generated from Darkbat91/ansible-roletemplate
-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathmain.yml
116 lines (101 loc) · 3.06 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
---
# ansible default variables - most variables live here
koji_hub_packages:
- koji
- koji-hub
- koji-hub-plugins
- koji-web
- koji-utils
- git
- gnupg2
- python3-paho-mqtt
- nfs-utils
- mod_ssl
- mod_auth_gssapi
- sigul
koji_default_directories:
- packages
- repos
- work
- scratch
- repos-dist
- compose
koji_db_name: koji
koji_db_user: koji
koji_db_pass: ThisIsNotThePassword!
koji_db_host: localhost
# Web
koji_sitename: Rocky Linux Build Service
koji_theme: false
koji_theme_name: rocky
koji_theme_file: rocky.tar.gz
koji_web_url: https://koji.rockylinux.org/koji
koji_hub_url: https://koji.rockylinux.org/kojihub
koji_files_url: https://koji.rockylinux.org/kojifiles
koji_web_keytab: /etc/keytabs/koji-web.keytab
# This should be changed before deployment
koji_hub_secret: cK5XCuzMSXJfgA7yFvXkGwFu
koji_web_cacert: /etc/pki/tls/certs/ca-bundle.crt
koji_web_tls_cert: /etc/pki/tls/certs/koji.rockylinux.org.crt
koji_web_tls_key: /etc/pki/tls/private/koji.rockylinux.org.key
# Kojira
koji_kojira: true
koji_kojira_user: kojira
koji_kojira_user_kerb: kojira/koji.rockylinux.org
koji_kojira_principal: kojira/[email protected]
koji_kojira_keytab: /etc/keytabs/kojira.keytab
# MBS
koji_mbs: true
koji_mbs_user: mbs
koji_mbs_user_kerb: mbs/mbs.rockylinux.org
koji_mbs_principal: mbs/[email protected]
koji_mbs_keytab: /etc/keytabs/mbs.keytab
# GC
koji_gc_name: garbageman
koji_gc_keytab: /etc/keytabs/koji-gc.keytab
koji_gc_principal: koji-gc/[email protected]
# Sigul
koji_sigul: true
koji_sigul_user: sigul
koji_sigul_user_kerb: sigul/sigul.rockylinux.org
koji_sigul_principal: sigul/[email protected]
# Storage
koji_nfs: true
koji_mount: /mnt/koji
koji_nfs_path: nfs.rockylinux.org:/export/koji
# Koji Admin
koji_admin_client: true
koji_admin_user: rockykoji
koji_admin_principal: [email protected]
koji_admin_localuser: true
koji_admin_localuser_name: koji
# Hub Settings
koji_hub_principal: "host/[email protected]"
koji_hub_proxy_principals: "HTTP/{{ inventory_hostname }}@ROCKYLINUX.ORG"
koji_hub_keytab: /etc/keytabs/host.keytab
koji_hub_principal_format: compile/%[email protected]
# This should be sufficient even for LE
koji_hub_ca: "{{ koji_web_cacert }}"
# Koji FAS Syncing
# This isn't implemented yet
koji_fas_sync: false
koji_fas_url: https://accounts.rockylinux.org
# Koji Plugins
koji_hub_plugins: false
koji_hub_plugins_list:
- key_signing
koji_hub_plugin_key_gpg_keyphrase: lol
koji_hub_plugin_key_gpg_name: testing-signing
koji_hub_plugin_key_gpg_id: bbe2c108
koji_hub_plugin_key_build_target: "dist-rocky8 dist-rocky9"
koji_hub_plugin_key_testing_tag: dist-rocky8-testing
koji_hub_plugin_key_testing: "True"
koji_hub_plugin_key_sigul_config: "/etc/koji-hub/sigul.conf"
# Not implemented
koji_hub_plugin_mqtt_host: mqtt.rockylinux.org
koji_hub_plugin_mqtt_topic: koji
koji_hub_plugin_mqtt_ca: "{{ koji_hub_ca }}"
koji_hub_plugin_mqtt_tls_cert: /etc/pki/tls/certs/mqtt.pem
koji_hub_plugin_mqtt_tls_key: /etc/pki/tls/certs/mqtt.pem
koji_hub_plugin_mqtt_excluded_tags:
- testing-tag