Creating a new role to deploy MAAS

Author: falcocer-ibm

maas.yml

@@ -0,0 +1,7 @@
+---
+- hosts: maas
+  serial: 1
+  strategy: free
+  roles:
+    - maas
+  become: true

roles/maas/README.md

@@ -0,0 +1,138 @@
+# Ansible Playbook: MAAS Installation and Configuration
+
+This Ansible playbook automates the installation and initial configuration of [MAAS (Metal as a Service)](https://maas.io/) on Ubuntu-based systems.
+
+## Features
+
+- Installs MAAS packages
+- Initializes MAAS with a default user with HA
+- Configures networking (DHCP, DNS, etc.)
+- Adds Machines from invetory into MAAS
+
+## Requirements
+
+- Ansible 2.10+
+- Ubuntu 20.04 or later on the target system(s)
+- Sudo access on target host
+- Internet access (for downloading MAAS packages and images)
+- At least 2 Nodes to deploy MAAS with HA
+
+## Inventory
+
+Define your inventory in `hosts.ini` with the following structure:
+
+```ini
+[maas_region_rack_server]
+test1 ip=172.x.x.x ipmi=10.0.8.x mac=08:00:27:ed:43:x
+
+[maas_rack_server]
+test2 ip=172.x.x.x ipmi=10.0.8.x mac=08:00:27:ed:43:x
+
+[maas_db_server]
+test1 ip=172.x.x.x ipmi=10.0.8.x mac=08:00:27:ed:43:x
+
+The systems you want to add into MAAS should be on a group called [testnodes] with the same structure.
+
+## Variables
+
+You can configure the playbook via group_vars/maas.yml in the secret repo or defaults/main.yml. Common variables include:
+maas_admin_username: "admin"
+maas_admin_password: "adminpass"
+maas_admin_email: "admin@example.com"
+maas_admin_username: "admin"
+maas_db_name: "maasdb"
+maas_db_user: "maas"
+maas_version: "3.5"
+maas_snap_channel: "stable"
+
+DNS variables include:
+dns_domains:
+  - ceph: Static primary domain (e.g., `internal.ceph.tucson.com`).
+  - ipmi: Static IPMI domain (`ipmi.ceph.tucson.com`).
+  - vlan104: Static sub-domain for vlan104 address(`vlan104.internal.ceph.tucson.com`).
+default_domains: List of domains to preserve/ignore (default: `["maas"]`). The default domain is a DNS domain that is used by maas when you deploy a machine it is used by maas for internal dns records so we choose to exclude it from our ansible role.
+
+DHCP variables include:
+dhcp_global_options:
+  - ddns-update-style: none
+  - default-lease-time: 43200
+  - max-lease-time: 172800
+  - one-lease-per-client: "true"
+
+This list will be used to populate the global snippet. You can add additional keys and values. Just make sure they follow the syntax required for dhcpd.conf.
+
+dhcp_maas_subnets:
+  front:
+    cidr: 10.0.8.0/24
+    ipvar: ip
+    macvar: mac
+    start_ip: 10.0.8.10
+    end_ip: 10.0.8.20
+    ip_range_type: dynamic
+    classes:
+      virtual: "match if substring(hardware, 0, 4) = 01:52:54:00"
+      lxc: "match if substring(hardware, 0, 4) = 01:52:54:ff"
+    pools:
+      virtual:
+        range: 172.21.10.20 172.21.10.250
+      unknown_clients:
+        range:
+          - 172.21.11.0 172.21.11.19
+          - 172.21.13.170 172.21.13.250
+      lxc:
+        range: 172.21.14.1 172.21.14.200
+  back:
+    cidr: 172.21.16.0/20
+    ipvar: back
+    macvar: backmac
+
+This is large dictionary that gets parsed out into individual snippet files. Each top-level key (front and back in the example) will get its own snippet file created. The example shown to the left is our actual dhcp_maas_subnets dictionary.
+
+Under each subnet, cidr, ipvar, and macvar are required. ipvar and macvar tell the Jinja2 template which IP address and MAC address should be used for each host in each subnet snippet.
+
+Here's a line from our Ansible inventory host file
+
+smithi001.front.sepia.ceph.com mac=0C:C4:7A:BD:15:E8 ip=172.21.15.1 ipmi=172.21.47.1 bmc=0C:C4:7A:6E:21:A7
+
+This will result in a static IP entry for smithi001-front with IP 172.21.15.1 and MAC 0C:C4:7A:BD:15:E8 in front_hosts snippet and a smithi001-ipmi entry with IP 172.21.47.1 with MAC 0C:C4:7A:6E:21:A7 in ipmi_hosts snippet.
+
+## Usage
+
+1. Clone the repository:
+
+git clone https://github.com/ceph/ceph-cm-ansible.git
+cd ceph-cm-ansible
+
+2. Update inventory and variables.
+
+3. Run the playbook:
+
+ansible-playbook -i hosts.ini maas.yml
+
+## Role Structure
+
+maas
+   ├── defaults
+   │   └── main.yml
+   ├── meta
+   │   └── main.yml
+   ├── tasks
+   │   ├── add_machines.yml
+   │   ├── config_dhcpd.yml
+   │   ├── config_dns.yml
+   │   ├── initialize_region_rack.yml
+   │   ├── initialize_secondary_rack.yml
+   │   ├── install_maasdb.yml
+   │   └── main.yml
+   └── templates
+       ├── dhcpd.classes.conf.j2
+       ├── dhcpd.global.conf.j2
+       ├── dhcpd.hosts.conf.j2
+       └── dhcpd.pools.conf.j2
+
+## Tags
+
+- install_maas #Install MAAS and postgreSQL only and initializes the region+rack server and the secondary rack.
+- add-machines #Add Machines to MAAS only if they are not already present.
+- config_dhcp #Configures DHCP options only if there are any change in the DHCP variables.
+- config_dns #Configure DNS domains and add the DNS Records that are not currenlty into a Domain.

