forked from ausaccessfed/shibboleth-idp5-installer
-
Notifications
You must be signed in to change notification settings - Fork 1
/
deploy
executable file
·123 lines (110 loc) · 2.89 KB
/
deploy
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
#!/bin/bash
declare -a nodes
the_install_base=/opt
working_dir=$the_install_base/shibboleth-idp5-installer/repository
cd $working_dir || exit
function get_nodes {
i=1
getting_nodes=false
for line in $(cat ansible_hosts)
do
if [ $line == "[idp-servers]" ]; then
getting_nodes=true
else
if [[ "$line" == [* ]]; then
getting_nodes=false
else
if ( $getting_nodes ); then
nodes[$i]=$line
fi
fi
fi
done
}
function server_patch () {
patch=`grep "server_patch:" host_vars/$1`
if [[ $patch == "server_patch: \"false\"" ]]; then
echo " Node: $1 will NOT be patched"
else
echo " Node: $1 will be patched"
fi
}
get_nodes
echo ${nodes[*]}
dry=false
auto=false
while getopts ":dhvy" opt; do
case $opt in
h) # Show basic help
echo "Usage:"
echo " deploy -h Displays this help message."
echo " deploy -v Displays the version of the installer."
echo " deploy -d Performs a Dry Run of the deployment."
echo " deploy -y automatically answer yes for all questions."
echo " deploy Deploys changes the IdP."
echo
exit 0
;;
v) # Show version of installer
cat VERSION
exit 0
;;
d) # Setup for a Dry run
dry=true
;;
y) # Setup for auto answer y
auto=true
;;
\? ) echo "Usage: deploy [-h] [-v] [-d]"
exit 1
;;
esac
done
if [[ $dry = true ]]
then
echo -e "\nDry run deploy"
echo -e "--------------\n"
echo -e " The following actions are planned to run in the next deployment.\n"
else
echo -e "\nDeploying Shibboleth V5 IdP"
echo -e "---------------------------\n"
echo -e " This process will perform the following ACTIONS: \n"
fi
echo " 1. Update underlying operating system packages to ensure any security issues are addressed"
echo ""
for x in ${nodes[*]}
do
server_patch $x
done
echo ""
echo " 2. Apply any configuration changes made within the assets directory for: "
echo " * Shibboleth IdP"
echo " * Jetty"
echo ""
echo -e " 3. RESTART all dependant processes.\n"
echo "You MUST have a tested rollback plan in place before continuing."
echo -e "\n-----\n"
if [[ $auto = true ]]
then
response="y"
else
if [[ $dry = true ]]
then
read -r -p "Are you sure you wish to continue with the dry run? [y/n] " response
else
read -r -p "Are you sure you wish to continue with the process as detailed above? [y/n] " response
fi
response=${response,,}
fi
if [[ $response =~ ^(yes|y)$ ]]
then
if [[ $dry = true ]]
then
ansible-playbook -i ansible_hosts site_v5.yml --force-handlers --extra-var="install_base=$the_install_base" --check
else
ansible-playbook -i ansible_hosts site_v5.yml --force-handlers --extra-var="install_base=$the_install_base"
fi
else
echo -e "\nNo changes made, exiting."
exit 0
fi