98 lines
2.4 KiB
YAML
98 lines
2.4 KiB
YAML
---
|
|
- name: Create /etc/docker
|
|
become: true
|
|
file:
|
|
path: /etc/docker
|
|
state: directory
|
|
mode: '0755'
|
|
|
|
- name: Set docker daemon settings
|
|
become: true
|
|
# Otherwise we risk conflicts on the host subnet
|
|
copy:
|
|
content: |
|
|
{
|
|
"default-address-pools": [
|
|
{
|
|
"base": "172.17.0.0/12",
|
|
"size": 20
|
|
},
|
|
{
|
|
"base": "172.168.0.0/16",
|
|
"size": 24
|
|
}
|
|
],
|
|
"dns": ["10.0.123.123"]
|
|
}
|
|
dest: /etc/docker/daemon.json
|
|
|
|
- name: Install dependencies
|
|
become: true
|
|
apt:
|
|
name:
|
|
- python3
|
|
- python3-pip
|
|
- python3-docker
|
|
- docker.io
|
|
- docker-buildx
|
|
- docker-compose-v2
|
|
- python3-jsondiff
|
|
- apache2-utils
|
|
update_cache: yes
|
|
|
|
- name: Enable docker
|
|
become: true
|
|
service:
|
|
name: docker
|
|
state: started
|
|
enabled: true
|
|
|
|
- name: (swarm_manager) Create ingress network
|
|
# The ingress network conflicts with my subnet and ends up causing problems,
|
|
# so we have to set a different subnet first
|
|
when: inventory_hostname == groups.swarm_managers[0]
|
|
become: true
|
|
docker_network:
|
|
name: ingress
|
|
driver: overlay
|
|
ingress: true
|
|
scope: swarm
|
|
ipam_config:
|
|
- subnet: 172.254.0.0/16
|
|
gateway: 172.254.0.1
|
|
driver_options:
|
|
# I'm honestly not completely sure what this, but in the default
|
|
# ingress network that's created during swarm initialization, this exists
|
|
# and things don't seem to work without it.
|
|
com.docker.network.driver.overlay.vxlanid_list: 4096
|
|
|
|
- name: (swarm_manager) Init swarm
|
|
when: inventory_hostname == groups.swarm_managers[0]
|
|
become: true
|
|
docker_swarm:
|
|
state: present
|
|
advertise_addr: "{{ansible_default_ipv4.address}}"
|
|
register: manager_swarm_facts
|
|
failed_when: manager_swarm_facts.failed
|
|
|
|
- when: inventory_hostname == groups.swarm_managers[0]
|
|
set_fact:
|
|
worker_join_token: "{{manager_swarm_facts.swarm_facts.JoinTokens.Worker}}"
|
|
|
|
- name: (swarm_workers) Join swarm
|
|
when: inventory_hostname in groups.swarm_workers
|
|
become: true
|
|
docker_swarm:
|
|
state: join
|
|
join_token: "{{hostvars[groups.swarm_managers[0]].worker_join_token}}"
|
|
advertise_addr: "{{ansible_default_ipv4.address}}"
|
|
remote_addrs: ["{{hostvars[groups.swarm_managers[0]].ansible_default_ipv4.address}}"]
|
|
|
|
- name: Add user to docker group
|
|
become: true
|
|
user:
|
|
name: "{{ ansible_user }}"
|
|
groups:
|
|
- docker
|
|
|