| |
@@ -1,95 +0,0 @@
|
| |
- # config file for ansible -- http://ansible.github.com
|
| |
- # nearly all parameters can be overridden in ansible-playbook or with command line flags
|
| |
- # ansible will read ~/.ansible.cfg or /etc/ansible/ansible.cfg, whichever it finds first
|
| |
-
|
| |
- [defaults]
|
| |
-
|
| |
- # location of inventory file, eliminates need to specify -i
|
| |
-
|
| |
- hostfile = /root/provision/inventory
|
| |
-
|
| |
- # location of ansible library, eliminates need to specify --module-path
|
| |
-
|
| |
- library = /root/provision/library:/usr/share/ansible
|
| |
-
|
| |
- # default module name used in /usr/bin/ansible when -m is not specified
|
| |
-
|
| |
- module_name = command
|
| |
-
|
| |
- # home directory where temp files are stored on remote systems. Should
|
| |
- # almost always contain $HOME or be a directory writeable by all users
|
| |
-
|
| |
- #remote_tmp = $HOME/.ansible/tmp
|
| |
- remote_tmp = /tmp
|
| |
-
|
| |
- # the default pattern for ansible-playbooks ("hosts:")
|
| |
-
|
| |
- pattern = *
|
| |
-
|
| |
- # the default number of forks (parallelism) to be used. Usually you
|
| |
- # can crank this up.
|
| |
-
|
| |
- forks=25
|
| |
-
|
| |
- # the timeout used by various connection types. Usually this corresponds
|
| |
- # to an SSH timeout
|
| |
-
|
| |
- timeout=10
|
| |
-
|
| |
- # when using --poll or "poll:" in an ansible playbook, and not specifying
|
| |
- # an explicit poll interval, use this interval
|
| |
-
|
| |
- poll_interval=15
|
| |
-
|
| |
- # when specifying --sudo to /usr/bin/ansible or "sudo:" in a playbook,
|
| |
- # and not specifying "--sudo-user" or "sudo_user" respectively, sudo
|
| |
- # to this user account
|
| |
-
|
| |
- sudo_user=root
|
| |
-
|
| |
- # connection to use when -c <connection_type> is not specified
|
| |
-
|
| |
- #transport=paramiko
|
| |
- transport=ssh
|
| |
- #transport=smart
|
| |
-
|
| |
- # this is needed for paramiko, ssh already have this said in .ssh/config
|
| |
- host_key_checking = False
|
| |
-
|
| |
- # remote SSH port to be used when --port or "port:" or an equivalent inventory
|
| |
- # variable is not specified.
|
| |
-
|
| |
- remote_port=22
|
| |
-
|
| |
- # if set, always run /usr/bin/ansible commands as this user, and assume this value
|
| |
- # if "user:" is not set in a playbook. If not set, use the current Unix user
|
| |
- # as the default
|
| |
-
|
| |
- remote_user=root
|
| |
-
|
| |
- # if set, always use this private key file for authentication, same as if passing
|
| |
- # --private-key-file to ansible or ansible-playbook
|
| |
-
|
| |
- #private_key_file=/path/to/file
|
| |
-
|
| |
-
|
| |
- # additional plugin paths for non-core plugins
|
| |
-
|
| |
- action_plugins=/usr/lib/python2.7/site-packages/ansible/runner/action_plugins:/root/provision/action_plugins/
|
| |
-
|
| |
- private_key_file=/root/.ssh/id_rsa
|
| |
-
|
| |
- gather_subset = !hardware
|
| |
-
|
| |
- [paramiko_connection]
|
| |
- record_host_keys=False
|
| |
-
|
| |
- # nothing to configure yet
|
| |
-
|
| |
- [ssh_connection]
|
| |
-
|
| |
- # if uncommented, sets the ansible ssh arguments to the following. Leaving off ControlPersist
|
| |
- # will result in poor performance, so use transport=paramiko on older platforms rather than
|
| |
- # removing it
|
| |
-
|
| |
- ssh_args=-o PasswordAuthentication=no -o ControlMaster=auto -o ControlPersist=60s
|
| |
There is no reason for running copr-backend services as root:root in the docker-compose environment (except that it was easier to implement). However, at this point, we need to change this because we forbid running
/usr/bin/copr-backend-process-action
as root.