer/install-advanced.md
- hosts: all
roles:
- { role: common }
tags:
- backend
- frontend
- importer
- ui
- api
- hosts: databaseserver
roles:
- { role: database, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- hosts: middlewareserver
roles:
- { role: openldap-server, when: "not installation_mode == 'uninstall'" }
- { role: lib, when: "not installation_mode == 'uninstall'" }
- { role: middleware, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- csharp
- hosts: apiserver
roles:
- { role: docker, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- api
# do not put this into the same play as docker (handler needs to run inbetween!)
- hosts: apiserver
roles:
- { role: api, when: "not installation_mode == 'uninstall'" }
tags:
- backend
- api
- hosts: frontends
roles:
- { role: lib, when: "not installation_mode == 'uninstall'"}
- { role: ui, when: "not installation_mode == 'uninstall'"}
tags:
- frontend
- csharp
- ui
- hosts: sampleserver
roles:
- { role: sample-data, when: "add_demo_data|bool and not installation_mode == 'uninstall'" }
tags:
- samples
- backend
- importer
- hosts: middlewareserver
roles:
- { role: sample-auth-data, when: "add_demo_data|bool and not installation_mode == 'uninstall'" }
tags:
- samples
- backend
# todo: add a meta dependency on role sample-data
- hosts: importers
roles:
- { role: importer, when: "not installation_mode == 'uninstall'" }
tags:
- frontend
- importer
- hosts: frontends
tasks:
- name: restart ui service to display new version
service:
name: "{{ ui_service_name }}"
state: restarted
become: true
when: "not installation_mode == 'uninstall'"
tags:
- frontend
- ui
- hosts: testservers
roles:
- { role: webhook, when: install_webhook|bool and not installation_mode == 'uninstall' }
tags:
- test
- hosts: all
roles:
- { role: finalize, when: "not installation_mode == 'uninstall'" }
tags:
- finalize
- backend
- frontend
- importer
- ui
- hosts: all
roles:
- { role: test, when: not installation_mode == 'uninstall' }
tags:
- test
- quicktest
- hosts: all
tasks:
# display status & pwds
- name: show listener status
import_tasks: scripts/show-fworch-listeners.yml
become: true
- name: display secrets for this installation
debug:
msg:
- "Your initial UI admin password is '{{ admin_password }}'"
- "Your api hasura admin secret is '{{ api_hasura_admin_secret }}'"
when: |
admin_password is defined and
api_hasura_admin_secret is defined