Commit graph

9991 commits

Author SHA1 Message Date
Maykel Moya
a429ff26dc ec2_group: Add documentation for rules_egress 2014-03-20 17:24:22 +01:00
Maykel Moya
b642e39e67 ec2_group: rules are not a required task argument 2014-03-20 17:24:22 +01:00
Maykel Moya
3156df9931 ec2_group: Request a fresh group object after creation
When a group is created, an egress_rule ALLOW ALL to 0.0.0.0/0 is added
automatically but it's not reflected in the object returned by the AWS API
call. After creation we re-read the group for getting an updated object.
2014-03-20 17:24:22 +01:00
Maykel Moya
649fcd3e1c ec2_group: Auto create missing groups referenced in rules
Suppose a pair of groups, A and B, depending on each other. One solution
for breaking the circular dependency at playbook level:

    - declare group A without dependencies
    - declare group B depending on A
    - declare group A depending on B

This patch breaks the dependency at module level. Whenever a depended-on
group is missing it's first created. This approach requires only two tasks:

    - declare group A depending on B (group B will be auto created)
    - declare group B depending on A

When creating a group EC2 requires you to pass the group description. In
order to fullfil this, rules now accept the `group_desc` param. Note
that group description can't be changed once the group is created so
it's nice to keep descriptions in sync.

Concrete example:

- ec2_group:
    name: mysql-client
    description: MySQL Client
    rules_egress:
      - proto: tcp
        from_port: 3306
        to_port: 3306
        group_name: mysql-server
        group_desc: MySQL Server

