- Slides
-
Labs
- 1.0 - Setting up Ansible
- 2.0 - Documentation
- 3.0 - Setup and AdHoc Commands
- 4.0 - Ansible Playbooks - Basics
- 4.1 - Ansible Playbooks - Variables and Loops
- 4.2 - Ansible Playbooks - Templates
- 4.3 - Ansible Playbooks - Output
- 5.0 - Ansible Roles - Basics
- 5.1 - Ansible Roles - Handlers and Blocks
- 6.0 - Managing Secrets with Ansible Vault
- 7.0 - Ansible Galaxy and more
- About
- Setup
4.1 - Ansible Playbooks - Variables and Loops
In this lab we’ll start to use variables and loops.
Task 1
- In your playbook
webserver.ymlyou have two tasks for starting and enablinghttpdandfirewalld. Merge these 2 tasks into one.
Remember loop: or with_items:
Task 2
- In your playbook
webserver.yml, ensure that that the yum packagefirewalldis installed. Do the installation ofhttpdandfirewalldin one task. Do you really need to use a loop? Have a look at the description of the ansible module yum.
Task 3
- Write a new playbook
motd.ymlwhich sets the content of/etc/motdon all servers to a custom text. Use the variablemotd_contentand thecopymodule with the optioncontentcontaining the variable.
Task 4
- Using the command line, overwrite the content of
motdby providing the variablemotd_contentwith a different value. - Modify the content again, but use a
vars.ymlfile.
Task 5
- Set the
motd_contentfrom Task 4 usinggroup_varsfor node1 andhost_varsfor node2. - Make sure you remove the variable definition in
motd.yml. Reason being it will have a higher priority. - Limit the run to node1 and node2.
Think about where you have to create the folders for your host and group variables
Task 6
- Get a feeling for errors: Remove the quotes around the curly brackets and have a look at the output.
Solutions
Delete the 2 tasks “start and enable [httpd,firewalld]”. Add a new task with the following content:
- name: start and enable services
service:
name: "{{ item }}"
state: started
enabled: yes
with_items:
- httpd
- firewalld
Make sure your indentations are correct! Older ansible-versions don’t know the keyword “loop” yet, use “with_items” instead.
tasks:
- name: install httpd and firewalld
yum:
name:
- httpd
- firewalld
state: installed
Content of motd.yml:
---
- hosts: all
become: yes
vars:
motd_content: "Thi5 1s some r3ally stR4nge teXT!\n"
tasks:
- name: set content of /etc/motd
copy:
dest: /etc/motd
content: "{{ motd_content }}"
$ ansible-playbook motd.yml
Take a look at what your playbook just did:
$ ssh -l ansible <node1-ip>
Last login: Fri Nov 1 14:16:08 2019 from 5-102-146-174.cust.cloudscale.ch
Thi5 1s some r3ally stR4nge teXT! # <-- it worked!
[ansible@node1 ~]$
$ ansible-playbook motd.yml -e motd_content="0th3r_5trang3_TExt"
$ ssh -l ansible <node1-ip>
Last login: Fri Nov 1 14:18:52 2019 from 5-102-146-174.cust.cloudscale.ch
0th3r_5trang3_TExt # <-- it worked
[ansible@node1 ~]$
Ansible playbook options explained:-e is synonymouns with --extra-vars it can be used to override variables.
$ cat vars.yml
---
motd_content: "st1ll m0r3 str4ng3 TexT!"
$ ansible-playbook motd.yml -e @vars.yml
Login via SSH again and check if the new text was set.
Your motd.yml should look something like this:
---
- hosts: all
become: yes
tasks:
- name: set content of /etc/motd
copy:
dest: /etc/motd
content: "{{ motd_content }}"
After creating the new directories and files you should have something similar to this:
$ cat inventory/group_vars/web.yml
---
motd_content: "This is a webserver\n"
$ cat inventory/host_vars/node2.yml
---
motd_content: "This is node2\n"
Run your playbook and check if the text was changed accordingly on the two nodes:
$ ansible-playbook motd.yml -l node1,node2
$ ansible web,node2 -a "cat /etc/motd"
Ansible playbook options explained:-l is synonymous with --limit it only executes the playbook on given hosts.
---
- hosts: all
become: yes
tasks:
- name: set content of /etc/motd
copy:
dest: /etc/motd
content: {{ motd_content }} #<-- missing quotes here