Generate OCP admin credentials (#12)

Author: pabrahamsson

generate-ocp-admin-credentials/README.md

@@ -0,0 +1,3 @@
+# generate-ocp-admin-credentials
+
+An Ansible playbook for generating the `ocp-admin-credentials.json` file for OCP resources to be consumed by other operators & tools.

generate-ocp-admin-credentials/inventory/group_vars/all.yml

@@ -0,0 +1 @@
+---

generate-ocp-admin-credentials/inventory/host_vars/localhost.yml

@@ -0,0 +1 @@
+ansible_connection: local

generate-ocp-admin-credentials/inventory/hosts

@@ -0,0 +1,2 @@
+[local]
+localhost

generate-ocp-admin-credentials/site.yml

@@ -0,0 +1,27 @@
+---
+- name: Generate admin password for OCP
+  hosts: local
+  gather_facts: false
+  tasks:
+  - name: Set credentials file
+    set_fact:
+      ocp_credentials_file: "{{ directory }}/ocp-admin-credentials.json"
+  - name: Check if credentials file already exist
+    stat:
+      path: "{{ ocp_credentials_file }}"
+    register: r_ocp_credentials_file
+  - name: Read Engagement Data
+    include_vars:
+      file: "{{ directory }}/engagement.json"
+  - name: Only if credentials haven't already been created
+    block:
+    - name: Create OCP password
+      set_fact:
+        ocp_password: "{{ lookup('password', '/dev/null length=32') }}"
+    - name: Create OCP credentials file
+      copy:
+        dest: "{{ ocp_credentials_file }}"
+        content: "{{ {'ocp_admin_username':'admin','ocp_admin_password':ocp_password } | to_nice_json }}"
+    when:
+      - r_ocp_credentials_file.stat.exists == False
+      - ocp_version is defined

translate-engagement-data/files/ocp-init/templates/resourceclaim.j2

@@ -20,6 +20,8 @@ spec:
         governor: labs.ocp4.na
         vars:
           job_vars:
+            admin_user: {{ .Values.ocp.admin_username }}
+            admin_password: {{ .Values.ocp.admin_password }}
             aws_region: {{ .Values.ocp.cloud_region }}
             ocp4_installer_version: {{ .Values.ocp.version }}
             ocp_subdomain: {{ .Values.ocp.sub_domain }}

translate-engagement-data/files/ocp-init/values.j2

@@ -1,5 +1,7 @@
 email: {{ engagement_lead_email }}
 ocp:
+  admin_username: {{ ocp_admin_username }}
+  admin_password: {{ ocp_admin_password }}
   cloud_provider: {{ ocp_cloud_provider_name }}
   cloud_region: {{ ocp_cloud_provider_region }}
   cluster_size: {{ ocp_cluster_size }}

translate-engagement-data/site.yml

@@ -6,6 +6,10 @@
   - name: Read Engagement Data
     include_vars:
       file: "{{ directory }}/engagement.json"
+  - name: Read OCP credentials
+    include_vars:
+      file: "{{ directory }}/ocp-admin-credentials.json"
+    when: ocp_version is defined
   - name: Create OCP Chart directory if not exists
     file:
      path: "{{ directory }}/ocp-init"
@@ -25,4 +29,4 @@
       src: "{{ item }}"
       dest: "{{ directory }}/ocp-init/templates/{{ item | basename | regex_replace('\\.j2$', '.yaml') }}"
     with_fileglob:
-      - ocp-init/templates/*.j2
+      - ocp-init/templates/*.j2