openstack/ansible-role-atos-hsm
Code Issues Proposed changes
Ansible role to manage ATOS Hardware Security Module (HSM) client software
11 Commits 10 Branches 28 Tags 232 KiB
Python 69.5%
Jinja 30.5%
f5c86dff4e
Go to file
Elod Illes f5c86dff4e Disable auto-discovery for setuptools 
With the latest setuptools release (61.0.0) ansible-role-atos-hsm's
package build command (python3 setup.py sdist bdist_wheel) started to
fail:

error: Multiple top-level packages discovered in a flat-layout:
['defaults', 'handlers', 'templates', 'releasenotes'].

This issue is mentioned in setuptools bug 3197 [1], and the suggested
workaround is to disable auto-discovery by adding 'py_modules=[]' in
setup.py.

ansible-lint also released a new version (6.0.0), which has new rules
that blocks the gate. As a workaround, this patch caps ansible-lint
version <6.0.0 to unblock the gate.

[1] https://github.com/pypa/setuptools/issues/3197

Change-Id: I3f827b3ed855ff46292dee7b21b74a622adc472d
2022-03-26 20:17:44 +01:00
defaults Document role variables and defaults 2019-01-11 12:12:26 -06:00
handlers Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
releasenotes/notes Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
tasks Fix linter 2021-01-12 09:07:20 -07:00
templates Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
zuul.d Add gate config 2019-03-05 23:37:52 -06:00
.ansible-lint Fix linter 2021-01-12 09:07:20 -07:00
.gitreview OpenDev Migration Patch 2019-04-19 19:33:14 +00:00
AUTHORS Add AUTHORS file. 2019-01-04 11:13:55 -06:00
LICENSE Initial commit 2019-01-04 10:51:40 -06:00
README.rst Add HA (load balancing) support 2020-02-04 09:48:42 -06:00
requirements.txt Add files for Python build 2019-01-04 15:22:03 -05:00
setup.cfg setup.cfg: Replace dashes with underscores 2021-05-04 07:39:29 +00:00
setup.py Disable auto-discovery for setuptools 2022-03-26 20:17:44 +01:00
test-requirements.txt Disable auto-discovery for setuptools 2022-03-26 20:17:44 +01:00
tox.ini Add gate config 2019-03-05 23:37:52 -06:00
vars.yaml.sample Add HA (load balancing) support 2020-02-04 09:48:42 -06:00

README.rst

atos-hsm

A role to manage ATOS Hardware Security Module (HSM) client software.

Role Variables

Name Default Value Description
atos_client_working_dir /tmp/atos_client_install Working directory in the target host.
atos_client_iso_name None Filename for the ATOS Client Software ISO.
atos_client_iso_location None Full URL where a copy of ATOS Client ISO can be downloaded.
atos_client_cert_location None Full URL where the client certificate can be downloaded.
atos_client_key_location None Full URL where the client key can be downloaded.
atos_hsms None List of one or more HSM devices.

Requirements

  • ansible >= 2.4

Usage

You'll need to set up a temporary HTTP server somewhere that is accessible to the node where this role will be applied. The HTTP server should serve the following:

  • ATOS Client Software ISO file.
  • HSM Server Certificate file(s).
  • HSM Client Certificate file.
  • HSM Client Key file associated with the Client Certificate.

Due to the sensitive nature of the Certificate and Key files, you should use TLS encryption and username and passwords to access the HTTP server.

Use the hostname and user/password for your HTTP server for the full URL values that need to be set for this role. See vars.yaml.example.