基于Ansible API的任务管理web系统

2022-03-18 Ansible Ansible, devops, django, python3 0 评论

AWX 是开源的ansible web工具

该教程是在Centos7/8下完成部署。

配置SElinux

Centos/RHEL 7/8 在默认情况下 SELiunx是开启状态，这里需要时期失效，将SELinux配置文件中的 SELINUX=enforcing 修改为 SELINUX=disable。

# vi /etc/sysconfig/selinux
...
SELINUX=disabled
...

保存退出后，reboot重启服务器。

配置epel源

1
2
3

yum -y update
yum -y install epel-release
reboot

所需要的安装包

1	yum -y install git gcc gcc-c++ ansible nodejs gettext device-mapper-persistent-data lvm2 bzip2 python3-pip nano wget

安装docker

wget https://download.docker.com/linux/centos/docker-ce.repo –directory-prefix /etc/yum.repos.d/

yum -y install docker-ce
systemctl start docker
systemctl enable docker
systemctl status docker

wget https://files.pythonhosted.org/packages/0b/f5/be8e741434a4bf4ce5dbc235aa28ed0666178ea8986ddc10d035023744e6/pip-20.2.4.tar.gz  #下载安装包
tar -zxvf pip-20.2.4.tar.gz  # 解压
cd pip-20.2.4/
sudo python setup.py install #给予权限不然可能安装失败
pip install -U pip #再次更新

pip install --ignore-installed requests
pip install docker-compose # centos7用pip centos8用

安装AWX

git clone -b 17.1.0 https://github.com/ansible/awx.git
openssl rand -base64 30
    p6gtdhmTKiyObdOM19CCqri2gNxPD+9xLNuyaxHy
vi ~/awx/installer/inventory
#####
postgres_data_dir=”/var/lib/awx/pgdocker”
docker_compose_dir=”/var/lib/awx/awxcompose”

pg_username=awx
pg_password=Password@123
pg_database=postgres
admin_user=admin
admin_password=Password@123

secret_key=rVVKN3T9BaLffFhS4/kx8q6nyTiK660L28+yt0px

awx_alternate_dns_servers=”114.114.114.114″

project_data_dir=/var/lib/awx/projects
#####

1	ansible-playbook -i ~/awx/installer/inventory ~/awx/installer/install.yml

这里postgre docker容器起不起来，配置文件选择的12版本，修改为10版本就行，同时不做升级操作。网上有解决办法是改成12.1-apline版本，因此根据不同环境，自行选择

完成如下

1
2

docker ps

防火墙

```

## 访问AWX


https://www.abidibo.net/blog/2012/06/29/deploy-django-applications-nginx-uwsgi-virtualenv-south-git-and-fabric-part-5//

## 魔改

### AWX_WEB

“/home/ec2-user/work/awx_data/awx/awxcompose/nginx.conf:/etc/nginx/nginx.conf:ro”,
“/home/ec2-user/work/awx_data/awx/awxcompose/SECRET_KEY:/etc/tower/SECRET_KEY:rw”,
“awxcompose_rsyslog-socket:/var/run/awx-rsyslog:rw”,
“awxcompose_rsyslog-config:/var/lib/awx/rsyslog:rw”,
“awxcompose_supervisor-socket:/var/run/supervisor:rw”,
“/home/ec2-user/work/awx_data/awx/projects:/var/lib/awx/projects:rw”,
“/home/ec2-user/work/awx_data/awx/awxcompose/credentials.py:/etc/tower/conf.d/credentials.py:rw”,
“/home/ec2-user/work/awx_data/awx/awxcompose/redis_socket:/var/run/redis:rw”,
“/home/ec2-user/work/awx_data/awx/awxcompose/environment.sh:/etc/tower/conf.d/environment.sh:rw”

STATIC_ROOT = ‘/var/lib/awx/public/static’

PROJECTS_ROOT = ‘/var/lib/awx/projects’

AWX_ANSIBLE_COLLECTIONS_PATHS = ‘/var/lib/awx/vendor/awx_ansible_collections’

JOBOUTPUT_ROOT = ‘/var/lib/awx/job_status’

SECRET_KEY = get_secret()

ALLOWED_HOSTS = [‘*’]

docker exec -it awx_web bash
cat /etc/nginx/nginx.conf
location /static/ {
alias /var/lib/awx/public/static/;
}

    location /favicon.ico { alias /var/lib/awx/public/static/favicon.ico; }

dnf -y update && dnf -y install epel-release ‘dnf-command(config-manager)’ && dnf module -y enable ‘postgresql:10’ && dnf config-manager –set-enabled powertools && dnf -y install ansible gcc gcc-c++ git-core glibc-langpack-en libcurl-devel libffi-devel libtool-ltdl-devel make nodejs nss openldap-devel patch @postgresql:10 postgresql-devel python3-devel python3-pip python3-psycopg2 python3-setuptools swig unzip xmlsec1-devel xmlsec1-openssl-devel

ansible-playbook -i installer/inventory installer/build.yml -vvvvvv &

## 自定义Ansible Tower LOGO

```sh
# 上传custom_console_logo.png到/var/lib/awx/public/static/assets/
vi /var/lib/awx/public/static/local_settings.json
{  “custom_logo” ： true } # 如何设置为false 或不修改，则无法生效