Skip to content

Commit

Permalink
Added tutorial on how to use the role
Browse files Browse the repository at this point in the history
  • Loading branch information
@nemesifier
nemesifier committed Apr 26, 2016
1 parent ce08a87 commit b99b2a0
Showing 1 changed file with 115 additions and 23 deletions.
138 changes: 115 additions & 23 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,17 +5,124 @@ ansible-openwisp2

Ansible role for the nascent openwisp2 controller.

Usable but not stable, will probably change a lot over time.
Tested on **debian** and **ubuntu**.

Usage
=====
Usage (tutorial)
================

Generate a `SECRET_KEY` for django (copy the output of the following
command):
If you don't know how to use ansible, don't panic, this procedure will
guide you towards a fully working basic openwisp2 installation.

./generate-django-secret-key
If you already know how to use ansible, you can skip this tutorial.

Add an entry to your `site.yml` like the following one:
Ansible is a configuration management tool that works by entering servers via SSH,
**so you need to install it and configure it on your local machine**.

Install ansible
---------------

Install ansible **on your local machine** if you haven't done already, there are various way in
which you can do this, but we prefer to use the official python
package manager, eg::

pip install ansible

If you don't have pip installed see [Installing pip](https://pip.pypa.io/en/stable/installing/)
on the pip documentation website.

[Installing ansible in other ways](http://docs.ansible.com/ansible/intro_installation.html#latest-release-via-yum)
is fine too, just make sure to install a version of the `2.0.x` series (which is the version with
which we have tested this playbook).

Install this role
-----------------

For the sake of simplicity, the easiest thing is to install this role
via `ansible-galaxy` (which was installed when installing ansible), therefore run::

ansible-galaxy install nemesisdesign.openwisp2

Choose a working directory
--------------------------

Choose a working directory where to put the configuration of openwisp2.

This will be useful when you will need to upgrade openwisp2.

Eg::

mkdir ~/openwisp2-ansible-playbook
cd ~/openwisp2-ansible-playbook

Putting this working directory under version control is also a very good idea.

Create inventory file
---------------------

The inventory file is where group of servers are defined. In our simple case we can
get away with defining just one group in which we will put just one server.

Create a new file `hosts` with the following contents:

[openwisp2]
openwisp2.mydomain.com

Substitute `openwisp2.mydomain.com` with your hostname (ip addresses are allowed as well).

Create playbook file
--------------------

Create a new playbook file `playbook.yml` with the following contents:

```yaml
- hosts: openwisp2
sudo: "{{ sudo | default('yes') }}"
roles:
- nemesisdesign.openwisp2
vars:
openwisp2_shared_secret: <PLEASE_CHANGE_ME>
```
Substitute `<PLEASE_CHANGE_ME>` with a value of your liking, this value will be used for
`NETJSONCONFIG_SHARED_SECRET` setting, see the [relevant section in the README of django-netjsonconfig](https://github.com/openwisp/django-netjsonconfig#netjsonconfig-shared-secret)
for more information.

The line `sudo: "{{ sudo | default('yes') }}"` means ansible will use the `sudo`
program to run each command. You may remove this line if you don't need it.

Run the playbook
----------------

Run the playbook with::

ansible-playbook -i hosts playbook.yml -u <user> -k --ask-sudo-pass

Substitute `<user>` with your user.

The `--ask-sudo-pass` argument will need the `sshpass` program.

You can remove `-k` and `--ask-sudo-pass` if your public SSH key is installed on the server.

When the playbook is done running, if you got no errors you can login at::

https://openwisp2.mydomain.com/admin
username: admin
passowrd: admin

Substitute `openwisp2.mydomain.com` with your hostname.

Change the password (and the username if you like) of the superuser as soon
as possible.

The superuser will be created only the first time the playbook is run.

Role variables
==============

This role has many variables values that can be changed to best suit
your needs.

Below are listed all the variables you can customize.

```yaml
- hosts: yourhost
Expand All @@ -24,7 +131,7 @@ Add an entry to your `site.yml` like the following one:
- openwisp2
vars:
# generate a secret key with ./generate-django-secret-key
openwisp2_secret_key: changemeplease
# openwisp2_secret_key: changemeplease
# change the openwisp2 shared secret to a value of your liking
openwisp2_shared_secret: changemeplease
# whether to use the stable release (true) or the development version (false)
Expand Down Expand Up @@ -74,18 +181,3 @@ Add an entry to your `site.yml` like the following one:
openwisp2_sentry:
dsn: "https://7d2e3cd61acc32eca1fb2a390f7b55e1:[email protected]:443/12345"
```
Run the playbook:
ansible-playbook -i hosts site.yml -l yourhost
When the playbook is done running, if you got no errors you can login at::
https://<host>/admin
username: admin
passowrd: admin
Change the password (and the username if you like) of the superuser as soon
as possible.
The superuser will be created only the first time the playbook is run.

0 comments on commit b99b2a0

Please sign in to comment.