roles/maas/defaults/main.yml

@@ -0,0 +1,17 @@
+---
+# MAAS user and database variables
+maas_admin_username: "admin"
+maas_db_name: "maasdb"
+maas_db_user: "maas"
+maas_version: "3.5"
+maas_snap_channel: "stable"
+
+# DNS Variables
+default_domains:
+  - "maas"
+
+maas_dns_domains:
+  ceph: "front.sepia.ceph.com"
+  ipmi: "ipmi.sepia.ceph.com"
+
+

roles/maas/meta/main.yml

@@ -0,0 +1,3 @@
+---
+dependencies:
+  - role: secrets

roles/maas/tasks/add_machines.yml

@@ -0,0 +1,23 @@
+---
+- name: Add all machines from inventory to MAAS
+  vars:  
+    arch: "amd64"  # Change if needed
+  when: inventory_hostname in groups['maas_region_rack_server'] and logged_into_maas.rc == 0
+  tags: add_machines
+  block:
+    - name: Get existing machines in MAAS
+      command: "maas {{ maas_admin_username }} machines read"
+      register: existing_machines
+
+    - name: Extract existing hostnames
+      set_fact:
+        existing_hostnames: "{{ existing_machines.stdout | from_json | map(attribute='hostname') | list }}"
+    
+    - name: Add Machines into MAAS
+      vars:
+        hostname: "{{ item.split('.')[0] }}"
+        mac_address: "{{ hostvars[item]['mac'] }}"
+      when: hostname not in existing_hostnames and mac_address is defined
+      loop: "{{ groups['testnodes'] }}"
+      command: "maas {{ maas_admin_username }} machines create architecture={{ arch }} mac_addresses={{ mac_address }} hostname={{ item }} power_type=manual deployed=true"
+      

