- name: Deploy Webapp-Deployer Backend hosts: "{{ target_host }}" environment: PATH: "{{ ansible_env.PATH }}:/home/{{ansible_user}}/bin" KUBECONFIG: "{{ ansible_env.HOME }}/.kube/config-default.yaml" vars_files: - vars/webapp-vars.yml - vars/container-vars.yml - vars/k8s-vars.yml - vars/dns-vars.yml tasks: - name: Ensure gpg-keys directory exists file: path: ~/gpg-keys state: directory mode: '0700' - name: Create a GPG key shell: gpg --batch --passphrase "SECRET" --quick-generate-key webapp-deployer-api.{{ dns_domain }}.com default default never - name: Export the public key shell: gpg --export webapp-deployer-api.{{ dns_domain }}.com > ~/gpg-keys/webapp-deployer-api.{{ dns_domain }}.com.pgp.pub args: creates: ~/gpg-keys/webapp-deployer-api.{{ dns_domain }}.com.pgp.pub - name: Export the GPG private key with passphrase shell: gpg --pinentry-mode=loopback --passphrase "SECRET" --export-secret-keys webapp-deployer-api.{{ dns_domain }}.com > ~/gpg-keys/webapp-deployer-api.{{ dns_domain }}.com.pgp.key - name: Setup repositories for webapp-deployer-backend command: laconic-so --stack webapp-deployer-backend setup-repositories - name: Build containers for webapp-deployer-backend command: laconic-so --stack webapp-deployer-backend build-containers - name: Create laconic config file template: src: "./templates/laconic.yml.j2" dest: "config/laconic.yml" - name: Copy the gpg private key file to config dir copy: src: "gpg-keys/webapp-deployer-api.{{ dns_domain }}.com.pgp.key" dest: "config" remote_src: true - name: Copy the gpg public key file to config dir copy: src: "gpg-keys/webapp-deployer-api.{{ dns_domain }}.com.pgp.pub" dest: "config" remote_src: true - name: Publish the webapp-deployer record using laconic-so shell: | docker run -i -t \ -v /home/{{ ansible_user }}/config:/home/root/config \ cerc/webapp-deployer-backend:local laconic-so publish-deployer-to-registry \ --laconic-config /home/root/config/laconic.yml \ --api-url https://webapp-deployer-api.{{ dns_domain }}.com \ --public-key-file /home/root/config/webapp-deployer-api.{{ dns_domain }}.com.pgp.pub \ --lrn lrn://{{ authority_name }}/deployers/webapp-deployer-api.{{ dns_domain }}.com \ --min-required-payment 100 register: publish_output - name: Display publish output debug: var: publish_output.stdout - name: Generate spec file for webapp-deployer-backend template: src: "./templates/specs/webapp-deployer.spec.j2" dest: "webapp-deployer.spec" - name: Create the deployment directory from the spec file command: > laconic-so --stack webapp-deployer-backend deploy create --deployment-dir webapp-deployer --spec-file webapp-deployer.spec - name: Update config for webapp-deployer-backend template: src: "./templates/configs/webapp-deployer-config.env.j2" dest: "webapp-deployer/config.env" - name: Copy the kube config file to webapp-deployer directory copy: src: "{{ansible_env.HOME}}/.kube/config-default.yaml" dest: "webapp-deployer/data/config/kube.yml" remote_src: true - name: Create laconic config file template: src: "./templates/laconic.yml.j2" dest: "webapp-deployer/data/config/laconic.yml" - name: Push images to container registry command: laconic-so deployment --dir webapp-deployer push-images - name: Start the webapp deployer command: laconic-so deployment --dir webapp-deployer start - name: Get the most recent pod for the deployment shell: kubectl get pods --sort-by=.metadata.creationTimestamp -o jsonpath='{.items[-1].metadata.name}' register: webapp_deployer_pod - name: Set pod ID to a variable set_fact: pod_id: "{{ webapp_deployer_pod.stdout }}" - name: Wait for the recent pod to be ready command: kubectl wait --for=condition=Ready pod/{{ pod_id }} --timeout=300s register: wait_result - name: Copy gpg private key file to webapp deployer pod shell: kubectl cp gpg-keys/webapp-deployer-api.{{ dns_domain }}.com.pgp.key {{ pod_id }}:/app - name: Copy gpg public key file to webapp deployer pod shell: kubectl cp gpg-keys/webapp-deployer-api.{{ dns_domain }}.com.pgp.pub {{ pod_id }}:/app