updated how roles are handled in pillar files

2022-09-08 11:19:02 -05:00 · 2022-09-08 11:19:02 -05:00 · e4da990cce
commit e4da990cce
parent 57f6066c45
20 changed files with 116 additions and 189 deletions
--- a/pillars/roles.jinja
+++ b/pillars/roles.jinja
@ -0,0 +1 @@
+{%- set roles=salt.cmd.shell("grep -Po '(?<=- ).*' /srv/salt/"+saltenv+"/pillars/servers/roles/server/"+grains['host']+".sls | tr '\n' ' '") -%}
--- a/pillars/roles/aurpkgs/init.sls
+++ b/pillars/roles/aurpkgs/init.sls
@ -1,21 +1,20 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.aurpkgs.none
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- if 'aurrepo' in grains['roles'] -%}
-      {%- for state in states %}
-        {%- if state.startswith("pillars.roles.aurpkgs.") -%}
-          {%- set role = state.split('.')[3] %}
+{%- if roles is not none -%}
+  {%- if 'aurrepo' in roles -%}
+    {%- for state in states %}
+      {%- if state.startswith("pillars.roles.aurpkgs.") -%}
+        {%- set role = state.split('.')[3] %}
  - roles.aurpkgs.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- else -%}
-      {%- for role in grains['roles'] %}
-        {%- if 'pillars.roles.aurpkgs.'+role in states %}
+      {%- endif -%}
+    {%- endfor -%}
+  {%- else -%}
+    {%- for role in roles %}
+      {%- if 'pillars.roles.aurpkgs.'+role in states %}
  - roles.aurpkgs.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- endif -%}
+      {%- endif -%}
+    {%- endfor -%}
  {%- endif -%}
 {%- endif -%}
--- a/pillars/roles/backup/init.sls
+++ b/pillars/roles/backup/init.sls
@ -1,21 +1,20 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.backup.none
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- if 'backup' in grains['roles'] -%}
-      {%- for state in states %}
-        {%- if state.startswith("pillars.roles.backup.") -%}
-          {%- set role = state.split('.')[3] %}
+{%- if roles is not none -%}
+  {%- if 'backup' in roles -%}
+    {%- for state in states %}
+      {%- if state.startswith("pillars.roles.backup.") -%}
+        {%- set role = state.split('.')[3] %}
  - roles.backup.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- else -%}
-      {%- for role in grains['roles'] %}
-        {%- if 'pillars.roles.backup.'+role in states %}
+      {%- endif -%}
+    {%- endfor -%}
+  {%- else -%}
+    {%- for role in roles %}
+      {%- if 'pillars.roles.backup.'+role in states %}
  - roles.backup.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- endif -%}
+      {%- endif -%}
+    {%- endfor -%}
  {%- endif -%}
 {%- endif -%}
--- a/pillars/roles/ca/init.sls
+++ b/pillars/roles/ca/init.sls
@ -1,21 +1,20 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.ca.none
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- if 'ca' in grains['roles'] -%}
-      {%- for state in states %}
-        {%- if state.startswith("pillars.roles.ca.") -%}
-          {%- set role = state.split('.')[3] %}
+{%- if roles is not none -%}
+  {%- if 'ca' in roles -%}
+    {%- for state in states %}
+      {%- if state.startswith("pillars.roles.ca.") -%}
+        {%- set role = state.split('.')[3] %}
  - roles.ca.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- else -%}
-      {%- for role in grains['roles'] %}
-        {%- if 'pillars.roles.ca.'+role in states %}
+      {%- endif -%}
+    {%- endfor -%}
+  {%- else -%}
+    {%- for role in roles %}
+      {%- if 'pillars.roles.ca.'+role in states %}
  - roles.ca.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- endif -%}
+      {%- endif -%}
+    {%- endfor -%}
  {%- endif -%}
 {%- endif -%}
--- a/pillars/roles/database/init.sls
+++ b/pillars/roles/database/init.sls
@ -1,15 +1,14 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.database.none
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- if 'mysql' in grains['roles'] -%}
-      {%- for state in states %}
-        {%- if state.startswith("pillars.roles.database.") -%}
-          {%- set role = state.split('.')[3] %}
+{%- if roles is not none -%}
+  {%- if 'mysql' in roles -%}
+    {%- for state in states %}
+      {%- if state.startswith("pillars.roles.database.") -%}
+        {%- set role = state.split('.')[3] %}
  - roles.database.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- endif -%}
+      {%- endif -%}
+    {%- endfor -%}
  {%- endif -%}
 {%- endif -%}
--- a/pillars/roles/firewalld/init.sls
+++ b/pillars/roles/firewalld/init.sls
@ -1,13 +1,12 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.firewalld.core