roles/maas/tasks/config_dhcpd.yml

@@ -0,0 +1,165 @@
+---
+- name: Configures MAAS DHCP
+  when: inventory_hostname in groups['maas_region_rack_server'] and logged_into_maas.rc == 0
+  tags: config_dhcp
+  block:
+  # This section enables DHCP on the subnets included into the secrets repo group_vars and creates an IP range for them
+   - name: Creating IP Range for {{ subnet_name }} subnet
+     command: "maas admin ipranges create type={{ subnet_data.ip_range_type }} start_ip={{ subnet_data.start_ip }} end_ip={{ subnet_data.end_ip }}"
+     ignore_errors: true
+     tags: skip
+   
+   - name: Selecting the correct fabric to configure {{ subnet_name }} subnet
+     command: bash -c "maas admin subnet read {{ subnet_data.cidr }}|grep 'fabric-'|cut -d '\"' -f 4"
+     register: fabric_selected
+   
+   - name: Getting {{ subnet_name }} subnet ID
+     command: bash -c "maas admin subnet read {{ subnet_data.cidr }}|grep '\"id\"'|cut -d ':' -f 2|cut -d ',' -f 1|head -1"
+     register: subnet_id
+   
+   - name: Enabling DHCP with HA on {{ subnet_name }} subnet
+     command: "maas admin vlan update {{ fabric_selected.stdout }} 0 dhcp_on=True primary_rack={{ groups['maas_region_rack_server'][0] }} secondary_rack={{ groups['maas_rack_server'][0] }}"
+     tags: skip
+   
+   # This task creates the directory where the snippets are going to be copied
+   
+   - name: Creating snippets directory
+     file:
+       path: /var/snap/maas/common/maas/dhcp/snippets
+       state: directory
+       mode: '0755'
+     register: snippets_directory
+   
+   # This section verifies if the snippets already exist
+   
+   - name: Verifying if the global dhcp snippet exists
+     command: bash -c "maas admin dhcpsnippets read|grep 'global_dhcp'"
+     ignore_errors: true
+     register: global_exists
+   
+   - name: Verifying if the {{ subnet_name }} subnet classes snippet exists
+     command: bash -c "maas admin dhcpsnippets read |grep '{{ subnet_name }}_classes'"
+     when: subnet_data.classes is defined
+     ignore_errors: true
+     register: classes_exists
+   
+   - name: Verifying if the {{ subnet_name }} subnet pools snippet exists
+     command: bash -c "maas admin dhcpsnippets read |grep '{{ subnet_name }}_pools'"
+     when: subnet_data.pools is defined
+     ignore_errors: true
+     register: pools_exists
+   
+   - name: Verifying if the {{ subnet_name }} subnet hosts snippet exists
+     command: bash -c "maas admin dhcpsnippets read |grep '{{ subnet_name }}_hosts'"
+     ignore_errors: true
+     register: hosts_exists
+   
+   # This section copies the snippets
+   
+   - name: Copying global DHCP snippet
+     template:
+       src: dhcpd.global.conf.j2
+       dest: "/var/snap/maas/common/maas/dhcp/snippets/global_dhcp_snippet"
+     when: snippets_directory.failed == false
+     register: dhcp_global_config
+   
+   - name: Copying {{ subnet_name }} subnet classes snippet
+     template:
+       src: dhcpd.classes.conf.j2
+       dest: "/var/snap/maas/common/maas/dhcp/snippets/{{ subnet_name }}_classes_snippet"
+     when: subnet_data.classes is defined and snippets_directory.failed == false
+     register: dhcp_classes_config
+   
+   - name: Copying {{ subnet_name }} subnet pools snippet
+     template:
+       src: dhcpd.pools.conf.j2
+       dest: "/var/snap/maas/common/maas/dhcp/snippets/{{ subnet_name }}_pools_snippet"
+     when: subnet_data.pools is defined and snippets_directory.failed == false
+     register: dhcp_pools_config
+   
+   - name: Copying {{ subnet_name }} subnet hosts snippet
+     template:
+       src: dhcpd.hosts.conf.j2
+       dest: "/var/snap/maas/common/maas/dhcp/snippets/{{ subnet_name }}_hosts_snippet"
+     when: snippets_directory.failed == false
+     register: dhcp_hosts_config
+   
+   # This section decodes the snippet files and creates the variables to add them into MAAS
+   
+   - name: Slurp global DHCP file content
+     slurp:
+       src: "/var/snap/maas/common/maas/dhcp/snippets/global_dhcp_snippet"
+     when: dhcp_global_config.failed == false
+     register: global_file
