Minimal Ansible role to manage CentOS 7.3 worker nodes running CI/CD for the GPII. This includes:
- gitlab-runner via ansible-gitlab-runner
- Terraform and Terragrunt
- jq
- rvm and bundler
- git configuration for
gitlab-runneruser - ssh config (private key delivered out-of-band)
- CentOS 7.x
- Ansible 2.x
- systemd
- ansible-gitlab-runner
# Docker Registry credentials are only active in production. Define these in
# vault.yml.
# gpii_ci_worker_docker_username: alice
# gpii_ci_worker_docker_password: secret
# gpii_ci_worker_docker_email: [email protected]
# Passed to ansible-gitlab-runner
gpii_ci_worker_gitlab_runner_concurrent: 8
# Passed to ansible-gitlab-runner
gpii_ci_worker_gitlab_runner_registration_token: ""
# Passed to ansible-gitlab-runner
gpii_ci_worker_gitlab_runner_list: []
gpii_ci_worker_terraform_version: 0.11.7
# From e.g. https://releases.hashicorp.com/terraform/{{ gpii_ci_worker_terraform_version }}/terraform_{{ gpii_ci_worker_terraform_version }}_SHA256SUMS
gpii_ci_worker_terraform_checksum: sha256:6b8ce67647a59b2a3f70199c304abca0ddec0e49fd060944c26f666298e23418
gpii_ci_worker_terragrunt_version: 0.14.0
gpii_ci_worker_kubectl_version: v1.9.8
gpii_ci_worker_kops_version: 1.8.1
# From e.g. https://github.com/kubernetes/kops/releases/download/{{ gpii_ci_worker_kops_version }}/kops-darwin-amd64-sha1
gpii_ci_worker_kops_checksum: sha1:3f806f914d8bf2a0b9b3c6785689257b7aadcd17
gpii_ci_worker_helm_version: v2.8.2
gpii_ci_worker_aws_version: 1.15.45
gpii_ci_worker_jq_version: 1.5
gpii_ci_worker_ruby_version: 2.4.3
gpii_ci_worker_bundler_version: 1.16.1
gpii_ci_worker_rake_version: 12.3.0
- hosts: servers
roles:
- ansible-gpii-ci-worker
Use molecule to test this role.
Because this role depends on systemd and might one day need SELinux (as related role ansible-influxdb does), only a Vagrant provider is configured at the moment.
MIT
Raising the Floor - US