mirror of
https://github.com/prometheus-community/ansible
synced 2024-11-22 20:03:04 +00:00
bb45a5d23c
Signed-off-by: Christian Krause <christian.krause@idiv.de>
121 lines
4.1 KiB
YAML
121 lines
4.1 KiB
YAML
---
|
|
- name: Assert usage of systemd as an init system
|
|
ansible.builtin.assert:
|
|
that: ansible_service_mgr == 'systemd'
|
|
msg: "This role only works with systemd"
|
|
|
|
- name: Install package fact dependencies
|
|
become: true
|
|
ansible.builtin.package:
|
|
name: "{{ _pkg_fact_req }}"
|
|
state: present
|
|
when: (_pkg_fact_req)
|
|
vars:
|
|
_pkg_fact_req: "{% if (ansible_pkg_mgr == 'apt') %}\
|
|
{{ ('python-apt' if ansible_python_version is version('3', '<') else 'python3-apt') }}
|
|
{% else %}\
|
|
{% endif %}"
|
|
|
|
- name: Gather package facts
|
|
ansible.builtin.package_facts:
|
|
when: "not 'packages' in ansible_facts"
|
|
|
|
- name: Assert that used version supports listen address type
|
|
ansible.builtin.assert:
|
|
that:
|
|
- >-
|
|
chrony_exporter_web_listen_address is string
|
|
or
|
|
(
|
|
chrony_exporter_version is version('0.5.0', '>=') and
|
|
chrony_exporter_web_listen_address | type_debug == "list"
|
|
)
|
|
|
|
- name: Naive assertion of proper listen address
|
|
ansible.builtin.assert:
|
|
that:
|
|
- >-
|
|
[chrony_exporter_web_listen_address] |
|
|
flatten |
|
|
reject('match', '.+:\\d+$') |
|
|
list |
|
|
length == 0
|
|
|
|
- name: Assert collectors are not both disabled and enabled at the same time
|
|
ansible.builtin.assert:
|
|
that:
|
|
- "item not in chrony_exporter_enabled_collectors"
|
|
with_items: "{{ chrony_exporter_disabled_collectors }}"
|
|
|
|
- name: Assert that TLS config is correct
|
|
when: chrony_exporter_tls_server_config | length > 0
|
|
block:
|
|
- name: Assert that TLS key and cert path are set
|
|
ansible.builtin.assert:
|
|
that:
|
|
- "chrony_exporter_tls_server_config.cert_file is defined"
|
|
- "chrony_exporter_tls_server_config.key_file is defined"
|
|
|
|
- name: Check existence of TLS cert file
|
|
ansible.builtin.stat:
|
|
path: "{{ chrony_exporter_tls_server_config.cert_file }}"
|
|
register: __chrony_exporter_cert_file
|
|
|
|
- name: Check existence of TLS key file
|
|
ansible.builtin.stat:
|
|
path: "{{ chrony_exporter_tls_server_config.key_file }}"
|
|
register: __chrony_exporter_key_file
|
|
|
|
- name: Assert that TLS key and cert are present
|
|
ansible.builtin.assert:
|
|
that:
|
|
- "{{ __chrony_exporter_cert_file.stat.exists }}"
|
|
- "{{ __chrony_exporter_key_file.stat.exists }}"
|
|
|
|
- name: Check if chrony_exporter is installed
|
|
ansible.builtin.stat:
|
|
path: "{{ chrony_exporter_binary_install_dir }}/chrony_exporter"
|
|
register: __chrony_exporter_is_installed
|
|
check_mode: false
|
|
tags:
|
|
- chrony_exporter_install
|
|
|
|
- name: Gather currently installed chrony_exporter version (if any)
|
|
ansible.builtin.command: "{{ chrony_exporter_binary_install_dir }}/chrony_exporter --version"
|
|
changed_when: false
|
|
register: __chrony_exporter_current_version_output
|
|
check_mode: false
|
|
when: __chrony_exporter_is_installed.stat.exists
|
|
tags:
|
|
- chrony_exporter_install
|
|
|
|
- name: Discover latest version
|
|
ansible.builtin.set_fact:
|
|
chrony_exporter_version: "{{ (lookup('url', 'https://api.github.com/repos/superq/chrony_exporter/releases/latest', headers=_github_api_headers,
|
|
split_lines=False) | from_json).get('tag_name') | replace('v', '') }}"
|
|
run_once: true
|
|
until: chrony_exporter_version is version('0.0.0', '>=')
|
|
retries: 10
|
|
when:
|
|
- chrony_exporter_version == "latest"
|
|
- chrony_exporter_binary_local_dir | length == 0
|
|
- not chrony_exporter_skip_install
|
|
|
|
- name: Get chrony_exporter binary checksum
|
|
when:
|
|
- chrony_exporter_binary_local_dir | length == 0
|
|
- not chrony_exporter_skip_install
|
|
block:
|
|
- name: Get checksum list from github
|
|
ansible.builtin.set_fact:
|
|
__chrony_exporter_checksums: "{{ lookup('url', chrony_exporter_checksums_url, headers=_github_api_headers, wantlist=True) | list }}"
|
|
run_once: true
|
|
until: __chrony_exporter_checksums is search('linux-' + go_arch + '.tar.gz')
|
|
retries: 10
|
|
|
|
- name: "Get checksum for {{ go_arch }}"
|
|
ansible.builtin.set_fact:
|
|
__chrony_exporter_checksum: "{{ item.split(' ')[0] }}"
|
|
with_items: "{{ __chrony_exporter_checksums }}"
|
|
when:
|
|
- "('linux-' + go_arch + '.tar.gz') in item"
|