-
Dimitris Aragiorgis authored
The ca role will be a separate node able to create and sign certificates. All components that need a certificate will get it from this node. Since we are going to have one common certificate for the synnefo.live CN including all DNS alternatives (astakos, cyclades, vnc, etc.) this certificate will be created in advance and everyone will get it during setup. The cacert.pem will be added to the firefox db via certutil -A. snf-vncauthproxy will use the corresponding cert.pem and key.pem. Signed-off-by:Dimitris Aragiorgis <dimara@grnet.gr>
e4d531a9
fabfile.py 3.77 KiB
# Too many lines in module pylint: disable-msg=C0302
# Too many arguments (7/5) pylint: disable-msg=R0913
# Copyright (C) 2010-2014 GRNET S.A.
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
"""
Fabric file for snf-deploy
"""
from __future__ import with_statement
from fabric.api import env, execute, parallel
from snfdeploy import context
from snfdeploy import constants
from snfdeploy import roles
import copy
import logging
FORMAT = "%(name)s %(funcName)s:%(lineno)d %(message)s"
# Needed to avoid:
# No handlers could be found for logger "paramiko.transport"
logging.basicConfig(format=FORMAT, level=logging.INFO)
def with_ctx(fn):
def wrapper(*args):
ctx = context.Context()
return fn(*args, ctx=ctx)
return wrapper
def with_cluster(fn):
def wrapper(old_ctx, *args):
ctx = copy.deepcopy(old_ctx)
ctx.update(cluster=env.host)
return fn(ctx, *args)
return wrapper
def with_node(fn):
def wrapper(old_ctx, *args):
ctx = copy.deepcopy(old_ctx)
ctx.update(node=env.host)
return fn(ctx, *args)
return wrapper
# Helper methods that are invoked via fabric's execute
@with_node
def _setup_vmc(ctx):
VMC = roles.get(constants.VMC, ctx)
VMC.setup()
@with_node
def _setup_master(ctx):
MASTER = roles.get(constants.MASTER, ctx)
MASTER.setup()
@with_node
def _setup_role(ctx, role):
ROLE = roles.get(role, ctx)
ROLE.setup()
@with_cluster
def _setup_cluster(ctx):
execute(_setup_master, ctx, hosts=ctx.masters)
execute(_setup_vmc, ctx, hosts=ctx.vmcs)
# Helper method that get a context snapshot and
# invoke fabric's execute with proper host argument
@with_ctx
def setup_role(role, ctx=None):
execute(_setup_role, ctx, role, hosts=ctx.get(role))
@with_ctx
def setup_cluster(ctx=None):
execute(_setup_cluster, ctx, hosts=ctx.clusters)
def setup_synnefo():
setup_role(constants.NS)
setup_role(constants.CA)
setup_role(constants.NFS)
setup_role(constants.DB)
setup_role(constants.MQ)
setup_role(constants.ASTAKOS)
setup_role(constants.PITHOS)
setup_role(constants.CYCLADES)
setup_role(constants.ADMIN)
setup_role(constants.CMS)
setup_cluster()
setup_role(constants.STATS)
setup_role(constants.CLIENT)
def setup_ganeti():
setup_role(constants.NS)
setup_role(constants.NFS)
setup_cluster()
@with_cluster
def _setup_qa(ctx):
setup_role(constants.NS)
setup_role(constants.NFS)
setup_cluster()
setup_role(constants.DEV)
@with_ctx
def setup_qa(ctx=None):
execute(_setup_qa, ctx, hosts=ctx.clusters)
@with_ctx
def setup(ctx=None):
if context.node:
if context.component:
C = roles.get(context.component, ctx)
elif context.role:
C = roles.get(context.role, ctx)
if context.method:
fn = getattr(C, context.method)
fn()
else:
C.setup()
elif context.cluster:
_setup_cluster(ctx)
@with_ctx
def run(ctx=None):
if context.target_nodes:
nodes = context.target_nodes.split(",")
else:
nodes = ctx.all_nodes
for node in nodes:
ctx.update(node=node)
c = roles.get("HW", ctx)
c.run(context.cmd)