cert_manager

Ansible role to install cert-manager operator

Privilege escalation

If apply, please explain the privilege escalation done in this role.

Parameters

• cifmw_cert_manager_basedir: (String) Base directory. Defaults to cifmw_basedir which defaults to ~/ci-framework-data.

• cifmw_cert_manager_manifests_dir: (String) Directory in where OCP manifests will be placed. Defaults to "{{ cifmw_manifests | default(cifmw_cert_manager_basedir ~ '/artifacts/manifests') }}".

• cifmw_cert_manager_namespace: (String) The namespace where OCP resources will be installed. Defaults to cert-manager-operator.

• cifmw_cert_manager_olm_operator_group: (Dict) The OperatorGroup resource to be used to install the cert-manager operator.

• cifmw_cert_manager_olm_subscription: (Dict) The Subscription resource to be used to install the cert-manager operator.

• cifmw_cert_manager_subscription_source: (String) The Source of Subscription resource to pull cert-manager operator content.

• cifmw_cert_manager_subscription_sourcenamespace: (String) The Source namespace of Subscription resource to pull cert-manager operator content.

• cifmw_cert_manager_validate: (Bool) Validate the cert-manager api. Default to True.

• cifmw_cert_manager_version: (String) Version of cert_manager tool. Default to latest.

• cifmw_cert_manager_crds: (List) List of cert-manager crds to cleanup.

Examples

---
- hosts: localhost
  vars:
    cifmw_openshift_user: "kubeadmin"
    cifmw_openshift_password: "12345678"
    cifmw_openshift_kubeconfig: "{{ ansible_user_dir }}/.crc/machines/crc/kubeconfig"
    ansible_user_dir: "{{ lookup('env', 'HOME') }}"
    cifmw_path: "{{ ansible_user_dir }}/.crc/bin:{{ ansible_user_dir }}/.crc/bin/oc:{{ ansible_user_dir }}/bin:{{ ansible_env.PATH }}"
  tasks:
    - ansible.builtin.include_role:
        name: cert_manager