diff --git a/roles/gcp-http-lb/.travis.yml b/roles/gcp-http-lb/.travis.yml new file mode 100644 index 0000000..36bbf62 --- /dev/null +++ b/roles/gcp-http-lb/.travis.yml @@ -0,0 +1,29 @@ +--- +language: python +python: "2.7" + +# Use the new container infrastructure +sudo: false + +# Install ansible +addons: + apt: + packages: + - python-pip + +install: + # Install ansible + - pip install ansible + + # Check ansible version + - ansible --version + + # Create ansible.cfg with correct roles_path + - printf '[defaults]\nroles_path=../' >ansible.cfg + +script: + # Basic role syntax check + - ansible-playbook tests/test.yml -i tests/inventory --syntax-check + +notifications: + webhooks: https://galaxy.ansible.com/api/v1/notifications/ \ No newline at end of file diff --git a/roles/gcp-http-lb/README.md b/roles/gcp-http-lb/README.md new file mode 100644 index 0000000..6cf889d --- /dev/null +++ b/roles/gcp-http-lb/README.md @@ -0,0 +1,38 @@ +gcp-http-lb +========= + +This role helps you set up a Google Cloud Load Balancer. + +Requirements +------------ + +- requests Python library +- googleauth Python library + +Role Variables +-------------- + +``` + gcp_http_lb_backend: the selflink for the backend that this load balancer will be supporting + gcp_project: the name of your gcp project + service_account_file: the path to your service account JSON file +``` + +Example Playbook +---------------- + + - hosts: local + vars: + gcp_http_lb_backend: projects/project/zones/us-central1-c/instanceGroups/my-instance-group + roles: + - role: gcp-http-lb + +License +------- + +Apache2 + +Author Information +------------------ + +Google Inc. diff --git a/roles/gcp-http-lb/defaults/main.yml b/roles/gcp-http-lb/defaults/main.yml new file mode 100644 index 0000000..f705f01 --- /dev/null +++ b/roles/gcp-http-lb/defaults/main.yml @@ -0,0 +1,14 @@ +--- +# defaults file for gcp-http-lb +gcp_http_lb_state: present +gcp_http_lb_cdn: true +gcp_http_lb_name_prefix: 'gcp' + +# Name schemes for resources being created +gcp_http_lb_globaladdress: "{{gcp_lb_name_prefix}}-globaladdress" +gcp_http_lb_instancegroup: "{{gcp_lb_name_prefix}}-instancegroup" +gcp_http_lb_healthcheck: "{{gcp_lb_name_prefix}}-healthcheck" +gcp_http_lb_backendservice: "{{gcp_lb_name_prefix}}-backendservice" +gcp_http_lb_urlmap: "{{gcp_lb_name_prefix}}-urlmap" +gcp_http_lb_httpproxy: "{{gcp_lb_name_prefix}}-httpproxy" +gcp_http_lb_forwardingrule: "{{gcp_lb_name_prefix}}-forwardingrule" diff --git a/roles/gcp-http-lb/meta/main.yml b/roles/gcp-http-lb/meta/main.yml new file mode 100644 index 0000000..9ee9104 --- /dev/null +++ b/roles/gcp-http-lb/meta/main.yml @@ -0,0 +1,59 @@ +galaxy_info: + author: googlecloudplatform + description: Create a HTTP Load Balancer on GCP + company: Google + + # If the issue tracker for your role is not on github, uncomment the + # next line and provide a value + # issue_tracker_url: http://example.com/issue/tracker + + # Some suggested licenses: + # - BSD (default) + # - MIT + # - GPLv2 + # - GPLv3 + # - Apache + # - CC-BY + license: GPLv3 + + min_ansible_version: 2.7 + # If this a Container Enabled role, provide the minimum Ansible Container version. + # min_ansible_container_version: + + # Optionally specify the branch Galaxy will use when accessing the GitHub + # repo for this role. During role install, if no tags are available, + # Galaxy will use this branch. During import Galaxy will access files on + # this branch. If Travis integration is configured, only notifications for this + # branch will be accepted. Otherwise, in all cases, the repo's default branch + # (usually master) will be used. + #github_branch: + + # + # Provide a list of supported platforms, and for each platform a list of versions. + # If you don't wish to enumerate all versions for a particular platform, use 'all'. + # To view available platforms and