add registry role

2022-10-10 23:15:28 +02:00
parent 28f46dc9f0
commit 234e9b6395
15 changed files with 252 additions and 4 deletions
--- a/registry/tasks/deploy-registry.yml
+++ b/registry/tasks/deploy-registry.yml
@@ -0,0 +1,13 @@
+# deploy docker registry
+
+- name: Create directory
+  file: 
+    path: "/home/valentin/{{ item }}"
+    state: directory
+  with_items:
+    - registry
+
+- name: Copy docker compose server file
+  copy:
+    src: docker-compose-registry.yml
+    dest: /home/valentin/registry/docker-compose.yml
--- a/registry/tasks/main.yml
+++ b/registry/tasks/main.yml
@@ -0,0 +1,23 @@
+---
+# tasks file for server
+
+
+
+# include task registry
+
+- name: Deploy registry
+  ansible.builtin.import_tasks: deploy-registry.yml
+  tags: ["create-registry", "deploy-regsitry"]
+
+- name: Start registry
+  ansible.builtin.import_tasks: start-registry.yml
+  tags: ["deploy-registry", "start-registry"]
+
+
+- name: stop registry
+  ansible.builtin.import_tasks: stop-registry.yml
+  tags: ["destroy-registry", "stop-registry"]
+
+- name: Remove registry
+  ansible.builtin.import_tasks: remove-registry.yml
+  tags: ["destroy-registry"]
--- a/registry/tasks/remove-registry.yml
+++ b/registry/tasks/remove-registry.yml
@@ -0,0 +1,18 @@
+# remove db 
+
+- name: Stopping existing service
+  community.docker.docker_compose:
+    project_src: "{{ project_src }}"
+    state: absent
+    remove_volumes: yes
+    remove_images: local
+  register: output
+
+- name: Debug output
+  debug:
+    var: output
+
+- name: Remove project covas db
+  file:
+    path: "{{ project_src }}"
+    state: absent
--- a/registry/tasks/start-registry.yml
+++ b/registry/tasks/start-registry.yml
@@ -0,0 +1,27 @@
+# start services db
+
+- name: Stopping existing service
+  community.docker.docker_compose:
+    project_src: "{{ project_src }}"
+    state: absent
+
+- name: Starting service
+  community.docker.docker_compose:
+    project_src: "{{ project_src }}"
+  register: output
+
+- name: debug output
+  debug: 
+    var: output
+
+- name: Allow port registry 
+  ansible.builtin.iptables:
+    chain: INPUT
+    protocol: tcp
+    destination_port: 5000
+    jump: ACCEPT
+    state: present
+  vars:
+    ansible_become: yes
+    ansible_become_method: sudo
+    ansible_become_password: "{{ sudo_password }}"
--- a/registry/tasks/stop-registry.yml
+++ b/registry/tasks/stop-registry.yml
@@ -0,0 +1,25 @@
+# stop services db and redis 
+
+- name: Disallow port postgresql 
+  ansible.builtin.iptables:
+    chain: INPUT
+    protocol: tcp
+    destination_port: 5000
+    jump: ACCEPT
+    state: absent
+  vars:
+    ansible_become: yes
+    ansible_become_method: sudo
+    ansible_become_password: "{{ sudo_password }}"
+
+- name: Stopping existing service
+  community.docker.docker_compose:
+    project_src: "{{ project_src }}"
+    state: present
+    stopped: yes
+  register: output
+
+
+- name: Debug output
+  debug:
+    var: output