RH294 - ch07s06

Bookmark this page

Guided Exercise: Creating Roles

In this exercise, you will create an Ansible role that uses variables, files, templates, tasks, and handlers to deploy a network service.

Outcomes

You should be able to create a role that uses variables and parameters.

The myvhost role installs and configures the Apache service on a host. A template named vhost.conf.j2 is provided that will be used to generate /etc/httpd/conf.d/vhost.conf.

On workstation, run the lab role-create start command. This creates the working directory, /home/student/role-create, and populates it with an Ansible configuration file and host inventory.

[student@workstation ~]$ lab role-create start

Procedure 7.2. Instructions

Change to the /home/student/role-create working directory.

[student@workstation ~]$ cd ~/role-create
[student@workstation role-create]$

Create the directory structure for a role called myvhost. The role includes fixed files, templates, tasks, and handlers.

[student@workstation role-create]$ mkdir -v roles; cd roles
mkdir: created directory 'roles'
[student@workstation roles]$ ansible-galaxy init myvhost
- myvhost was created successfully
[student@workstation roles]$ rm -rvf myvhost/{defaults,vars,tests}
removed 'myvhost/defaults/main.yml'
removed directory: 'myvhost/defaults'
removed 'myvhost/vars/main.yml'
removed directory: 'myvhost/vars'
removed 'myvhost/tests/inventory'
removed 'myvhost/tests/test.yml'
removed directory: 'myvhost/tests'
[student@workstation roles]$ cd ..
[student@workstation role-create]$

Edit the main.yml file in the tasks subdirectory of the role. The role should perform the following tasks:
- The httpd package is installed
- The httpd service is started and enabled
- The web server configuration file is installed, using a template provided by the role
1. Edit the roles/myvhost/tasks/main.yml file. Include code to use the yum module to install the httpd package. The file contents should look like the following:
```
---
# tasks file for myvhost

- name: Ensure httpd is installed
  yum:
    name: httpd
    state: latest
```
2. Add additional code to the roles/myvhost/tasks/main.yml file to use the service module to start and enable the httpd service.
```
- name: Ensure httpd is started and enabled
  service:
    name: httpd
    state: started
    enabled: true
```
3. Add another stanza to use the template module to create /etc/httpd/conf.d/vhost.conf on the managed host. It should call a handler to restart the httpd daemon when this file is updated.
```
- name: vhost file is installed
  template:
    src: vhost.conf.j2
    dest: /etc/httpd/conf.d/vhost.conf
    owner: root
    group: root
    mode: 0644
  notify:
    - restart httpd
```
4. Save your changes and exit the roles/myvhost/tasks/main.yml file.
Create the handler for restarting the httpd service. Edit the roles/myvhost/handlers/main.yml file and include code to use the service module, then save and exit. The file contents should look like the following:
```
---
# handlers file for myvhost

- name: restart httpd
  service:
    name: httpd
    state: restarted
```

Move the vhost.conf.j2 template from the project directory to the role's templates subdirectory.

[student@workstation role-create]$ mv -v vhost.conf.j2 roles/myvhost/templates/
renamed 'vhost.conf.j2' -> 'roles/myvhost/templates/vhost.conf.j2'

Create the HTML content to be served by the web server.
1. Create the files/html/ directory to store the content in.
```
[student@workstation role-create]$ mkdir -pv files/html
mkdir: created directory 'files/html'
```
2. Create an index.html file below that directory with the contents: simple index.
```
[student@workstation role-create]$ echo \
> 'simple index' > files/html/index.html
```

Test the myvhost role to make sure it works properly.

Write a playbook that uses the role, called use-vhost-role.yml. Include a task to copy the HTML content from files/html/. Use the copy module and include a trailing slash after the source directory name. It should have the following content:

---
- name: Use myvhost role playbook
  hosts: webservers
  pre_tasks:
    - name: pre_tasks message
      debug:
        msg: 'Ensure web server configuration.'

  roles:
    - myvhost

  post_tasks:
    - name: HTML content is installed
      copy:
        src: files/html/
        dest: "/var/www/vhosts/{{ ansible_hostname }}"

    - name: post_tasks message
      debug:
        msg: 'Web server is configured.'

Note

The trailing slash causes the source directory and all of its contents to be copied to the managed host.

Before running the playbook, verify that its syntax is correct by running ansible-playbook with the --syntax-check. If it reports any errors, correct them before moving to the next step. You should see output similar to the following:
```
[student@workstation role-create]$ ansible-playbook use-vhost-role.yml \
> --syntax-check

playbook: use-vhost-role.yml
```

Run the playbook. Review the output to confirm that Ansible performed the actions on the web server, servera.

