Complete rewrite of the semaphore role. Supersedes three prior
iterations whose admin-user-creation logic was unreliable across
Semaphore CLI versions.
Architecture:
- Rootful Podman Quadlet under /etc/containers/systemd/
- Separate PostgreSQL 16-alpine container on a user-defined
podman network (semaphore-net)
- Named volumes for both data stores (semaphore_data,
semaphore_postgres_data) so container recreation is
non-destructive
- Pinned image tags: semaphoreui/semaphore:v2.18.5-ansible2.16.5
and postgres:16-alpine
- Post-deploy HTTP health check fails the playbook if Semaphore
doesn't respond on /api/ping within ~60s
Admin user creation remains intentionally manual after first deploy;
the role README documents the exact podman exec command.
Removes the duplicate deploy_semaphore.yml and the now-unneeded
cleanup_semaphore.yml; day1_deploy_semaphore.yml is the canonical
entry point.
17 lines
592 B
YAML
17 lines
592 B
YAML
---
|
|
# ============================================================================
|
|
# Named podman volumes
|
|
# ============================================================================
|
|
|
|
- name: Ensure named volumes exist
|
|
ansible.builtin.command:
|
|
cmd: "podman volume create {{ item }}"
|
|
register: volume_create
|
|
changed_when: "'already exists' not in (volume_create.stderr | default(''))"
|
|
failed_when:
|
|
- volume_create.rc != 0
|
|
- "'already exists' not in (volume_create.stderr | default(''))"
|
|
loop:
|
|
- "{{ semaphore_postgres_volume }}"
|
|
- "{{ semaphore_data_volume }}"
|