mirror of
https://github.com/geerlingguy/ansible-role-docker.git
synced 2024-11-23 19:06:54 +01:00
0884ae21b8
Why: Without this modification, we can't use docker with docker_users in same playbook than the one which install docker. How: Check that docker_users are set and not in docker group before include docker-users.yml. In docker-users.yml we call reset_connection from ansible.builtin.meta collection after docker-users are added to docker group. Manual success tests: * Try to install docker with only one user in docker-users and not in docker group => docker-users.yml include * Try to install docker with only one user in docker-users but the user is in docker group => docker-users.yml not include * Try to install docker with 2 users in docker-users, one user in docker group and the second not => docker-users.yml include * Try to install docker with 2 users in docker-users, both are in docker group => docker-users.yml not include * Try to install docker with 2 users in docker-users, both are not in docker group => docker-users.yml include
99 lines
3.0 KiB
YAML
99 lines
3.0 KiB
YAML
---
|
|
- name: Load OS-specific vars.
|
|
include_vars: "{{ lookup('first_found', params) }}"
|
|
vars:
|
|
params:
|
|
files:
|
|
- '{{ansible_distribution}}.yml'
|
|
- '{{ansible_os_family}}.yml'
|
|
- main.yml
|
|
paths:
|
|
- 'vars'
|
|
|
|
- include_tasks: setup-RedHat.yml
|
|
when: ansible_os_family == 'RedHat'
|
|
|
|
- include_tasks: setup-Debian.yml
|
|
when: ansible_os_family == 'Debian'
|
|
|
|
- name: Install Docker packages.
|
|
package:
|
|
name: "{{ docker_packages }}"
|
|
state: "{{ docker_packages_state }}"
|
|
notify: restart docker
|
|
ignore_errors: "{{ ansible_check_mode }}"
|
|
when: "ansible_version.full is version_compare('2.12', '<') or ansible_os_family not in ['RedHat', 'Debian']"
|
|
|
|
- name: Install Docker packages (with downgrade option).
|
|
package:
|
|
name: "{{ docker_packages }}"
|
|
state: "{{ docker_packages_state }}"
|
|
allow_downgrade: true
|
|
notify: restart docker
|
|
ignore_errors: "{{ ansible_check_mode }}"
|
|
when: "ansible_version.full is version_compare('2.12', '>=') and ansible_os_family in ['RedHat', 'Debian']"
|
|
|
|
- name: Install docker-compose plugin.
|
|
package:
|
|
name: "{{ docker_compose_package }}"
|
|
state: "{{ docker_compose_package_state }}"
|
|
notify: restart docker
|
|
ignore_errors: "{{ ansible_check_mode }}"
|
|
when: "docker_install_compose_plugin | bool == true and (ansible_version.full is version_compare('2.12', '<') or ansible_os_family not in ['RedHat', 'Debian'])"
|
|
|
|
- name: Install docker-compose-plugin (with downgrade option).
|
|
package:
|
|
name: "{{ docker_compose_package }}"
|
|
state: "{{ docker_compose_package_state }}"
|
|
allow_downgrade: true
|
|
notify: restart docker
|
|
ignore_errors: "{{ ansible_check_mode }}"
|
|
when: "docker_install_compose_plugin | bool == true and ansible_version.full is version_compare('2.12', '>=') and ansible_os_family in ['RedHat', 'Debian']"
|
|
|
|
- name: Ensure /etc/docker/ directory exists.
|
|
file:
|
|
path: /etc/docker
|
|
state: directory
|
|
mode: 0755
|
|
when: docker_daemon_options.keys() | length > 0
|
|
|
|
- name: Configure Docker daemon options.
|
|
copy:
|
|
content: "{{ docker_daemon_options | to_nice_json }}"
|
|
dest: /etc/docker/daemon.json
|
|
mode: 0644
|
|
when: docker_daemon_options.keys() | length > 0
|
|
notify: restart docker
|
|
|
|
- name: Ensure Docker is started and enabled at boot.
|
|
service:
|
|
name: docker
|
|
state: "{{ docker_service_state }}"
|
|
enabled: "{{ docker_service_enabled }}"
|
|
ignore_errors: "{{ ansible_check_mode }}"
|
|
when: docker_service_manage | bool
|
|
|
|
- name: Ensure handlers are notified now to avoid firewall conflicts.
|
|
meta: flush_handlers
|
|
|
|
- include_tasks: docker-compose.yml
|
|
when: docker_install_compose | bool
|
|
|
|
- name: Get all docker group infos
|
|
getent:
|
|
database: group
|
|
key: docker
|
|
split: ':'
|
|
when: docker_users | length > 0
|
|
|
|
- name: Check there is at least one user to add to docker group
|
|
set_fact:
|
|
at_least_one_user_to_modify: true
|
|
when:
|
|
- docker_users | length > 0
|
|
- item not in ansible_facts.getent_group["docker"][2]
|
|
with_items: "{{ docker_users }}"
|
|
|
|
- include_tasks: docker-users.yml
|
|
when: at_least_one_user_to_modify is defined
|