This is an internal documentation. There is a good chance you’re looking for something else. See Disclaimer.

Ansible: Implementation Status

Implementation status of the automation via Ansible. Unless otherwise noted, this list concerns application running on OpenShift only.

Category
Resource
Create/
Manage
Delete
Create/
Manage
(Nine)
Notes

DNS

A/AAAA/CNAME
records

No Public API

DB (main)

user

x

DB

x

app config

n/a

DB (history)

user

x

DB

x

schema

n/a

app config

n/a

Solr

user

Account currently shared by all installations

core

x

x

app config

x

n/a

Openshift/ Kubernetes

project

x

x

config

x

n/a

x⁴

routes

x

x⁶

Including DNS verification

reCaptcha

x

n/a

x

ACME

x

n/a

Let’s Encrypt integration

TeamCity

cust. project

x

x

build config

x

x

parameters

x

n/a

Monitoring

x

x

S3

user

x

x

x

bucket

x

x

x

policy

x

n/a

x

Grant access for developers

app config

x

n/a

Mail

configure mx

x

n/a

default sender

x

n/a

Fallback email addressess

allowed sender

x

n/a

Including SPF and DKIM verification

¹ Only managed if db_server variable is set.
² Only managed if mail_domains variable is set.
³ Only managed if app_server variable is set.
⁴ Application properties, DB and S3 setting are managed.
⁵ No dedicated user is created. Rather, one user account is shared and configured via Ansible.
⁶ Routes managed by Ansible have the annotation ‘tocco.ansible-managed’ set to ‘true. Ansible
will not remove any routes that are missing this annotation. Hence, manually created routes
as well as dynamically created routes are never removed by Ansible.