A framework for continuous integration and continuous delivery with Ansible Tower.
It installs Tower and uses Tower to update itself with this repository.
Please note that this community project is not officially supported by Red Hat.
This repository allows you to deploy Ansible Tower and manage it's resources automatically through version controlled configuration.
After doing the initial bootstrap deployment, Ansible Tower will keep itself up to date automatically by re-running the setup and configuration playbooks against itself based on the latest code from this repository.
The following are currently supported and automated:
- Ansible Tower installation
- License activation (with tower-cli)
- Organizations
- Teams
- Users
- Roles
- Credentials
- Projects
- Inventories
- Inventory sources
- Job templates
- Schedules
As necessary, supply your own configuration for the inventory.yaml
file
as well as the tower-setup
role and tower-config
role.
Install dependencies on CentOS or RHEL by running dependencies.sh
and then
run:
ansible-playbook playbooks/tower-deploy.yaml
By default, the tower-setup
role will not attempt to activate a license and
Ansible Tower will prompt you for a license the first time you log in to the
instance.
If you'd like to activate the license automatically, set
tower_setup_license_configure
to True
and have a license file ready at the
specified path for the tower-setup
role (default: /root/tower-license.json
).
The role will pick up the license file from the node where Ansible is being run from with a file lookup. It will not be uploaded to or sourced from the nodes in the inventory.
- It is not possible to attach more than one credential to job templates: ansible/ansible#43234
- Activating a license automatically requires users to add
"eula_accepted": true
manually to their JSON license file.
no_log
is enabled by default for tasks that configure Tower resources in
the tower-config
role because they could otherwise print sensitive
information to the console.
If you're troubleshooting errors with that role, you can disable no_log
by setting the variable tower_config_no_log
to False
to help you see
what is being sent and received.
See contributors on GitHub.
Copyright (c) 2018 Red Hat, Inc. ansible-tower-cicd is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. ansible-tower-cicd is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with ansible-tower-cicd. If not, see <http://www.gnu.org/licenses/>.