-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- for role in grains['roles'] %}
-      {%- if 'pillars.roles.firewalld.'+role in states %}
+{%- if roles is not none -%}
+  {%- for role in roles %}
+    {%- if 'pillars.roles.firewalld.'+role in states %}
  - roles.firewalld.{{ role }}
-      {%- endif -%}
-    {%- endfor -%}
-  {%- endif -%}
+    {%- endif -%}
+  {%- endfor -%}
 {%- endif -%}
--- a/pillars/roles/git/init.sls
+++ b/pillars/roles/git/init.sls
@ -1,13 +1,12 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.git.none

-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- for role in grains['roles'] %}
-      {%- if 'pillars.roles.git.'+role in states %}
+{%- if roles is not none -%}
+  {%- for role in roles %}
+    {%- if 'pillars.roles.git.'+role in states %}
  - roles.git.{{ role }}
-      {%- endif -%}
-    {%- endfor -%}
-  {%- endif -%}
+    {%- endif -%}
+  {%- endfor -%}
 {%- endif -%}
--- a/pillars/roles/gitea/init.sls
+++ b/pillars/roles/gitea/init.sls
@ -1,13 +0,0 @@
-{% set states = salt['cp.list_states'](saltenv) %}
-include:
-  - roles.git.none
-
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- for role in grains['roles'] %}
-      {%- if 'pillars.roles.git.'+role in states %}
-  - roles.git.{{ role }}
-      {%- endif -%}
-    {%- endfor -%}
-  {%- endif -%}
-{%- endif -%}
--- a/pillars/roles/gitea/none.sls
+++ b/pillars/roles/gitea/none.sls
--- a/pillars/roles/gitea/portal.sls
+++ b/pillars/roles/gitea/portal.sls
@ -1,25 +0,0 @@
-git:
-  tmux-root:
-    repo: "ssh://gitea@git.actcur.com:5022/actcur/tmux.git"
-    path: "/root/tmux"
-    branch: "master"
-    key: "git_actcur"
-    force: true
-    email: "actcur@actcur.com"
-    name: "Actaeus Curabitur"
-  tmux-ejparker:
-    repo: "ssh://gitea@git.actcur.com:5022/actcur/tmux.git"
-    path: "/ejparker/tmux"
-    branch: "master"
-    key: "git_actcur"
-    force: true
-    email: "actcur@actcur.com"
-    name: "Actaeus Curabitur"
-  web:
-    repo: "ssh://gitea@git.actcur.com:5022/actcur/portal.git"
-    path: "/srv/http/portal"
-    branch: "master"
-    key: "git_actcur"
-    force: true
-    email: "actcur@actcur.com"
-    name: "Actaeus Curabitur"
--- a/pillars/roles/gitea/saltmaster.sls
+++ b/pillars/roles/gitea/saltmaster.sls
@ -1,17 +0,0 @@
-git:
-  salt:
-    repo: "ssh://gitea@git.actcur.com:5022/actcur/salt.git"
-    path: "/srv/salt/prod"
-    branch: "master"
-    key: "git_actcur"
-    force: true
-    email: "actcur@actcur.com"
-    name: "Actaeus Curabitur"
-  salt_dev:
-    repo: "ssh://gitea@git.actcur.com:5022/actcur/salt.git"
-    path: "/srv/salt/dev"
-    branch: "dev"
-    key: "git_actcur"
-    force: true
-    email: "actcur@actcur.com"
-    name: "Actaeus Curabitur"
--- a/pillars/roles/gitea/ytdownloader.sls
+++ b/pillars/roles/gitea/ytdownloader.sls
@ -1,9 +0,0 @@
-git:
-  ytdownloader:
-    repo: "ssh://gitea@git.actcur.com:5022/actcur/ytdownloader.git"
-    path: "/root/scripts/ytdownloader"
-    branch: "master"
-    key: "git_actcur"
-    force: true
-    email: "actcur@actcur.com"
-    name: "Actaeus Curabitur"
--- a/pillars/roles/host/init.sls
+++ b/pillars/roles/host/init.sls
@ -1,13 +1,12 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.host.none

-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- for role in grains['roles'] %}
-      {%- if 'pillars.roles.host.'+role in states %}
+{%- if roles is not none -%}
+  {%- for role in roles %}
+    {%- if 'pillars.roles.host.'+role in states %}
  - roles.host.{{ role }}
-      {%- endif -%}
-    {%- endfor -%}
-  {%- endif -%}
+    {%- endif -%}
+  {%- endfor -%}
 {%- endif -%}
--- a/pillars/roles/laradev/init.sls
+++ b/pillars/roles/laradev/init.sls
@ -1,13 +1,12 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.laradev.none

