summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJhon Honce <jhonce@redhat.com>2015-06-12 11:19:29 -0700
committerJhon Honce <jhonce@redhat.com>2015-06-12 11:19:29 -0700
commit17c6b4c5da76ecff6f8c68254ab6424d0d9a736e (patch)
tree5237506b41e4671d00be56592db2737bd16e3729
parent42806b6745c747843b71eaf08b62aeee5e450ab1 (diff)
downloadopenshift-17c6b4c5da76ecff6f8c68254ab6424d0d9a736e.tar.gz
openshift-17c6b4c5da76ecff6f8c68254ab6424d0d9a736e.tar.bz2
openshift-17c6b4c5da76ecff6f8c68254ab6424d0d9a736e.tar.xz
openshift-17c6b4c5da76ecff6f8c68254ab6424d0d9a736e.zip
Infrastructure - Set OpenShift Registry
* TODO: update to secure when 'add volume' feature available in origin
-rw-r--r--roles/openshift_node/tasks/main.yml11
1 files changed, 11 insertions, 0 deletions
diff --git a/roles/openshift_node/tasks/main.yml b/roles/openshift_node/tasks/main.yml
index c5202650f..7dd76e0b8 100644
--- a/roles/openshift_node/tasks/main.yml
+++ b/roles/openshift_node/tasks/main.yml
@@ -56,6 +56,17 @@
notify:
- restart openshift-node
+- stat: path=/etc/sysconfig/docker
+ register: docker_check
+
+ # TODO: Enable secure registry when code available in origin
+- name: Secure OpenShift Registry
+ lineinfile:
+ dest: /etc/sysconfig/docker
+ regexp: '^OPTIONS=.*'
+ line: "OPTIONS='--insecure-registry=172.30.0.0/16 --selinux-enabled'"
+ when: docker_check.stat.isreg
+
- name: Allow NFS access for VMs
seboolean: name=virt_use_nfs state=yes persistent=yes