c12s-kubespray/roles/vault/tasks/cluster/main.yml

---

- include: ../shared/check_vault.yml
  when: inventory_hostname in groups.vault

- include: ../shared/check_etcd.yml
  when: inventory_hostname in groups.vault

## Vault Cluster Setup

- include: configure.yml
  when: inventory_hostname in groups.vault

- include: binary.yml
  when: inventory_hostname in groups.vault and vault_deployment_type == "host"

- include: systemd.yml
  when: inventory_hostname in groups.vault

- include: init.yml
  when: inventory_hostname in groups.vault

- include: unseal.yml
  when: inventory_hostname in groups.vault

- include: ../shared/find_leader.yml
  when: inventory_hostname in groups.vault

- include: ../shared/pki_mount.yml 
  when: inventory_hostname == groups.vault|first

- include: ../shared/config_ca.yml
  vars:
    ca_name: ca
    mount_name: pki
  when: inventory_hostname == groups.vault|first

## Vault Policies, Roles, and Auth Backends

- include: role_auth_cert.yml
  when: vault_role_auth_method == "cert"

- include: role_auth_userpass.yml
  when: vault_role_auth_method == "userpass"
Adding the Vault role 2017-01-13 20:31:10 +00:00			`---`

Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: ../shared/check_vault.yml`
			`when: inventory_hostname in groups.vault`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: ../shared/check_etcd.yml`
			`when: inventory_hostname in groups.vault`

Adding the Vault role 2017-01-13 20:31:10 +00:00			`## Vault Cluster Setup`

Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: configure.yml`
			`when: inventory_hostname in groups.vault`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: binary.yml`
			`when: inventory_hostname in groups.vault and vault_deployment_type == "host"`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: systemd.yml`
			`when: inventory_hostname in groups.vault`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Adding the Vault role 2017-01-13 20:31:10 +00:00			`- include: init.yml`
			`when: inventory_hostname in groups.vault`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Adding the Vault role 2017-01-13 20:31:10 +00:00			`- include: unseal.yml`
			`when: inventory_hostname in groups.vault`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: ../shared/find_leader.yml`
			`when: inventory_hostname in groups.vault`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: ../shared/pki_mount.yml`
			`when: inventory_hostname == groups.vault\|first`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: ../shared/config_ca.yml`
Adding the Vault role 2017-01-13 20:31:10 +00:00			`vars:`
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`ca_name: ca`
			`mount_name: pki`
			`when: inventory_hostname == groups.vault\|first`
Adding the Vault role 2017-01-13 20:31:10 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`## Vault Policies, Roles, and Auth Backends`
Adding the Vault role 2017-01-13 20:31:10 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: role_auth_cert.yml`
			`when: vault_role_auth_method == "cert"`
Cleanup legacy syntax, spacing, files all to yml Migrate older inline= syntax to pure yml syntax for module args as to be consistant with most of the rest of the tasks Cleanup some spacing in various files Rename some files named yaml to yml for consistancy 2017-02-17 21:22:34 +00:00
Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00			`- include: role_auth_userpass.yml`
			`when: vault_role_auth_method == "userpass"`