-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- for role in grains['roles'] %}
-      {%- if 'pillars.roles.laradev.'+role in states %}
+{%- if roles is not none -%}
+  {%- for role in roles %}
+    {%- if 'pillars.roles.laradev.'+role in states %}
  - roles.laradev.{{ role }}
-      {%- endif -%}
-    {%- endfor -%}
-  {%- endif -%}
+    {%- endif -%}
+  {%- endfor -%}
 {%- endif -%}
--- a/pillars/roles/lxc/init.sls
+++ b/pillars/roles/lxc/init.sls
@ -1,13 +1,12 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.lxc.container_profiles

-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- for role in grains['roles'] %}
-      {%- if 'pillars.roles.lxc.'+role in states %}
+{%- if roles is not none -%}
+  {%- for role in roles %}
+    {%- if 'pillars.roles.lxc.'+role in states %}
  - roles.lxc.{{ role }}
-      {%- endif -%}
-    {%- endfor -%}
-  {%- endif -%}
+    {%- endif -%}
+  {%- endfor -%}
 {%- endif -%}
--- a/pillars/roles/mount/init.sls
+++ b/pillars/roles/mount/init.sls
@ -1,13 +1,12 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.mount.none

-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- for role in grains['roles'] %}
-      {%- if 'pillars.roles.mount.'+role in states %}
+{%- if roles is not none -%}
+  {%- for role in roles %}
+    {%- if 'pillars.roles.mount.'+role in states %}
  - roles.mount.{{ role }}
-      {%- endif -%}
-    {%- endfor -%}
-  {%- endif -%}
+    {%- endif -%}
+  {%- endfor -%}
 {%- endif -%}
--- a/pillars/roles/nginx/init.sls
+++ b/pillars/roles/nginx/init.sls
@ -1,21 +1,20 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.nginx.none
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- if 'portal' in grains['roles'] -%}
-      {%- for state in states %}
-        {%- if state.startswith("pillars.roles.nginx.") -%}
-          {%- set role = state.split('.')[3] %}
+{%- if roles is not none -%}
+  {%- if 'portal' in roles -%}
+    {%- for state in states %}
+      {%- if state.startswith("pillars.roles.nginx.") -%}
+        {%- set role = state.split('.')[3] %}
  - roles.nginx.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- else -%}
-      {%- for role in grains['roles'] %}
-        {%- if 'pillars.roles.nginx.'+role in states %}
+      {%- endif -%}
+    {%- endfor -%}
+  {%- else -%}
+    {%- for role in roles %}
+      {%- if 'pillars.roles.nginx.'+role in states %}
  - roles.nginx.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- endif -%}
+      {%- endif -%}
+    {%- endfor -%}
  {%- endif -%}
 {%- endif -%}
--- a/pillars/roles/router/init.sls
+++ b/pillars/roles/router/init.sls
@ -1,15 +1,14 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.router.none
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- if 'router' in grains['roles'] -%}
-      {%- for state in states %}
-        {%- if state.startswith("pillars.roles.router.") -%}
-          {%- set role = state.split('.')[3] %}
+{%- if roles is not none -%}
+  {%- if 'router' in roles -%}
+    {%- for state in states %}
+      {%- if state.startswith("pillars.roles.router.") -%}
+        {%- set role = state.split('.')[3] %}
  - roles.router.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- endif -%}
+      {%- endif -%}
+    {%- endfor -%}
  {%- endif -%}
 {%- endif -%}
--- a/pillars/roles/services/init.sls
+++ b/pillars/roles/services/init.sls
@ -1,15 +1,14 @@
+{%- from "roles.jinja" import roles with context %}
 {% set states = salt['cp.list_states'](saltenv) %}
 include:
  - roles.services.none
-{%- if grains['roles'] is defined -%}
-  {%- if grains['roles'] is not none -%}
-    {%- if 'icinga' in grains['roles'] -%}
-      {%- for state in states %}
-        {%- if state.startswith("pillars.roles.services.") -%}
-          {%- set role = state.split('.')[3] %}
+{%- if roles is not none -%}
+  {%- if 'icinga' in roles -%}
+    {%- for state in states %}
+      {%- if state.startswith("pillars.roles.services.") -%}
+        {%- set role = state.split('.')[3] %}
  - roles.services.{{ role }}
-        {%- endif -%}
-      {%- endfor -%}
-    {%- endif -%}
+      {%- endif -%}
+    {%- endfor -%}
  {%- endif -%}
 {%- endif -%}
--- a/pillars/servers/passwords.sls
+++ b/pillars/servers/passwords.sls
@ -0,0 +1,3 @@
+{%- from "roles.jinja" import roles with context %}
+{%- set data=salt.cmd.shell('sudo bash ~/get_passwords.sh '+roles) -%}
+{{data | trim}}
				`@ -0,0 +1 @@`
				`{%- set roles=salt.cmd.shell("grep -Po '(?<=- ).*' /srv/salt/"+saltenv+"/pillars/servers/roles/server/"+grains['host']+".sls \| tr '\n' ' '") -%}`