- ec2_group:
    name: mysql-server
    description: MySQL Server
    rules:
      - proto: tcp
        from_port: 3306
        to_port: 3306
        group_name: mysql-client
2014-03-20 17:24:17 +01:00
James Tanner
d327e3d11a Fixes #5622 included tasks in roles now inherit tags from the role 2014-03-20 11:56:13 -04:00
Maykel Moya
77d7165dde ec2_group: Deduplicate rule parsing/validation code 2014-03-20 16:19:35 +01:00
Maykel Moya
f97243d6ed ec2_group: Add support for handling egress rules 2014-03-20 15:50:08 +01:00
Michael DeHaan
9db652a21b Merge pull request #6600 from jjshoe/patch-1
assign_public_ip was actually added in 1.5
2014-03-20 10:43:51 -04:00
jjshoe
1f980b6880 assign_public_ip was actually added in 1.5
Checked 1.4.5 and this option doesn't exist. Will check/update/pull docs next.
2014-03-20 09:21:10 -05:00
Steve Smith
e157355fd6 Only unlink the symlink tempfile on error if it was created in the
previous operation.
2014-03-20 13:14:24 +01:00
Michael DeHaan
2156e87e62 Update cpanm 2014-03-20 08:10:02 -04:00
Brian Coca
1b38bd8a40 fixed issue with tmp file (path can include filename) and added missing
else which made it try to link x2
2014-03-20 07:55:53 -04:00
Brian Coca
6e6ad97239 now correctly checks absolute path for src= existance for links
also updated docs to be a bit clearer on symlink behaviour
2014-03-20 07:49:25 -04:00
Till Maas
898a38b074 module_utils/atomic_move(): Use tempfile module
Fix a potential race condition by using the tempfile module.
2014-03-20 12:34:19 +01:00
Till Maas
8f778a83df module_utils/atomic_move(): Restore owner/group
Manually restore owner and group if both src and dest are on a separate
file system.
2014-03-20 12:34:19 +01:00
Till Maas
c21fa8ebee service module: Properly disable Debian services
Services on Debian need to be disabled with 'disable' instead of 'remove'
to avoid them being enabled again when 'update-rc.d $service defaults' is run,
e.g. as part of a postinst script.
2014-03-20 09:19:42 +01:00
Michael DeHaan
991399edf0 Update comments about redis config. 2014-03-19 18:15:52 -04:00
Michael DeHaan
b0639b16cf Merge branch 'devel' of git://github.com/mleventi/ansible into devel 2014-03-19 18:15:06 -04:00
Michael DeHaan
f2d9e064ec Merge branch 'hash-behavior-plugins' of git://github.com/echohead/ansible into devel
Conflicts:
	lib/ansible/inventory/__init__.py
2014-03-19 18:07:17 -04:00
Michael DeHaan
ba79cf34df Update the FAQ advice on recursive copy now that there are two good ways to do this. 2014-03-19 18:05:33 -04:00
Michael DeHaan
e639b5382b Change default gathering policy, add to docs. 2014-03-19 18:03:03 -04:00
Brian Coca
18adf07fc6 changed setting values and updated docs 2014-03-19 18:03:03 -04:00
Brian Coca
4dfa40f18e added gathering control to ansible, defaults to 'smart' 2014-03-19 18:03:03 -04:00
Michael DeHaan
a8514dacc3 Add capabilities module. 2014-03-19 17:48:17 -04:00
nate@bx.psu.edu
97db1676e0 Bugfix for xattrless files and the capabilities module. 2014-03-19 17:48:17 -04:00
nate@bx.psu.edu
f26ebff438 Create a capabilities module for managing Linux kernel capabilities(7) with setcap(8). 2014-03-19 17:48:17 -04:00
Michael DeHaan
c42dbf80a2 Merge pull request #6586 from sivel/probline-logic-fix
Fix logic in process_common_errors for unbalanced quotes
2014-03-19 17:45:49 -04:00
Michael DeHaan
266123e521 Merge pull request #6549 from mattjbray/docker-tty-stdin_open-params
docker: add tty and stdin_open options
2014-03-19 17:28:12 -04:00
Michael DeHaan
a5bdf621cf add notes about new AWS modules. 2014-03-19 17:26:59 -04:00
Michael DeHaan
5a5a9574e6 Merge pull request #6540 from Zeekin/devel
Add cloud modules ec2_scaling_policy and ec2_metricalarm
2014-03-19 17:25:44 -04:00
Michael DeHaan
b1fe7ee24a Add notes about new notification module. 2014-03-19 17:23:30 -04:00
Michael DeHaan
3d7bf1e52a Merge branch 'devel' of git://github.com/tksmd/ansible into devel 2014-03-19 17:23:01 -04:00
Michael DeHaan
54635cb59f Add note about IRC library default change. 2014-03-19 17:21:41 -04:00
Michael DeHaan
8fb5e2c657 Merge pull request #5443 from nirvinehh/devel
irc module: Make default irc color none; add color none
2014-03-19 17:20:07 -04:00
James Cammarata
bf251e3dbf Correct overly broad import from chube in linode inventory script
Fixes #4875
2014-03-19 15:54:29 -05:00
James Tanner
b8f627d1d5 Prevent rewriting the encrypted file if decryption fails 2014-03-19 16:31:03 -04:00
James Tanner
e71857fbdf Addresses #6579 Only strip vault passwords if given 2014-03-19 16:08:35 -04:00
James Tanner
8c2e1e2baa Addresses #6579 Disallow vault passwords with newline characters by stripping them in utils 2014-03-19 15:56:14 -04:00
James Tanner
5f428041db Fixes #6582 Re-add regex to ignore untracked files that were never tracked 2014-03-19 15:42:40 -04:00
James Cammarata
a9000e7f3a Making the error messages for bad key/dir permissions more understandable
Fixes #6254
2014-03-19 14:09:03 -05:00
James Cammarata
efcf93f280 Merge pull request #6571 from bcoca/file_fixes_copydir
fixed issue with directory permissions on copy
2014-03-19 13:54:12 -05:00
Matt Martz
2aaecc5afa Fix logic in process_common_errors for unbalanced quotes 2014-03-19 13:49:31 -05:00
James Cammarata
4880cfb5ea Merge pull request #6568 from sivel/ssl-cert-validation-osx
Make SSL verification on Mac OS X work out of the box
2014-03-19 13:45:45 -05:00
James Tanner
409044155d Fixes #6579 allow for vault passwords ending with newline chars
Also add a unit test for vaulteditor to verify 1.0 passwords with newline chars.
2014-03-19 14:38:11 -04:00
Michael DeHaan
2998466811 Merge pull request #6575 from mahemoff/devel
Hipchat callback: Make "notify" flag optional (default off)
2014-03-19 14:30:13 -04:00
Mahemoff
1640788f30 Remove debugging line (hipchat notification) 2014-03-19 18:15:20 +00:00
Mahemoff
989913bc21 Change hipchat notification default to true 2014-03-19 18:08:30 +00:00
James Tanner
67517e96d3 Fixes #6567 put the git wrapper script in the module temp dir 2014-03-19 10:30:10 -04:00
Matt Martz
1d3d73a0b6 Only write the DUMMY_CA_CERT on OS X 2014-03-19 09:01:13 -05:00
Mahemoff
b4053b67d1 Make hipchat "notify" flag optional (default off) 2014-03-19 09:55:49 +00:00