mirror of
https://github.com/ansible-middleware/keycloak.git
synced 2026-06-13 20:15:55 +00:00
AMW-528 Deployment fails in keycloak_quarkus due to missing escalation variables
This commit is contained in:
Ranabir Chakraborty
@@ -43,11 +43,11 @@
|
||||
src: "{{ item.name }}"
|
||||
dest: "{{ item.dest }}"
|
||||
mode: 0444
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
loop:
|
||||
- { name: 'cert.pem', dest: '/etc/nginx/tls/certificate.crt' }
|
||||
- { name: 'key.pem', dest: '/etc/nginx/tls/certificate.key' }
|
||||
- name: Update CA trust
|
||||
ansible.builtin.command: update-ca-trust
|
||||
changed_when: false
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
changed_when: false
|
||||
|
||||
- name: Create vault directory
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.file:
|
||||
state: directory
|
||||
path: "/opt/keycloak/vault"
|
||||
@@ -30,7 +30,7 @@
|
||||
ansible.builtin.package:
|
||||
name: java-21-openjdk-headless
|
||||
state: present
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
failed_when: false
|
||||
|
||||
- name: Create vault keystore
|
||||
@@ -43,7 +43,7 @@
|
||||
failed_when: not 'already exists' in keytool_cmd.stdout and keytool_cmd.rc != 0
|
||||
|
||||
- name: Copy certificates and vault
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.copy:
|
||||
src: keystore.p12
|
||||
dest: /opt/keycloak/vault/keystore.p12
|
||||
|
||||
@@ -58,7 +58,7 @@
|
||||
fail_msg: "Service log symlink not correctly created"
|
||||
|
||||
- name: Check log file
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.stat:
|
||||
path: /tmp/keycloak/keycloak.log
|
||||
register: keycloak_log_file
|
||||
@@ -70,7 +70,7 @@
|
||||
- not keycloak_log_file.stat.isdir
|
||||
|
||||
- name: Check default log folder
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.stat:
|
||||
path: /var/log/keycloak
|
||||
register: keycloak_default_log_folder
|
||||
@@ -82,7 +82,7 @@
|
||||
- not keycloak_default_log_folder.stat.exists
|
||||
|
||||
- name: Verify vault SPI in logfile
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.shell: |
|
||||
set -o pipefail
|
||||
zgrep 'Configured KeystoreVaultProviderFactory with the keystore file' /opt/keycloak/keycloak-*/data/log/keycloak.log*zip
|
||||
|
||||
@@ -17,7 +17,7 @@
|
||||
ansible.builtin.include_tasks: ../prepare.yml
|
||||
|
||||
- name: Install JDK17
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.yum:
|
||||
name:
|
||||
- java-17-openjdk-headless
|
||||
@@ -26,7 +26,7 @@
|
||||
- ansible_facts.os_family == 'RedHat'
|
||||
|
||||
- name: Link default logs directory
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.file:
|
||||
state: link
|
||||
src: "{{ item }}"
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
changed_when: False
|
||||
|
||||
- name: Create vault directory
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.file:
|
||||
state: directory
|
||||
path: "/opt/keycloak/vault"
|
||||
@@ -30,7 +30,7 @@
|
||||
ansible.builtin.package:
|
||||
name: "{{ 'java-17-openjdk-headless' if hera_home | length > 0 else 'openjdk-17-jdk-headless' }}"
|
||||
state: present
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
failed_when: false
|
||||
|
||||
- name: Create vault keystore
|
||||
@@ -41,7 +41,7 @@
|
||||
failed_when: not 'already exists' in keytool_cmd.stdout and keytool_cmd.rc != 0
|
||||
|
||||
- name: Copy certificates and vault
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.copy:
|
||||
src: keystore.p12
|
||||
dest: /opt/keycloak/vault/keystore.p12
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
hera_home: "{{ lookup('env', 'HERA_HOME') }}"
|
||||
|
||||
- name: Check log file
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.stat:
|
||||
path: /var/log/keycloak/keycloak.log
|
||||
register: keycloak_log_file
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
changed_when: False
|
||||
|
||||
- name: Create vault directory
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.file:
|
||||
state: directory
|
||||
path: "/opt/keycloak/vault"
|
||||
@@ -30,7 +30,7 @@
|
||||
ansible.builtin.package:
|
||||
name: "{{ 'java-17-openjdk-headless' if hera_home | length > 0 else 'openjdk-17-jdk-headless' }}"
|
||||
state: present
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
failed_when: false
|
||||
|
||||
- name: Create vault keystore
|
||||
@@ -41,7 +41,7 @@
|
||||
failed_when: not 'already exists' in keytool_cmd.stdout and keytool_cmd.rc != 0
|
||||
|
||||
- name: Copy certificates and vault
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.copy:
|
||||
src: keystore.p12
|
||||
dest: /opt/keycloak/vault/keystore.p12
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
hera_home: "{{ lookup('env', 'HERA_HOME') }}"
|
||||
|
||||
- name: Check log file
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.stat:
|
||||
path: /var/log/keycloak/keycloak.log
|
||||
register: keycloak_log_file
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
changed_when: False
|
||||
|
||||
- name: Create vault directory
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.file:
|
||||
state: directory
|
||||
path: "/opt/keycloak/vault"
|
||||
@@ -30,7 +30,7 @@
|
||||
ansible.builtin.package:
|
||||
name: "{{ 'java-17-openjdk-headless' if hera_home | length > 0 else 'openjdk-17-jdk-headless' }}"
|
||||
state: present
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
failed_when: false
|
||||
|
||||
- name: Create vault keystore
|
||||
@@ -43,7 +43,7 @@
|
||||
failed_when: not 'already exists' in keytool_cmd.stdout and keytool_cmd.rc != 0
|
||||
|
||||
- name: Copy certificates and vault
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.copy:
|
||||
src: keystore.p12
|
||||
dest: /opt/keycloak/vault/keystore.p12
|
||||
|
||||
@@ -19,7 +19,7 @@
|
||||
hera_home: "{{ lookup('env', 'HERA_HOME') }}"
|
||||
|
||||
- name: Check log file
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
ansible.builtin.stat:
|
||||
path: /var/log/keycloak/keycloak.log
|
||||
register: keycloak_log_file
|
||||
|
||||
@@ -56,4 +56,4 @@
|
||||
ansible.builtin.file:
|
||||
path: /etc/ansible/facts.d/keycloak.fact
|
||||
state: absent
|
||||
become: "{{ molecule_prepare_require_privilege_escalation }}"
|
||||
become: "{{ molecule_prepare_require_privilege_escalation | default(true) }}"
|
||||
|
||||
Reference in New Issue
Block a user