63 lines
2.2 KiB
YAML
63 lines
2.2 KiB
YAML
# Credentials de connexion à awx
|
|
awx_controller_host: "{{ awx_url }}" # ici on prend l'url de l'environnement désigné
|
|
awx_controller_username: "{{ controller_username | default(lookup('env', 'TOWER_USERNAME')) }}"
|
|
awx_controller_password: "{{ controller_password | default(lookup('env', 'TOWER_PASSWORD')) }}"
|
|
|
|
# Credentials git à définir dans awx
|
|
awx_git_credentials:
|
|
- name: "aap-git-token@git.libretic.fr"
|
|
username: "{{ lookup('env', 'GIT_TOKEN_NAME') }}"
|
|
password: "{{ lookup('env', 'GIT_TOKEN_SECRET') }}"
|
|
|
|
# Credentials vault à définir dans awx
|
|
awx_vault_credentials:
|
|
- name: "aap_ansible_vault_password"
|
|
password: "{{ lookup('file', lookup('env', 'ANSIBLE_VAULT_PASSWORD_FILE')) }}"
|
|
|
|
# Credentials ssh à définir dans awx
|
|
awx_machine_credentials:
|
|
- name: "aap_ansible_remote_user"
|
|
username: "{{ lookup('env', 'ANSIBLE_REMOTE_USER') }}"
|
|
ssh_key_data: "{{ lookup('file', lookup('env', 'ANSIBLE_PRIVATE_KEY_FILE')) }}"
|
|
|
|
# Credentials ssh à définir dans awx
|
|
awx_organization: "Libretic"
|
|
|
|
# Equipes qui doivent être créées dans AWX
|
|
awx_team_list:
|
|
- team: Libretic-Admins
|
|
organization: Libretic
|
|
|
|
# Roles à donner : lire : "team" peut "role" sur "organization"
|
|
awx_team_roles_list:
|
|
- team: Libretic-Admins
|
|
role: read
|
|
organization: Libretic
|
|
- team: Libretic-Admins
|
|
role: execute
|
|
organization: Libretic
|
|
- team: Libretic-Admins
|
|
role: approval
|
|
organization: Libretic
|
|
- team: Libretic-Admins
|
|
role: auditor
|
|
organization: Libretic
|
|
|
|
# pour connexion au serveur de ressources
|
|
awx_aap_ressources_credential_name: aap_ressources
|
|
awx_aap_ressources_url: "{{ lookup('env', 'AAP_RESSOURCES_URL') }}"
|
|
awx_aap_ressources_username: "{{ lookup('env', 'AAP_RESSOURCES_USER') }}"
|
|
awx_aap_ressources_password: "{{ lookup('env', 'AAP_RESSOURCES_PASSWORD') }}"
|
|
|
|
# Quel environnement d'exécution utiliser
|
|
awx_ee: "awx-ee-libretic-{{ awx_ee_version }}"
|
|
awx_ee_image: libretic/awx-ee-libretic
|
|
|
|
#####
|
|
# Pour la mise en place du projet dans awx
|
|
#####
|
|
awx_git_credential_name: "aap-git-token@git.libretic.fr"
|
|
awx_vault_credential_name: "aap_ansible_vault_password"
|
|
awx_machine_credential_name: "aap_ansible_remote_user"
|
|
awx_project_name: libretic-aap
|
|
awx_project_url: https://git.libretic.fr/libretic/ansible-libretic-aap.git
|