openstack/ansible-role-thales-hsm
Code Issues Proposed changes
Ansible role to manage Thales Hardware Security Module (HSM) client software
8 Commits 10 Branches 30 Tags 360 KiB
Python 98%
Jinja 2%
8fe9600df4
Go to file
OpenDev Sysadmins 8fe9600df4 OpenDev Migration Patch 
This commit was bulk generated and pushed by the OpenDev sysadmins
as a part of the Git hosting and code review systems migration
detailed in these mailing list posts:

http://lists.openstack.org/pipermail/openstack-discuss/2019-March/003603.html
http://lists.openstack.org/pipermail/openstack-discuss/2019-April/004920.html

Attempts have been made to correct repository namespaces and
hostnames based on simple pattern matching, but it's possible some
were updated incorrectly or missed entirely. Please reach out to us
via the contact information listed at https://opendev.org/ with any
questions you may have.
2019-04-19 19:44:02 +00:00
defaults Document role variables and defaults 2019-01-14 08:24:18 -06:00
files Initial commit. 2019-01-04 11:08:37 -06:00
tasks Add rfs sync to get initial keys 2019-03-06 09:35:27 -06:00
zuul.d Add gate config 2019-03-06 07:24:17 -06:00
.gitignore Add gate config 2019-03-06 07:24:17 -06:00
.gitreview OpenDev Migration Patch 2019-04-19 19:44:02 +00:00
AUTHORS Initial commit. 2019-01-04 11:08:37 -06:00
LICENSE Initial commit. 2019-01-04 11:08:37 -06:00
README.rst Document role variables and defaults 2019-01-14 08:24:18 -06:00
requirements.txt Add files for python build 2019-01-04 15:00:12 -05:00
setup.cfg Fix path of README.rst 2019-01-04 15:05:11 -05:00
setup.py Add files for python build 2019-01-04 15:00:12 -05:00
test-requirements.txt Add gate config 2019-03-06 07:24:17 -06:00
tox.ini Add gate config 2019-03-06 07:24:17 -06:00

README.rst

thales-hsm

A role to manage Thales Hardware Security Module (HSM) client software.

Role Variables

Name Default Value Description
thales_install_client false Whether the role should install the client software on the target host.
thales_configure_rfs false Whether the role should execute the RFS configuration tasks.
thales_client_working_dir /tmp/thales_client_install Working directory in the target host.
thales_client_gid 42481 Group ID for the thales group.
thales_client_uid 42481 User ID for the thales user.
thales_client_tarball_name None Filename for the Thales client software tarball.
thales_client_tarball_location None Full URL where a copy of the client software tarball can be downloaded.
thales_client_path linux/libc6_11/amd64/nfast Path tho the client software directory inside the tarball
thales_km_data_tarball_name None Filename for the KM Data tarball
thales_km_data_location None Full URL where a copy of the KM Data tarball can be downloaded.
thales_hsm_ip_address None IPv4 address for the Thales HSM.
thales_rfs_ip_address None IPv4 address for the Thales RFS host.
thales_hsm_config_location None Unique hsm diretory name where the RFS configuration is stored. (e.g. hsm-XXX-XXX-XXX)
thales_client_ips None Whitespace separated list of IP addresses to be added to RFS config.
thales_bootstrap_client_ip None Bootstrap client IP address. This IP will be allowed to update RFS server.

Requirements

  • ansible >= 2.4