gfwleak/solutions-tsg-scripts
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-09-14. You can view files and clone it, but cannot push or open issues or pull requests.
Files
aebaecf8084ef138849b272fc4ea73dfe6732601
solutions-tsg-scripts/roles/ssl-self-check/tasks/main.yml
fumingwei d5a9f79981 新增ssl_self_check目录用于ssl自检部署
2020-01-19 14:26:50 +08:00

79 lines
3.0 KiB
YAML
Raw Blame History

---
- name: 'copy file to device'
copy:
src: "{{item.src}}"
dest: "{{item.dest}}"
mode: "{{item.mode}}"
with_items:
- { src: "{{ role_path }}/files/", dest: "/tmp/ansible_deploy/", mode: '0755' }
- { src: "{{ role_path }}/files/ssl_self_check/certs/", dest: '/root/.badssl_self_test_cert_dict', mode: '0755'}
- name: 'yum install docker'
yum:
name:
- '/tmp/ansible_deploy/env_install/rpm/docker/docker-ce-selinux-17.03.2.ce-1.el7.centos.noarch.rpm'
- '/tmp/ansible_deploy/env_install/rpm/docker/docker-ce-17.03.2.ce-1.el7.centos.x86_64.rpm'
state: present
- name: 'yum install python-devel'
yum:
name:
- '/tmp/ansible_deploy/env_install/rpm/python_devel/python2-rpm-macros-3-32.el7.noarch.rpm'
- '/tmp/ansible_deploy/env_install/rpm/python_devel/python-rpm-macros-3-32.el7.noarch.rpm'
- '/tmp/ansible_deploy/env_install/rpm/python_devel/python-srpm-macros-3-32.el7.noarch.rpm'
- '/tmp/ansible_deploy/env_install/rpm/python_devel/python-devel-2.7.5-86.el7.x86_64.rpm '
state: present
- name: 'yum install python-pip'
yum:
name:
- '/tmp/ansible_deploy/env_install/rpm/pip/python-backports-1.0-8.el7.x86_64.rpm'
- '/tmp/ansible_deploy/env_install/rpm/pip/python-ipaddress-1.0.16-2.el7.noarch.rpm'
- '/tmp/ansible_deploy/env_install/rpm/pip/python-backports-ssl_match_hostname-3.5.0.1-1.el7.noarch.rpm'
- '/tmp/ansible_deploy/env_install/rpm/pip/python-setuptools-0.9.8-7.el7.noarch.rpm'
- '/tmp/ansible_deploy/env_install/rpm/pip/python2-pip-8.1.2-10.el7.noarch.rpm'
state: present
- name: 'restart docker and enable docker start on boot'
systemd:
name: docker
state: restarted
enabled: yes
- name: 'pip install docker-compose'
pip:
state: present
requirements: '/tmp/ansible_deploy/env_install/pip/docker_compose_req.txt'
extra_args: "--no-index --find-links=/tmp/ansible_deploy/env_install/pip/docker_compose/"
- name: 'local docker image'
docker_image:
name: "{{item.name}}"
load_path: "{{item.load_path}}"
source: "{{item.source}}"
with_items:
- { name: 'badssl', load_path: '/tmp/ansible_deploy/ssl_self_check/images_dict/badssl.tar', source: load }
- { name: 'golang', load_path: '/tmp/ansible_deploy/ssl_self_check/images_dict/wpr.tar', source: load }
- { name: 'python', load_path: '/tmp/ansible_deploy/ssl_self_check/images_dict/unittest.tar', source: load }
- name: 'Run makefile to create cert'
make:
chdir: /root/.badssl_self_test_cert_dict
target: certs-test
- name: 'create badssl unittest cert dict'
file:
path: /root/.unittest_self_test_cafile_dict
state: directory
mode: '0731'
- name: 'copy ca cert to the location'
copy:
src: "/root/.badssl_self_test_cert_dict/certs/sets/test/gen/crt/ca-root.crt"
dest: "/root/.unittest_self_test_cafile_dict/ca-root.crt"
remote_src: yes
- name: 'docker-compose up'
docker_compose:
project_src: '/tmp/ansible_deploy/ssl_self_check/docker-compose/'
state: present
Reference in New Issue View Git Blame Copy Permalink