This repo hosts the community.okd Ansible Collection.
The collection includes a variety of Ansible content to help automate the management of applications in OKD clusters, as well as the provisioning and maintenance of clusters themselves.
This collection has been tested against following Ansible versions: >=2.14.0.
Please ensure to update the network_os to use the fully qualified collection name (for example, cisco.ios.ios).
Plugins and modules within a collection may be tested with only specific Ansible versions.
A collection may contain metadata that identifies these versions.
PEP440 is the schema used to describe the versions of Ansible.
- Collection supports 3.9+
This collection supports Kubernetes versions >=1.24.
Click on the name of a plugin or module to view that content's documentation:
| Name | Description |
|---|---|
| community.okd.oc | Execute tasks in pods running on OpenShift. |
| Name | Description |
|---|---|
| community.okd.openshift | OpenShift inventory source |
| Name | Description |
|---|---|
| community.okd.k8s | Manage OpenShift objects |
| community.okd.openshift_adm_groups_sync | Sync OpenShift Groups with records from an external provider. |
| community.okd.openshift_adm_migrate_template_instances | Update TemplateInstances to point to the latest group-version-kinds |
| community.okd.openshift_adm_prune_auth | Removes references to the specified roles, clusterroles, users, and groups |
| community.okd.openshift_adm_prune_builds | Prune old completed and failed builds |
| community.okd.openshift_adm_prune_deployments | Remove old completed and failed deployment configs |
| community.okd.openshift_adm_prune_images | Remove unreferenced images |
| community.okd.openshift_auth | Authenticate to OpenShift clusters which require an explicit login step |
| community.okd.openshift_build | Start a new build or Cancel running, pending, or new builds. |
| community.okd.openshift_import_image | Import the latest image information from a tag in a container image registry. |
| community.okd.openshift_process | Process an OpenShift template.openshift.io/v1 Template |
| community.okd.openshift_registry_info | Display information about the integrated registry. |
| community.okd.openshift_route | Expose a Service as an OpenShift Route. |
Before using the OKD collection, you need to install it with the Ansible Galaxy CLI:
ansible-galaxy collection install community.okd
You can also include it in a requirements.yml file and install it via ansible-galaxy collection install -r requirements.yml, using the format:
---
collections:
- name: community.okd
version: 3.0.1Content in this collection requires the Kubernetes Python client to interact with Kubernetes' APIs. You can install it with:
pip3 install kubernetes
It's preferable to use content in this collection using their Fully Qualified Collection Namespace (FQCN), for example community.okd.openshift:
---
plugin: community.okd.openshift
connections:
- namespaces:
- testingFor documentation on how to use individual plugins included in this collection, please see the links in the 'Included content' section earlier in this README.
The community.okd collection supports Ansible Turbo mode as a tech preview via the cloud.common collection. By default, this feature is disabled. To enable Turbo mode, set the environment variable ENABLE_TURBO_MODE=1 on the managed node. For example:
---
- hosts: remote
environment:
ENABLE_TURBO_MODE: 1
tasks:
...Please read more about Ansible Turbo mode - here.
If you want to develop new content for this collection or improve what's already here, the easiest way to work on the collection is to clone it into one of the configured COLLECTIONS_PATHS, and work on it there.
See Contributing to community.okd.
The tests directory contains configuration for running sanity tests using ansible-test.
You can run the ansible-test sanity tests with the command:
make test-sanity
The molecule directory contains configuration for running integration tests using molecule.
You can run the molecule integration tests with the command:
make test-integration
These commands will create a directory called ansible_collections which should not be committed or added to the .gitignore (Tracking issue: ansible/ansible#68499)
This repository uses the OpenShift Prow instance for testing against live OpenShift clusters.
The configuration for the CI jobs that this repository runs can be found in the openshift/release repository.
The Prow CI integration test job runs the command:
make test-integration-incluster
which will create a job that runs the normal make integration target. In order to mimic the Prow CI job, you must
first build the test image using the Dockerfile in ci/Dockerfile. Then, push the image
somewhere that it will be accessible to the cluster, and run
IMAGE_FORMAT=<your image> make test-integration-incluser
where the IMAGE_FORMAT environment variable is the full reference to your container (ie, IMAGE_FORMAT=quay.io/example/molecule-test-runner)
Releases are automatically built and pushed to Ansible Galaxy for any new tag. Before tagging a release, make sure to do the following:
- Update the version in the following places:
* a. The
versioningalaxy.yml* b. This README'srequirements.ymlexample * c. TheDOWNSTREAM_VERSIONinci/downstream.sh* d. TheVERSIONinMakefile* e. The version inrequirements.yml - Update the CHANGELOG:
* 1. Make sure you have
antsibull-changeloginstalled. * 2. Make sure there are fragments for all known changes inchangelogs/fragments. * 3. Runantsibull-changelog release. - Commit the changes and create a PR with the changes. Wait for tests to pass, then merge it once they have.
- Tag the version in Git and push to GitHub.
After the version is published, verify it exists on the OKD Collection Galaxy page.
For more information about Ansible's Kubernetes and OpenShift integrations, join the #ansible-kubernetes channel on libera.chat IRC, and browse the resources in the Kubernetes Working Group Community wiki page.
GNU General Public License v3.0 or later
See LICENCE to see the full text.