ovh_instance_playbooks/roles/role_deploy_grafana/tasks/main.yml
2024-11-03 22:36:22 +01:00

137 lines
4.1 KiB
YAML

---
- name: Stop container service
ansible.builtin.systemd:
name: container-grafana
state: stopped
become: true
register: result_grafana_systemd_stop
failed_when: "result_grafana_systemd_stop is failed and 'Could not find the requested service' not in result_grafana_systemd_stop.msg"
- name: Check if grafana container is running
command: 'podman ps -q --filter "name=^grafana$"'
changed_when: false
register: podman_ps
become: true
- name: Assert that no grafana container is running
ansible.builtin.assert:
that:
- podman_ps.stdout_lines | length == 0
- name: Check if restore from backup is already done
stat:
path: /mnt/volumes/restore_states/grafana_restored
register: grafana_restored_flag
- name: Create volumes directories
ansible.builtin.file:
path: "/mnt/volumes/{{ item }}"
state: directory
mode: '0755'
become: true
with_items:
- etc_grafana
- var_lib_grafana
- var_log_grafana
when: not grafana_restored_flag.stat.exists
- name: Create volumes data directories
ansible.builtin.file:
path: "/mnt/volumes/{{ item.name }}/data"
state: directory
owner: "{{ item.user }}"
group: "{{ item.user }}"
mode: '0755'
become: true
with_items:
- name: etc_grafana
user: root
- name: var_lib_grafana
user: 472
- name: var_log_grafana
user: 472
when: not grafana_restored_flag.stat.exists
- name: change ownership of duplicity working directories
ansible.builtin.file:
path: "{{ item }}"
owner: "{{ LINUX_USERNAME }}"
group: "{{ LINUX_USERNAME }}"
become: true
with_items:
- "{{ DUPLICITY_WORKDIR }}"
- "{{ DUPLICITY_ARCHIVE_DIR }}"
when: not grafana_restored_flag.stat.exists
- name: restore volume backup
ansible.builtin.command:
cmd: "duplicity restore --archive-dir {{ DUPLICITY_ARCHIVE_DIR }} --name {{ item }} swift://{{ item }} /mnt/volumes/{{ item }}/data"
environment:
SWIFT_USERNAME: "{{ OS_USERNAME }}"
SWIFT_PASSWORD: "{{ OS_PASSWORD }}"
SWIFT_AUTHURL: "{{ OS_AUTH_URL }}"
SWIFT_REGIONNAME: "{{ SWIFT_REGIONNAME }}"
SWIFT_TENANTNAME: "{{ OS_TENANT_NAME }}"
SWIFT_AUTHVERSION: "{{ OS_IDENTITY_API_VERSION }}"
PASSPHRASE: "{{ duplicity_passphrase }}"
# /usr/bin/duplicity uses "-s" python argument to prevent loading modules from user's python directory,
# this variable will override that.
PYTHONPATH: ".local/lib/python3.9/site-packages"
register: duplicity_result
become: true
with_items:
- etc_grafana
- var_lib_grafana
- var_log_grafana
failed_when: duplicity_result is failed and (duplicity_result.rc is not defined or duplicity_result.rc != 11)
changed_when: duplicity_result.rc is defined and duplicity_result.rc == 0
when: not grafana_restored_flag.stat.exists
- name: Create grafana container
containers.podman.podman_container:
name: grafana
image: docker.io/grafana/grafana:10.2.4
state: present
network:
- host
env:
GF_SERVER_HTTP_PORT: "3002"
volume:
- /mnt/volumes/var_lib_grafana/data:/var/lib/grafana:Z
- /mnt/volumes/etc_grafana/data:/etc/grafana:Z
- /mnt/volumes/var_log_grafana/data:/var/log/grafana:Z
generate_systemd:
path: /etc/systemd/system
become: true
- name: start/enable container service
ansible.builtin.systemd:
daemon-reload: true
name: container-grafana
state: started
enabled: true
become: true
- name: Add grafana.{{ DOMAIN }} to /etc/hosts
ansible.builtin.lineinfile:
path: "/etc/hosts"
line: "127.0.0.1 grafana.{{ DOMAIN }} grafana"
become: true
# A local volume is needed to store restore states
- name: Create /mnt/volumes/restore_states directory if it does not exist
ansible.builtin.file:
path: "/mnt/volumes/restore_states"
state: directory
mode: '0755'
become: true
when: not grafana_restored_flag.stat.exists
- name: Create grafana_restored state file
ansible.builtin.file:
path: "/mnt/volumes/restore_states/grafana_restored"
state: touch
mode: '0755'
become: true
when: not grafana_restored_flag.stat.exists