+   
+   - name: Decode global DHCP file content
+     set_fact:
+       global_content: "{{ global_file.content | b64decode }}"
+     when: dhcp_global_config.failed == false
+   
+   - name: Slurp {{ subnet_name }} classes file content
+     slurp:
+       src: "/var/snap/maas/common/maas/dhcp/snippets/{{ subnet_name }}_classes_snippet"
+     when: subnet_data.classes is defined and dhcp_classes_config.failed == false
+     register: classes_file
+   
+   - name: Decode {{ subnet_name }} classes file content
+     set_fact:
+       classes_content: "{{ classes_file.content | b64decode }}"
+     when: subnet_data.classes is defined and dhcp_classes_config.failed == false
+   
+   - name: Slurp {{ subnet_name }} pools file content
+     slurp:
+       src: "/var/snap/maas/common/maas/dhcp/snippets/{{ subnet_name }}_pools_snippet"
+     when: subnet_data.pools is defined and dhcp_pools_config.failed == false
+     register: pools_file
+   
+   - name: Decode {{ subnet_name }} pools file content
+     set_fact:
+       pools_content: "{{ pools_file.content | b64decode }}"
+     when: subnet_data.pools is defined and dhcp_pools_config.failed == false
+   
+   - name: Slurp {{ subnet_name }} hosts file content
+     slurp:
+       src: "/var/snap/maas/common/maas/dhcp/snippets/{{ subnet_name }}_hosts_snippet"
+     register: hosts_file
+   
+   - name: Decode {{ subnet_name }} hosts file content
+     set_fact:
+       hosts_content: "{{ hosts_file.content | b64decode }}"
+   
+   # This section deletes the snippets if already exist
+   
+   - name: Delete global DHCP snippet if already exists
+     command: "maas admin dhcpsnippet delete global_dhcp"
+     when: dhcp_global_config.changed == true and global_exists.failed == false
+   
+   - name: Delete {{ subnet_name }} subnet classes snippet if already exists
+     command: "maas admin dhcpsnippet delete {{ subnet_name }}_classes"
+     when: subnet_data.classes is defined and dhcp_classes_config.changed == true and classes_exists.failed == false
+   
+   - name: Delete {{ subnet_name }} subnet pools snippet if already exists
+     command: "maas admin dhcpsnippet delete {{ subnet_name }}_pools"
+     when: subnet_data.pools is defined and dhcp_pools_config.changed == true and pools_exists.failed == false
+   
+   - name: Delete {{ subnet_name }} subnet hosts snippet if already exists
+     command: "maas admin dhcpsnippet delete {{ subnet_name }}_hosts"
+     when: dhcp_hosts_config.changed == true and hosts_exists.failed == false
+   
+   # This section adds snippets into MAAS
+   
+   - name: Adding global DHCP snippets into MAAS
+     command: "maas {{ maas_admin_username }} dhcpsnippets create name='global_dhcp' value='{{ global_content }}' description='This snippet configures the global DHCP options' global_snippet=true"
+     when: dhcp_global_config.failed == false and dhcp_global_config.changed == true
+   
+   - name: Adding {{ subnet_name }} classes snippets into MAAS
+     command: "maas {{ maas_admin_username }} dhcpsnippets create name='{{ subnet_name }}_classes' value='{{ classes_content }}' description='This snippet configures the classes in {{ subnet_name }} subnet' subnet='{{ subnet_id.stdout }}'"
+     when: dhcp_classes_config.failed == false and dhcp_classes_config.changed == true
+   
+   - name: Adding {{ subnet_name }} pools snippets into MAAS
+     command: "maas {{ maas_admin_username }} dhcpsnippets create name='{{ subnet_name }}_pools' value='{{ pools_content }}' description='This snippet configures the pools in {{ subnet_name }} subnet' subnet='{{ subnet_id.stdout }}'"
+     when: dhcp_pools_config.failed == false and dhcp_pools_config.changed == true
+   
+   - name: Adding {{ subnet_name }} hosts snippets into MAAS
+     command: "maas {{ maas_admin_username }} dhcpsnippets create name='{{ subnet_name }}_hosts' value='{{ hosts_content }}' description='This snippet configures the hosts in {{ subnet_name }} subnet' subnet='{{ subnet_id.stdout }}'"
+     when: dhcp_hosts_config.failed == false and dhcp_hosts_config.changed == true