Support creating multiple elbs

elbs: - name: "{{ e_d_c }}-public" scheme: "internet-facing" - name: "{{ e_d_c }}-internal" scheme: "internal" If an internal elb exists, we need private subnets This is functionally identical to the service_subnets and assumes you've defined a private_elb_subnet_{1,2} similar to the existing public_subnet_{1,2} variables (and requires code added in edx-secure's edx_service) The subnet if statement is horride, but registering that variable as a temporary global wasn't working. Services might not have elbs, might only have public ELBs or might have internal ELBs with no subnets configured. Try to catch these cases before ansible/ec2 give a less useful error message.

Support creating multiple elbs
elbs: - name: "{{ e_d_c }}-public" scheme: "internet-facing" - name: "{{ e_d_c }}-internal" scheme: "internal" If an internal elb exists, we need private subnets This is functionally identical to the service_subnets and assumes you've defined a private_elb_subnet_{1,2} similar to the existing public_subnet_{1,2} variables (and requires code added in edx-secure's edx_service) The subnet if statement is horride, but registering that variable as a temporary global wasn't working. Services might not have elbs, might only have public ELBs or might have internal ELBs with no subnets configured. Try to catch these cases before ansible/ec2 give a less useful error message.
c6a499bc · Kevin Falcone · a7086a6f · c6a499bc
Commit c6a499bc authored May 18, 2015 by Kevin Falcone
Hide whitespace changes
Inline Side-by-side

Showing with 26 additions and 4 deletions

playbooks/edx-east/edx_service.yml
+26 -4

No files found.
--- a/playbooks/edx-east/edx_service.yml
+++ b/playbooks/edx-east/edx_service.yml
@@ -106,19 +106,41 @@
    #     vpc_id: "{{ vpc_id }}"
    #     destination_cidr: "{{ rt.destination_cidr }}"
    #     target: "local" # simplifying generalization of instnace-id, gateway-id or local
+    #
+    - name: Manage Private ELB Subnets
+      ec2_subnet:
+        profile: "{{ profile }}"
+        state: "{{ state }}"
+        region: "{{ aws_region }}"
+        name: "{{ item.name }}"
+        vpc_id: "{{ vpc_id }}"
+        cidr_block: "{{ item.cidr }}"
+        az: "{{ item.az }}"
+        route_table_id: "{{ item.route_table_id }}"
+        tags: "{{ item.tags }}"
+      register: created_elb_private_subnets
+      with_items: elb_private_subnets
+      when: private_elb_subnet_1 is defined and private_elb_subnet_2 is defined
+
+    - name: Check that internal ELBs have subnets
+      fail: msg="If you set an elb scheme to 'internal' you must also define private_elb_subnet_1 and private_elb_subnet_2"
+      when: private_elb_subnet_1 is not defined and private_elb_subnet_2 is not defined and elbs is defined and 'internal' in elbs|map(attribute='scheme')|list

    - name: Manage ELB
      ec2_elb_lb:
        profile: "{{ profile }}"
        region: "{{ aws_region }}"
-        scheme: "{{ elb_scheme }}"
-        name: "{{ elb_name }}"
+        scheme: "{{ item.scheme }}"
+        name: "{{ item.name}}"
        state: "{{ state }}"
        security_group_ids: "{{ elb_sec_group.group_id }}"
-        subnets: "{{ elb_subnets }}"
+        subnets: "{{ created_elb_private_subnets.results|map(attribute='subnet_id')| list if ( item.scheme == 'internal' ) else elb_subnets}}"
        health_check: "{{ elb_healthcheck }}"
        listeners: "{{ elb_listeners }}"
-      register: elb
+      register: created_elbs
+      with_items: elbs
+      when: elbs is defined
+
 #
 # Service related components
 #