Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-07-02 04:52:11 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Switch to clouds.yaml file for authentication and use Open Telekom Cloud Vendor profile

Browse source
This commit is contained in:
Sebastian Haderecker 2020-03-22 00:34:10 +01:00
parent e588e62815
commit f5b097b19a
4 changed files with 14 additions and 48 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
cloud/ansible/openstack/clouds.yaml Normal file
View file

@ -0,0 +1,8 @@
clouds:
open-telekom-cloud:
profile: otc
auth:
project_name: eu-de_your_project
username: your_api_user
password: your_password
user_domain_name: OTC-EU-DE-000000000010000XXXXX

48
cloud/ansible/openstack/roles/deploy/tasks/main.yaml
View file

@ -2,51 +2,26 @@
shell: echo t-pot-ansible-$(pwgen -ns 6 -1) shell: echo t-pot-ansible-$(pwgen -ns 6 -1)
register: tpot_name register: tpot_name
- name: Import OpenStack authentication variables
include_vars:
file: roles/deploy/vars/os_auth.yaml
no_log: true
- name: Create security group - name: Create security group
os_security_group: os_security_group:
auth: cloud: open-telekom-cloud
auth_url: "{{ auth_url }}"
username: "{{ username }}"
password: "{{ password }}"
project_name: "{{ project_name }}"
os_user_domain_name: "{{ os_user_domain_name }}"
name: sg-tpot-any name: sg-tpot-any
description: tpot any-any description: tpot any-any
- name: Add rules to security group - name: Add rules to security group
os_security_group_rule: os_security_group_rule:
auth: cloud: open-telekom-cloud
auth_url: "{{ auth_url }}"
username: "{{ username }}"
password: "{{ password }}"
project_name: "{{ project_name }}"
os_user_domain_name: "{{ os_user_domain_name }}"
security_group: sg-tpot-any security_group: sg-tpot-any
remote_ip_prefix: 0.0.0.0/0 remote_ip_prefix: 0.0.0.0/0
- name: Create network - name: Create network
os_network: os_network:
auth: cloud: open-telekom-cloud
auth_url: "{{ auth_url }}"
username: "{{ username }}"
password: "{{ password }}"
project_name: "{{ project_name }}"
os_user_domain_name: "{{ os_user_domain_name }}"
name: network-tpot name: network-tpot
- name: Create subnet - name: Create subnet
os_subnet: os_subnet:
auth: cloud: open-telekom-cloud
auth_url: "{{ auth_url }}"
username: "{{ username }}"
password: "{{ password }}"
project_name: "{{ project_name }}"
os_user_domain_name: "{{ os_user_domain_name }}"
network_name: network-tpot network_name: network-tpot
name: subnet-tpot name: subnet-tpot
cidr: 192.168.0.0/24 cidr: 192.168.0.0/24
@ -56,26 +31,15 @@
- name: Create router - name: Create router
os_router: os_router:
auth: cloud: open-telekom-cloud
auth_url: "{{ auth_url }}"
username: "{{ username }}"
password: "{{ password }}"
project_name: "{{ project_name }}"
os_user_domain_name: "{{ os_user_domain_name }}"
name: router-tpot name: router-tpot
interfaces: interfaces:
- subnet-tpot - subnet-tpot
- name: Launch an instance - name: Launch an instance
os_server: os_server:
auth: cloud: open-telekom-cloud
auth_url: "{{ auth_url }}"
username: "{{ username }}"
password: "{{ password }}"
project_name: "{{ project_name }}"
os_user_domain_name: "{{ os_user_domain_name }}"
name: "{{ tpot_name.stdout }}" name: "{{ tpot_name.stdout }}"
region_name: "{{ region_name }}"
availability_zone: "{{ availability_zone }}" availability_zone: "{{ availability_zone }}"
image: "{{ image }}" image: "{{ image }}"
boot_from_volume: yes boot_from_volume: yes

1
cloud/ansible/openstack/roles/deploy/vars/main.yaml
View file

@ -1,4 +1,3 @@
region_name: eu-de
availability_zone: eu-de-03 availability_zone: eu-de-03
image: Standard_Debian_10_latest image: Standard_Debian_10_latest
volume_size: 128 volume_size: 128

5
cloud/ansible/openstack/roles/deploy/vars/os_auth.yaml
View file

@ -1,5 +0,0 @@
auth_url: https://iam.eu-de.otc.t-systems.com/v3
username: your_api_user
password: your_password
project_name: eu-de_your_project
os_user_domain_name: OTC-EU-DE-000000000010000XXXXX