| 1 |
#################################################################################################### |
| 2 |
Ansible Deploy Script for Delegation Server |
| 3 |
#################################################################################################### |
| 4 |
|
| 5 |
How to use these scripts? |
| 6 |
|
| 7 |
Before you can use these scripts, there are a couple of deployments specific setting |
| 8 |
you will have to tweak. |
| 9 |
|
| 10 |
1. It is assumed that you are configuring a single machine to be The Delegation Server. This |
| 11 |
target machine is configured in an inventory file called 'nikhef' by its hostname/ip. In |
| 12 |
case you want to configure more than one target, add your target hostnames/ips to the |
| 13 |
'[nikhef-delegserver]' group in the 'nikhef' inventory file. |
| 14 |
|
| 15 |
2. Configure every host specific variable in the 'host_vars' directory for each of your |
| 16 |
targets from 1. Use the already existing file under 'host_vars' to see which variables to |
| 17 |
set |
| 18 |
|
| 19 |
3. You should configure your environment specific varaibles in 'cafrontend_env.yml' and |
| 20 |
'delegserver_env.yml'. These files contain default from the two ansible roles: cafrontend |
| 21 |
and delegserver. Some of them you may leave as default (some standard paths like /etc/grid |
| 22 |
-security/), but others you should definitaly change (passwords, urls)! |
| 23 |
|
| 24 |
4. Make sure to look through the template files under 'roles/cafrontend/templates' and |
| 25 |
'roles/delegserver/templates'. Infrastructure specific information, such as iptables rules |
| 26 |
can be found here. Make sure to customize these templates to your specific infrastructure. |
| 27 |
|
| 28 |
5. These deployment scripts do not contain the actual Delegation Server package (oauth2.war) |
| 29 |
or it's helper tools (oa2-cli.jar)! This is because these deployment scripts are meant to |
| 30 |
be used with any Delegation Server version/flavour. Make sure to replace the files marked |
| 31 |
.PLACEHOLDER under 'roles/delegserver/files/' with the real software you want to deploy! |
| 32 |
For rebuilding, use e.g. |
| 33 |
https://sourceforge.net/p/cilogon/code/HEAD/tree/tags/edu.uiuc.ncsa/myproxy-3.2.1/ |
| 34 |
which builds |
| 35 |
./oa4mp-server-oauth2/target/oauth2.war |
| 36 |
For rebuilding the oa2-cli.jar you need to enable the cli profile |
| 37 |
(see ./oa4mp-server-admin-oauth2/pom.xml) |
| 38 |
mvn -P cli package |
| 39 |
which builds |
| 40 |
./oa4mp-server-admin-oauth2/target/oa2-cli.jar |
| 41 |
|
| 42 |
6. Execute: 'ansible-playbook -i nikhef delegserver.yml'. Time to grab a coffee (or lunch)! |
Parent Directory
| 
Revision Log