xoxys.docker_engine/tasks/config.yml

---
- block:
    - name: Add docker group
      group:
        name: docker
        state: present
      notify: __docker_restart
      when: dockerengine_docker_group_enabled | bool

    - name: Deploy config files to setup environment
      template:
        src: "{{ item.src }}"
        dest: "{{ item.dest }}"
        owner: root
        group: root
        mode: 0644
      loop:
        - { src: 'etc/sysconfig/docker.j2', dest: '/etc/sysconfig/{{ dockerengine_service }}' }
        - { src: 'etc/sysconfig/docker-storage-setup.j2', dest: '/etc/sysconfig/{{ dockerengine_service }}-storage-setup' }
        - { src: 'etc/containers/registries.conf.j2', dest: '/etc/containers/registries.conf' }
      loop_control:
        label: "{{ item.dest }}"
      notify: __docker_restart

    - name: Add namespace group
      group:
        name: "{{ dockerengine_nsremap_user }}"
        state: present
      when: dockerengine_usernamespace_enabled | bool

    - name: Setup namespace user
      user:
        name: "{{ dockerengine_nsremap_user }}"
        group: "{{ dockerengine_nsremap_user }}"
        shell: /sbin/nologin
        state: "{{ 'present' if dockerengine_usernamespace_enabled | bool else 'absent' }}"

    - name: Remove namespace group
      group:
        name: "{{ dockerengine_nsremap_user }}"
        state: absent
      when: not dockerengine_usernamespace_enabled | bool

    - name: Configure namespace id range
      lineinfile:
        dest: "{{ item }}"
        regexp: "^{{ dockerengine_nsremap_user }}:"
        line: "{{ dockerengine_nsremap_user }}:{{ dockerengine_nsremap_range_start }}:{{ dockerengine_nsremap_range_length }}"
        state: "{{ 'present' if dockerengine_usernamespace_enabled | bool else 'absent' }}"
      loop:
        - /etc/subuid
        - /etc/subgid

    - name: Create docker networks
      docker_network:
        name: "{{ item.name }}"
        enable_ipv6: "{{ item.enable_ipv6 | default(False) }}"
        ipam_config: "{{ item.ipam_config | default(omit) }}"
        force: "{{ item.force | default(omit) }}"
        state: "{{ item.state | default('present') }}"
      loop: "{{ dockerengine_networks + dockerengine_networks_extra }}"
      loop_control:
        label: "{{ item.name }}"
      notify: __docker_restart

    - name: Ensure docker engine is up and running
      service:
        name: "{{ dockerengine_service }}"
        enabled: True
        state: started
  become: True
  become_user: root
initial commit 2018-12-12 23:25:36 +01:00			`---`
			`- block:`
			`- name: Add docker group`
			`group:`
			`name: docker`
			`state: present`
			`notify: __docker_restart`
fix ansible 2.8 bool vars 2019-06-10 13:56:17 +02:00			`when: dockerengine_docker_group_enabled \| bool`
initial commit 2018-12-12 23:25:36 +01:00
			`- name: Deploy config files to setup environment`
			`template:`
			`src: "{{ item.src }}"`
			`dest: "{{ item.dest }}"`
			`owner: root`
			`group: root`
			`mode: 0644`
remove old loop syntax 2019-08-27 22:02:33 +02:00			`loop:`
refactoring and cleanup 2019-11-24 17:21:18 +01:00			`- { src: 'etc/sysconfig/docker.j2', dest: '/etc/sysconfig/{{ dockerengine_service }}' }`
			`- { src: 'etc/sysconfig/docker-storage-setup.j2', dest: '/etc/sysconfig/{{ dockerengine_service }}-storage-setup' }`
initial commit 2018-12-12 23:25:36 +01:00			`- { src: 'etc/containers/registries.conf.j2', dest: '/etc/containers/registries.conf' }`
add label control 2019-01-06 17:28:02 +01:00			`loop_control:`
			`label: "{{ item.dest }}"`
initial commit 2018-12-12 23:25:36 +01:00			`notify: __docker_restart`

add userns-remap setup 2019-07-16 16:55:25 +02:00			`- name: Add namespace group`
			`group:`
fix typo 2019-07-16 17:21:48 +02:00			`name: "{{ dockerengine_nsremap_user }}"`
[SKIP CI] fix namespace group removal 2019-08-04 13:36:33 +02:00			`state: present`
			`when: dockerengine_usernamespace_enabled \| bool`
add userns-remap setup 2019-07-16 16:55:25 +02:00
fix task naming 2019-08-04 14:32:15 +02:00			`- name: Setup namespace user`
add userns-remap setup 2019-07-16 16:55:25 +02:00			`user:`
fix typo 2019-07-16 17:21:48 +02:00			`name: "{{ dockerengine_nsremap_user }}"`
			`group: "{{ dockerengine_nsremap_user }}"`
add userns-remap setup 2019-07-16 16:55:25 +02:00			`shell: /sbin/nologin`
			`state: "{{ 'present' if dockerengine_usernamespace_enabled \| bool else 'absent' }}"`

[SKIP CI] fix task naming 2019-08-04 13:42:05 +02:00			`- name: Remove namespace group`
[SKIP CI] fix namespace group removal 2019-08-04 13:36:33 +02:00			`group:`
			`name: "{{ dockerengine_nsremap_user }}"`
			`state: absent`
			`when: not dockerengine_usernamespace_enabled \| bool`

add userns-remap setup 2019-07-16 16:55:25 +02:00			`- name: Configure namespace id range`
			`lineinfile:`
			`dest: "{{ item }}"`
fix typo 2019-07-16 17:21:48 +02:00			`regexp: "^{{ dockerengine_nsremap_user }}:"`
			`line: "{{ dockerengine_nsremap_user }}:{{ dockerengine_nsremap_range_start }}:{{ dockerengine_nsremap_range_length }}"`
add userns-remap setup 2019-07-16 16:55:25 +02:00			`state: "{{ 'present' if dockerengine_usernamespace_enabled \| bool else 'absent' }}"`
			`loop:`
			`- /etc/subuid`
			`- /etc/subgid`

allow to configure docker networks 2020-06-15 08:18:44 +02:00			`- name: Create docker networks`
			`docker_network:`
			`name: "{{ item.name }}"`
			`enable_ipv6: "{{ item.enable_ipv6 \| default(False) }}"`
			`ipam_config: "{{ item.ipam_config \| default(omit) }}"`
			`force: "{{ item.force \| default(omit) }}"`
			`state: "{{ item.state \| default('present') }}"`
			`loop: "{{ dockerengine_networks + dockerengine_networks_extra }}"`
			`loop_control:`
			`label: "{{ item.name }}"`
			`notify: __docker_restart`

initial commit 2018-12-12 23:25:36 +01:00			`- name: Ensure docker engine is up and running`
			`service:`
refactoring and cleanup 2019-11-24 17:21:18 +01:00			`name: "{{ dockerengine_service }}"`
initial commit 2018-12-12 23:25:36 +01:00			`enabled: True`
			`state: started`
			`become: True`
			`become_user: root`