ansible-role-openpolicyagent/tasks/configuration.yml

---
- name: Create OPA configuration directory
  file:
    path: "{{ openpolicyagent_config_path }}"
    state: directory
    owner: "{{ openpolicyagent_user }}"
    group: "{{ openpolicyagent_group }}"
    mode: "0755"

- name: Create OPA config.d directory
  file:
    path: "{{ openpolicyagent_config_d_path }}"
    state: directory
    owner: "{{ openpolicyagent_user }}"
    group: "{{ openpolicyagent_group }}"
    mode: "0755"

- name: Merge OPA dictionary configuration
  openpolicyagent_merge:
    suffix: _openpolicyagent_{{ item }}
    var_name: openpolicyagent_{{ item }}_merged
    type: list
  loop:
    - services
    - bundles

- name: Merge OPA dictionary configuration
  openpolicyagent_merge:
    suffix: _openpolicyagent_{{ item }}
    var_name: openpolicyagent_{{ item }}_merged
  loop:
    - labels
    - plugins

- name: Generate final configuration
  openpolicyagent_config_generate:
    config: "{{ openpolicyagent_config }}"
    var_name: openpolicyagent_config

- name: Deploy generated configuration
  copy:
    content: "{{ openpolicyagent_config | to_nice_yaml(indent=2) }}"
    dest: "{{ openpolicyagent_config_file }}"
    owner: "{{ openpolicyagent_user }}"
    group: "{{ openpolicyagent_group }}"
    mode: "0600"
    validate: "{{ openpolicyagent_bin }}/opa run --addr :8182 --shutdown-grace-period 1 --config-file '%s'"
  notify: Restart OPA
Second commit 2019-10-07 22:09:33 +00:00			`---`
			`- name: Create OPA configuration directory`
			`file:`
			`path: "{{ openpolicyagent_config_path }}"`
			`state: directory`
			`owner: "{{ openpolicyagent_user }}"`
			`group: "{{ openpolicyagent_group }}"`
			`mode: "0755"`

			`- name: Create OPA config.d directory`
			`file:`
			`path: "{{ openpolicyagent_config_d_path }}"`
			`state: directory`
			`owner: "{{ openpolicyagent_user }}"`
			`group: "{{ openpolicyagent_group }}"`
			`mode: "0755"`

			`- name: Merge OPA dictionary configuration`
			`openpolicyagent_merge:`
			`suffix: _openpolicyagent_{{ item }}`
			`var_name: openpolicyagent_{{ item }}_merged`
			`type: list`
			`loop:`
			`- services`
			`- bundles`

			`- name: Merge OPA dictionary configuration`
			`openpolicyagent_merge:`
			`suffix: _openpolicyagent_{{ item }}`
			`var_name: openpolicyagent_{{ item }}_merged`
			`loop:`
			`- labels`
			`- plugins`

			`- name: Generate final configuration`
			`openpolicyagent_config_generate:`
			`config: "{{ openpolicyagent_config }}"`
			`var_name: openpolicyagent_config`

			`- name: Deploy generated configuration`
			`copy:`
			`content: "{{ openpolicyagent_config \| to_nice_yaml(indent=2) }}"`
			`dest: "{{ openpolicyagent_config_file }}"`
			`owner: "{{ openpolicyagent_user }}"`
			`group: "{{ openpolicyagent_group }}"`
			`mode: "0600"`
			`validate: "{{ openpolicyagent_bin }}/opa run --addr :8182 --shutdown-grace-period 1 --config-file '%s'"`
			`notify: Restart OPA`