vault-cluster
77 строк · 2.2 Кб
1---2- name: Create consul_s*.json file3hosts: consul-clients4become: true5gather_facts: false6vars:8retry_join: "{{ groups['consul-servers'] | to_json }}"9tasks:11- name: Create consul config directory13file:14path: /etc/consul15state: directory16owner: consul17group: consul18mode: '0750'19- name: Ensure consul_c*.json file exists21copy:22content: |23{24"server": false,25"node_name": "{{ inventory_hostname }}",26"datacenter": "{{ datacenter }}",27"data_dir": "/home/consul/client/data",28"bind_addr": "{{ ansible_host }}",29"client_addr": "127.0.0.1",30"retry_join": {{ retry_join }},31"log_level": "DEBUG",32"enable_syslog": true,33"encrypt": "{{ encrypt }}",34}35dest: "/etc/consul/{{ inventory_hostname | replace('-', '_') }}.json"36owner: consul37group: consul38mode: '0600'39- name: Create consul service file41copy:42content: |43[Unit]44Description=Consul client agent45Requires=network-online.target46After=network-online.target47[Service]49User=consul50Group=consul51PIDFile=/var/run/consul/consul_agent.pid52PermissionsStartOnly=true53ExecStartPre=-/bin/mkdir -p /var/run/consul54ExecStartPre=/bin/chown -R consul:consul /var/run/consul55ExecStart=/bin/consul agent \56-config-file=/etc/consul/{{ inventory_hostname | replace('-', '_') }}.json \57-pid-file=/var/run/consul/consul_agent.pid58ExecReload=/bin/kill -HUP $MAINPID59KillMode=process60KillSignal=SIGTERM61Restart=on-failure62RestartSec=42s63[Install]65WantedBy=multi-user.target66dest: "/etc/systemd/system/{{ inventory_hostname | replace('-', '_') }}.service"68owner: root69group: root70mode: '0644'71- name: Enable and start consul service73systemd:74name: "{{ inventory_hostname | replace('-', '_') }}"75enabled: yes76state: restarted77daemon_reload: yes78