r/ouranos
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
856d7e2ef2e046bc9e153113d55ed014c1ec12f5
ouranos/ansible/roles/incus_storage_bucket/tasks/main.yml
Robert Helewka b4d60f2f38 docs: rewrite README with structured overview and quick start guide 
Replaces the minimal project description with a comprehensive README
including a component overview table, quick start instructions, common
Ansible operations, and links to detailed documentation. Aligns with
Red Panda Approval™ standards.
2026-03-03 12:49:06 +00:00

93 lines
3.0 KiB
YAML
Raw Blame History

---
# Main task file for incus_storage_bucket role
# Creates Incus S3 buckets and outputs credentials to console
- name: Validate required variables
ansible.builtin.assert:
that:
- bucket_name is defined
fail_msg: "Required variable not defined: bucket_name"
- name: Check if bucket already exists
ansible.builtin.command:
cmd: incus storage bucket list {{ storage_pool }} --project={{ project_name }} --format=json
register: bucket_list
changed_when: false
failed_when: false
- name: Parse bucket list
ansible.builtin.set_fact:
existing_buckets: "{{ bucket_list.stdout | from_json | map(attribute='name') | list }}"
when: bucket_list.rc == 0
- name: Create storage bucket
ansible.builtin.command:
cmd: >
incus storage bucket create {{ storage_pool }} {{ bucket_name }}
--project={{ project_name }}
when: bucket_name not in (existing_buckets | default([]))
register: bucket_created
- name: Set key name
ansible.builtin.set_fact:
key_name: "{{ bucket_name }}-access"
- name: Check if bucket key already exists
ansible.builtin.command:
cmd: >
incus storage bucket key list {{ storage_pool }} {{ bucket_name }}
--project={{ project_name }} --format=json
register: key_list
changed_when: false
failed_when: false
- name: Parse key list
ansible.builtin.set_fact:
existing_keys: "{{ key_list.stdout | from_json | map(attribute='name') | list }}"
when: key_list.rc == 0
- name: Create bucket access key
ansible.builtin.command:
cmd: >
incus storage bucket key create {{ storage_pool }} {{ bucket_name }} {{ key_name }}
--role={{ bucket_role }} --project={{ project_name }}
register: key_created
when: key_name not in (existing_keys | default([]))
- name: Show bucket key (for existing key)
ansible.builtin.command:
cmd: >
incus storage bucket key show {{ storage_pool }} {{ bucket_name }} {{ key_name }}
--project={{ project_name }}
register: key_show
changed_when: false
when: key_name in (existing_keys | default([]))
- name: Parse credentials from YAML output
ansible.builtin.set_fact:
bucket_credentials: "{{ (key_created.stdout | default(key_show.stdout)) | from_yaml }}"
- name: Get bucket info for endpoint
ansible.builtin.command:
cmd: >
incus storage bucket show {{ storage_pool }} {{ bucket_name }}
--project={{ project_name }}
register: bucket_info
changed_when: false
- name: Parse bucket info from YAML
ansible.builtin.set_fact:
bucket_data: "{{ bucket_info.stdout | from_yaml }}"
- name: Display S3 bucket credentials
ansible.builtin.debug:
msg:
- "============================================"
- "S3 BUCKET PROVISIONED: {{ bucket_name }}"
- "============================================"
- "Endpoint: {{ bucket_data.s3_url }}"
- "Bucket: {{ bucket_name }}"
- "Access Key: {{ bucket_credentials['access-key'] }}"
- "Secret Key: {{ bucket_credentials['secret-key'] }}"
- "============================================"
Reference in New Issue View Git Blame Copy Permalink