[student@workstation role-create]$ ansible-playbook use-vhost-role.yml

PLAY [Use myvhost role playbook] *********************************************

TASK [Gathering Facts] *******************************************************
ok: [servera.lab.example.com]

TASK [pre_tasks message] *****************************************************
ok: [servera.lab.example.com] => {
    "msg": "Ensure web server configuration."
}

TASK [myvhost : Ensure httpd is installed] ***********************************
changed: [servera.lab.example.com]

TASK [myvhost : Ensure httpd is started and enabled] *************************
changed: [servera.lab.example.com]

TASK [myvhost : vhost file is installed] *************************************
changed: [servera.lab.example.com]

RUNNING HANDLER [myvhost : restart httpd] ************************************
changed: [servera.lab.example.com]

TASK [HTML content is installed] ***********************************
changed: [servera.lab.example.com]

TASK [post_tasks message] ****************************************************
ok: [servera.lab.example.com] => {
    "msg": "Web server is configured."
}

PLAY RECAP *******************************************************************
servera.lab.example.com    : ok=8    changed=5    unreachable=0    failed=0

Run ad hoc commands to confirm that the role worked. The httpd package should be installed and the httpd service should be running.

[student@workstation role-create]$ ansible webservers -a \
> 'systemctl is-active httpd'
servera.lab.example.com | CHANGED | rc=0 >>
active

[student@workstation role-create]$ ansible webservers -a \
> 'systemctl is-enabled httpd'
servera.lab.example.com | CHANGED | rc=0 >>
enabled

The Apache configuration should be installed with template variables expanded.

[student@workstation role-create]$ ansible webservers -a \
> 'cat /etc/httpd/conf.d/vhost.conf'
servera.lab.example.com | CHANGED | rc=0 >>
# Ansible managed:

<VirtualHost *:80>
    ServerAdmin webmaster@servera.lab.example.com
    ServerName servera.lab.example.com
    ErrorLog logs/servera-error.log
    CustomLog logs/servera-common.log common
    DocumentRoot /var/www/vhosts/servera/

    <Directory /var/www/vhosts/servera/>
        Options +Indexes +FollowSymlinks +Includes
        Order allow,deny
        Allow from all
    </Directory>
</VirtualHost>

The HTML content should be found in a directory called /var/www/vhosts/servera. The index.html file should contain the string "simple index".

[student@workstation role-create]$ ansible webservers -a \
> 'cat /var/www/vhosts/servera/index.html'
servera.lab.example.com | CHANGED | rc=0 >>
simple index

Use the uri module in an ad hoc command to check that the web content is available locally. Set the return_content parameter to true to have the content of the server's response added to the output. The server content should be the string simple index\n.

[student@workstation role-create]$ ansible webservers -m uri \
> -a 'url=http://localhost return_content=true'
servera.lab.example.com | SUCCESS => {
    "accept_ranges": "bytes",
    "changed": false,
    "connection": "close",
    "content": "simple index\n",
...output omitted...
    "status": 200,
    "url": "http://localhost"
}

Confirm that the web server content is available to remote clients.

[student@workstation role-create]$ curl http://servera.lab.example.com
simple index

Finish

Run the lab role-create finish command to clean up the managed host.

[student@workstation ~]$ lab role-create finish

This concludes the guided exercise.

Discuss Red Hat Enterprise Linux Automation with Ansible

Go to community

Red Hat Linux Automation with Ansible (RH294)

Haley_Ruccio

24 lip 2023

Learn how to automate Linux system administration tasks with Red Hat Ansible Automation PlatformRed Hat Enterprise Linux Automation with Ansible (RH294) is designed for Linux administrators and developers who need to automate repeatable and error-prone steps for system provisioning, configuration, application deployment, and orchestration. This course is based on Red Hat® Enterprise Linux® 9 and Red Hat Ansible Automation Platform 2.2.Course content summaryInstall Red Hat Ansible Automation Platform on control nodes.Create and update inventories of managed hosts and manage connections to them.Automate administration tasks with Ansible Playbooks and ad hoc commands.Write effective playbooks at scale.Protect sensitive data used by Ansible Automation Platform with Ansible Vault.Reuse code and simplify playbook development with Ansible Roles and Ansible Content Collections.Audience for this courseThis course is geared toward Linux system administrators, DevOps engineers, infrastructure automation engineers, and systems design engineers who are responsible for these tasks:Automating configuration managementEnsuring consistent and repeatable application deploymentProvisioning and deployment of development, testing, and production serversIntegrating with DevOps continuous integration/continuous delivery workflowsPrerequisites for this coursePass the Red Hat Certified System Administrator (RHCSA) exam (EX200), or demonstrate equivalent Red Hat Enterprise Linux knowledge and experience.Take our free assessment to gauge whether this offering is the best fit for your skills.

980

curl finds no route to host?

TPeters

23 lip 2023

I am doing the self-paced course RH294 . With two exercises (Ch.3 final Lab and Ch.4 lab exercise 2) I ran into this problem:after installing and starting a web service, from the classroom web termicaI I cannot reach servera.lab.example.com with curl: "No route to host". This despite the fact that I can ping it, open a shell to it, and install the package on it with Ansible.Anyone else have the same problem?What might be the cause?

1702

Welcome to the Red Hat Linux Automation with Ansible (RH294) group in the Red Hat Learning Community

cschunke

18 lip 2023

We are excited to launch a space dedicated to the Red Hat Training course Red Hat Linux Automation with Ansible! To gain the most value from this group - click the "Join Group" button in the upper right hand corner.We encourage group members to collaborate in this group to discuss topics, ask questions, share best practices and tips, provide course feedback, and share their accomplishments as it relates to RH294.Read more about Red Hat Linux Automation with Ansible here.

351

Revision: rh294-8.4-9cb53f0