feat(hydra): add base recipe using ansible-role-sso

2023-10-23 17:45:55 +02:00 · 2023-10-23 17:45:55 +02:00 · 686f89691c
parent 6c87255360
commit 686f89691c
5 changed files with 57 additions and 0 deletions
--- a/recipes/debian/hydra.pkr.hcl
+++ b/recipes/debian/hydra.pkr.hcl
@ -0,0 +1,41 @@
+#Flavour base
+build {
+  name = "hydra"
+  description = <<EOF
+This builder build a Debian 12 image for Ory Hydra
+EOF
+  source "hydra.vmware-vmx.debian" {
+    output_directory = "${var.output_dir}/${var.version}/hydra"
+    vm_name          = "hydra-${local.output_name}-${var.version}"
+    source_path      = "${var.output_dir}/${var.version}/base/${local.output_name}-${var.version}.vmx"
+    boot_command     = [ "<enter><enter><wait>" ]
+    ssh_clear_authorized_keys = true
+  }
+
+  // Clone ansible-role-sso repository
+  provisioner "ansible" {
+    playbook_file = "${local.locations.provisionning}/hydra/clone-role-sso.yml"
+    // Manjaro/Arch OpenSSH version compatibility mode
+    // See https://github.com/hashicorp/packer/issues/11783
+    extra_arguments = [ "--scp-extra-args", "'-O'", "-v" ]
+  }
+
+  // Run ansible-role-sso playbook from cloned repository
+  provisioner "ansible" {
+    playbook_file = "${local.locations.provisionning}/hydra/run-role-sso.yml"
+    groups = ["quid_server"]
+    // Manjaro/Arch OpenSSH version compatibility mode
+    // See https://github.com/hashicorp/packer/issues/11783
+    extra_arguments = [ "--scp-extra-args", "'-O'", "-v", "--extra-vars=@${local.locations.provisionning}/hydra/ansible-vars.yml" ]
+  }
+
+  post-processor "shell-local" {
+    inline = [
+      "/bin/sh ${path.cwd}/post-processors/sparsify.sh ${var.output_dir}/${var.version}/hydra ${var.image_version}",
+    ]
+  }
+
+  post-processor "manifest" {
+    keep_input_artifact = true
+  }
+}
--- a/recipes/debian/provisionning/hydra/.gitignore
+++ b/recipes/debian/provisionning/hydra/.gitignore
@ -0,0 +1 @@
+/role-sso
--- a/recipes/debian/provisionning/hydra/ansible-vars.yml
+++ b/recipes/debian/provisionning/hydra/ansible-vars.yml
@ -0,0 +1,2 @@
+---
+foo: ""
--- a/recipes/debian/provisionning/hydra/clone-role-sso.yml
+++ b/recipes/debian/provisionning/hydra/clone-role-sso.yml
@ -0,0 +1,10 @@
+---
+- name: Ciblage de la machine locale
+  hosts: localhost
+  connection: local
+  tasks:
+    - name: Clonage du projet "Cadoles/ansible-role-sso"
+      ansible.builtin.git:
+        repo: "ssh://git@forge.cadoles.com:2222/Cadoles/ansible-role-sso.git"
+        dest: "role-sso"
+        version: "master"
--- a/recipes/debian/provisionning/hydra/run-role-sso.yml
+++ b/recipes/debian/provisionning/hydra/run-role-sso.yml
@ -0,0 +1,3 @@
+---
+- hosts: all
+  roles: [ role-sso ]