versions (or releases), visit: + # https://galaxy.ansible.com/api/v1/platforms/ + # + # platforms: + # - name: Fedora + # versions: + # - all + # - 25 + # - name: SomePlatform + # versions: + # - all + # - 1.0 + # - 7 + # - 99.99 + + galaxy_tags: [] + # List tags for your role here, one per line. A tag is a keyword that describes + # and categorizes the role. Users find roles by searching for tags. Be sure to + # remove the '[]' above, if you add tags to this list. + # + # NOTE: A tag is limited to a single word comprised of alphanumeric characters. + # Maximum 20 tags per role. + +dependencies: [] + # List your role dependencies here, one per line. Be sure to remove the '[]' above, + # if you add dependencies to this list. diff --git a/roles/gcp-http-lb/tasks/main.yml b/roles/gcp-http-lb/tasks/main.yml new file mode 100644 index 0000000..c2095bd --- /dev/null +++ b/roles/gcp-http-lb/tasks/main.yml @@ -0,0 +1,66 @@ +--- +- name: create a global address for the load balancer. + gcp_compute_global_address: + name: "{{ gcp_http_lb_globaladdress }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: "{{ gcp_http_lb_state }}" + register: globaladdress +- name: create a http health check to verify lb working + gcp_compute_http_health_check: + name: "{{ gcp_http_lb_healthcheck }}" + healthy_threshold: 10 + port: 80 + timeout_sec: 2 + unhealthy_threshold: 5 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: "{{ gcp_http_lb_state }}" + register: healthcheck +- name: create a backend service + gcp_compute_backend_service: + name: "{{ gcp_http_lb_backendservice }}" + backends: + - group: + selfLink: "{{ gcp_http_lb_backend }}" + health_checks: + - "{{ healthcheck.selfLink }}" + enable_cdn: "{{ gcp_http_lb_cdn }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: "{{ gcp_http_lb_state }}" + register: backendservice +- name: create a url map + gcp_compute_url_map: + name: "{{ gcp_http_lb_urlmap }}" + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: "{{ gcp_http_lb_state }}" + register: urlmap +- name: create a target http proxy + gcp_compute_target_http_proxy: + name: "{{ gcp_http_lb_httpproxy }}" + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: "{{ gcp_http_lb_state }}" + register: httpproxy +- name: create a global forwarding rule + gcp_compute_global_forwarding_rule: + name: "{{ gcp_http_lb_forwardingrule }}" + ip_address: "{{ globaladdress.address }}" + load_balancing_scheme: "EXTERNAL" + ip_protocol: TCP + port_range: 80-80 + target: "{{ httpproxy.selfLink }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: "{{ gcp_http_lb_state }}" + register: result diff --git a/roles/gcp-http-lb/tests/inventory b/roles/gcp-http-lb/tests/inventory new file mode 100644 index 0000000..878877b --- /dev/null +++ b/roles/gcp-http-lb/tests/inventory @@ -0,0 +1,2 @@ +localhost + diff --git a/roles/gcp-http-lb/tests/test.yml b/roles/gcp-http-lb/tests/test.yml new file mode 100644 index 0000000..cc74a2b --- /dev/null +++ b/roles/gcp-http-lb/tests/test.yml @@ -0,0 +1,5 @@ +--- +- hosts: localhost + remote_user: root + roles: + - gcp-http-lb \ No newline at end of file diff --git a/roles/gcp-http-lb/vars/main.yml b/roles/gcp-http-lb/vars/main.yml new file mode 100644 index 0000000..ca9443f --- /dev/null +++ b/roles/gcp-http-lb/vars/main.yml @@ -0,0 +1,12 @@ +--- +# vars file for gcp-http-lb +vars: + # The backend this LB will be supporting. This will typically be a Instance Group: + # example: projects/sample-project/zones/us-central1-c/instanceGroups/sample-instance-group + gcp_http_lb_backend: your-backend + # The name of your GCP project + gcp_project: your-project + # The kind of authentication you will use (serviceaccount is recommended) + auth_kind: serviceaccount + # The path to your service account file (if using the serviceaccount auth kind) + service_account_file: path-to-service-account-file