balanced-ops / ansible-base Goto Github PK
View Code? Open in Web Editor NEWaybabtu
aybabtu
We use ansible-base on EB (which is using Amazon Linux AMI / CentOS 6.4) and we use ansible-base to install the basic necessities like keys to SSH into a machine, etc.
We need to remove the ubuntu-isms and move that to another role instead.
For swap, use https://github.com/jyunderwood/ansible-swapfile
For utils, use https://github.com/Oefenweb/ansible-apt
No need to for aws/dns just to use this module.
s3://username:[password]@...
will fix this
This is going around cloudformation, which reduces the value and entire point of using cloudformation. When I delete a stack, this route should be cleaned up.
https://github.com/balanced-ops/ansible-base/blob/master/tasks/dns.yml#L22-L29
ERROR: cannot find role in /Users/marshall/code/balanced/ops/ansible-base/roles/apt-transport-s3 or /Users/marshall/code/balanced/ops/ansible-base/apt-transport-s3 or /Users/marshall/code/balanced/ops/apt-transport-s3
failed: [default] => {"cmd": "apt-key adv --keyserver hkp://pgp.mit.edu --recv 277E7787", "failed": true, "rc": 2}
stderr: gpg: requesting key 277E7787 from hkp server pgp.mit.edu
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0
stdout: Executing: gpg --ignore-time-conflict --no-options --no-default-keyring --secret-keyring /tmp/tmp.eOxPq6sMcM --trustdb-name /etc/apt/trustdb.gpg --keyring /etc/apt/trusted.gpg --primary-keyring /etc/apt/trusted.gpg --keyserver hkp�
://pgp.mit.edu --recv 277E7787
gpgkeys: key 277E7787 not found on keyserver
msg: gpg: requesting key 277E7787 from hkp server pgp.mit.edu
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0
FATAL: all hosts have already failed -- aborting
I continue to see this error both on my local vagrant box and prod nodes occasionally.
The key is there, the mit keyserver occasionally refuses to return it.
TASK: [base | route53 command=create zone={{ root_dns_zone }} record={{ ansible_hostname }}.{{ domain }} type=A ttl=60 value={{ ansible_eth0.ipv4.address }}
] ***
failed: [10.3.105.119] => {"failed": true}
msg: Record already exists with different value. Set 'overwrite' to replace it
FATAL: all hosts have already failed -- aborting
- route53: >
command=create
zone={{ root_dns_zone }}
record={{ ansible_hostname }}.{{ domain }}
type=A
ttl=60
value={{ ansible_eth0.ipv4.address }}
overwrite=true
tags: aws
when: ansible_ec2_instance_id is defined
works as expected. (note overwrite attr)
This is indicative of an outdated version of boto being used. ping @mahmoudimus
failed: [10.3.104.221] => {"failed": true, "parsed": false}
SUDO-SUCCESS-enehuqqvtvhotdxwhfskphdlwbmwnohj
Traceback (most recent call last):
File "/home/ubuntu/.ansible/tmp/ansible-tmp-1414542649.4-157077341704335/route53", line 1997, in <module>
main()
File "/home/ubuntu/.ansible/tmp/ansible-tmp-1414542649.4-157077341704335/route53", line 210, in main
conn = boto.route53.connection.Route53Connection(aws_access_key, aws_secret_key)
File "/usr/lib/python2.7/dist-packages/boto/route53/connection.py", line 62, in __init__
True, port, proxy, proxy_port, debug=debug)
File "/usr/lib/python2.7/dist-packages/boto/connection.py", line 486, in __init__
host, config, self.provider, self._required_auth_capability())
File "/usr/lib/python2.7/dist-packages/boto/auth.py", line 406, in get_auth_handler
'Check your credentials' % (len(names), str(names)))
boto.exception.NoAuthHandlerFound: No handler was ready to authenticate. 1 handlers were checked. ['HmacAuthV3Handler'] Check your credentials
failed: [10.3.105.84] => {"failed": true, "parsed": false}
SUDO-SUCCESS-dnhdmrivrcxqgtgmzkqsakgsmyvpzstq
Traceback (most recent call last):
File "/home/ubuntu/.ansible/tmp/ansible-tmp-1414542649.4-252716704119717/route53", line 1997, in <module>
main()
File "/home/ubuntu/.ansible/tmp/ansible-tmp-1414542649.4-252716704119717/route53", line 210, in main
conn = boto.route53.connection.Route53Connection(aws_access_key, aws_secret_key)
File "/usr/lib/python2.7/dist-packages/boto/route53/connection.py", line 62, in __init__
True, port, proxy, proxy_port, debug=debug)
File "/usr/lib/python2.7/dist-packages/boto/connection.py", line 486, in __init__
host, config, self.provider, self._required_auth_capability())
File "/usr/lib/python2.7/dist-packages/boto/auth.py", line 406, in get_auth_handler
'Check your credentials' % (len(names), str(names)))
boto.exception.NoAuthHandlerFound: No handler was ready to authenticate. 1 handlers were checked. ['HmacAuthV3Handler'] Check your credentials
Not sure why but creating the route53 record hangs about 20% of the time.
If we could check for its existence and skip the task that would be good. this could also let us remove the overwrite attribute and tighten up the IAM perms
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.