{"id":810,"sha1":"8b5c951e010940e5e4404b61a1aff1e8f9b8e056","playbook":{"id":4,"items":{"plays":107,"tasks":2438,"results":2413,"hosts":13,"files":511,"records":0},"arguments":{"version":null,"verbosity":0,"private_key_file":null,"remote_user":null,"connection":"openstack.osa.ssh","timeout":null,"ssh_common_args":null,"sftp_extra_args":null,"scp_extra_args":null,"ssh_extra_args":null,"ask_pass":false,"connection_password_file":null,"force_handlers":true,"flush_cache":false,"become":false,"become_method":"sudo","become_user":null,"become_ask_pass":false,"become_password_file":null,"tags":["all"],"skip_tags":[],"check":false,"diff":false,"inventory":["/home/zuul/src/opendev.org/openstack/openstack-ansible/inventory/dynamic_inventory.py","/home/zuul/src/opendev.org/openstack/openstack-ansible/inventory/inventory.ini","/etc/openstack_deploy/inventory.ini"],"listhosts":false,"subset":null,"extra_vars":"Not saved by ARA as configured by 'ignored_arguments'","vault_ids":[],"ask_vault_pass":false,"vault_password_files":[],"forks":4,"module_path":null,"syntax":false,"listtasks":false,"listtags":false,"step":false,"start_at_task":null,"args":["setup-openstack.yml"]},"labels":[{"id":1,"name":"check:False"},{"id":2,"name":"tags:all"}],"started":"2025-12-14T10:21:40.790759Z","ended":"2025-12-14T11:05:36.775743Z","duration":"00:43:55.984984","name":null,"ansible_version":"2.18.6","client_version":"1.7.4","python_version":"3.13.5","server_version":"1.7.4","status":"completed","path":"/home/zuul/src/opendev.org/openstack/openstack-ansible/playbooks/setup-openstack.yml","controller":"aio1.openstack.local","user":"root"},"content":"---\n# Copyright 2022, BBC R&D\n#\n# Licensed under the Apache License, Version 2.0 (the \"License\");\n# you may not use this file except in compliance with the License.\n# You may obtain a copy of the License at\n#\n#     http://www.apache.org/licenses/LICENSE-2.0\n#\n# Unless required by applicable law or agreed to in writing, software\n# distributed under the License is distributed on an \"AS IS\" BASIS,\n# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n# See the License for the specific language governing permissions and\n# limitations under the License.\n\n- name: Gather variables for each operating system\n  ansible.builtin.include_vars: \"{{ lookup('first_found', params) }}\"\n  vars:\n    params:\n      files:\n        - \"{{ ansible_facts['distribution'] | lower }}-{{ ansible_facts['distribution_version'] | lower }}.yml\"\n        - \"{{ ansible_facts['distribution'] | lower }}-{{ ansible_facts['distribution_major_version'] | lower }}.yml\"\n        - \"{{ ansible_facts['os_family'] | lower }}-{{ ansible_facts['distribution_major_version'] | lower }}.yml\"\n        - \"{{ ansible_facts['distribution'] | lower }}.yml\"\n        - \"{{ ansible_facts['os_family'] | lower }}.yml\"\n      paths:\n        - \"{{ role_path }}/vars\"\n  tags:\n    - always\n\n- name: Create system groups\n  ansible.builtin.group:\n    name: \"{{ item }}\"\n    state: \"present\"\n    system: \"yes\"\n  with_items: \"{{ [keystone_system_group_name] + keystone_system_additional_groups }}\"\n\n- name: Create the keystone system user\n  ansible.builtin.user:\n    name: \"{{ keystone_system_user_name }}\"\n    group: \"{{ keystone_system_group_name }}\"\n    groups: \"{{ keystone_system_additional_groups | join(',') }}\"\n    comment: \"{{ keystone_system_comment }}\"\n    shell: \"{{ keystone_system_shell }}\"\n    system: \"yes\"\n    createhome: \"yes\"\n    home: \"{{ keystone_system_user_home }}\"\n\n- name: Create keystone dir\n  ansible.builtin.file:\n    path: \"{{ item.path | default(omit) }}\"\n    src: \"{{ item.src | default(omit) }}\"\n    dest: \"{{ item.dest | default(omit) }}\"\n    state: \"{{ item.state | default('directory') }}\"\n    owner: \"{{ item.owner | default(keystone_system_user_name) }}\"\n    group: \"{{ item.group | default(keystone_system_group_name) }}\"\n    mode: \"{{ item.mode | default(omit) }}\"\n    force: \"{{ item.force | default(omit) }}\"\n  with_items:\n    - path: \"/openstack\"\n      mode: \"0755\"\n      owner: \"root\"\n      group: \"root\"\n    - dest: \"/etc/keystone\"\n      mode: \"0755\"\n    - path: \"{{ keystone_credential_key_repository }}\"\n      mode: \"0750\"\n    - path: \"{{ keystone_ldap_domain_config_dir }}\"\n      mode: \"0750\"\n    - path: \"/etc/keystone/ssl\"\n    - path: \"{{ keystone_fernet_tokens_key_repository }}\"\n      mode: \"2750\"\n    - path: \"{{ keystone_system_user_home }}\"\n    - path: \"/var/www/cgi-bin\"\n      owner: root\n      group: root\n    - path: \"/var/www/cgi-bin/keystone\"\n    - path: \"/etc/ansible/facts.d\"\n      owner: root\n      group: root\n\n- name: Install distro packages\n  ansible.builtin.package:\n    name: \"{{ keystone_distro_packages }}\"\n    state: \"{{ keystone_package_state }}\"\n    update_cache: \"{{ (ansible_facts['pkg_mgr'] == 'apt') | ternary('yes', omit) }}\"\n    cache_valid_time: \"{{ (ansible_facts['pkg_mgr'] == 'apt') | ternary(cache_timeout, omit) }}\"\n  register: install_packages\n  until: install_packages is success\n  retries: 5\n  delay: 2\n  notify:\n    - Restart ssh\n\n- name: Adjust sshd configuration in container\n  ansible.builtin.lineinfile:\n    dest: \"/etc/ssh/sshd_config\"\n    regexp: \"{{ item.regexp }}\"\n    line: \"{{ item.line }}\"\n    state: present\n  with_items: \"{{ keystone_ssh_extra_configuration }}\"\n  notify:\n    - Restart ssh\n\n- name: Importing keystone_key_setup tasks\n  ansible.builtin.import_tasks: keystone_key_setup.yml\n  tags:\n    - keystone-install\n","created":"2025-12-14T10:22:05.076827Z","updated":"2025-12-14T10:22:05.076843Z","path":"/home/zuul/src/opendev.org/openstack/openstack-ansible-os_keystone/tasks/main_pre.yml"}