Initial copy from ee-demo

2025-10-07 07:58:21 -04:00
commit e1a3116b85
11 changed files with 2283 additions and 0 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -0,0 +1 @@
+context/
--- a/ansible-navigator.log
+++ b/ansible-navigator.log
--- a/build.sh
+++ b/build.sh
@@ -0,0 +1,2 @@
+#!/bin/sh
+ansible-builder build  -v 3 --build-arg ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_TOKEN=$ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_TOKEN --build-arg ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_TOKEN=$ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_TOKEN --build-arg ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_TOKEN=$ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_TOKEN
--- a/build_redhat.sh
+++ b/build_redhat.sh
@@ -0,0 +1,2 @@
+#!/bin/sh
+ansible-builder build  -v 3
--- a/collections/ansibleguy-opnsense-1.2.8.tar.gz
+++ b/collections/ansibleguy-opnsense-1.2.8.tar.gz
--- a/collections/requirements.yml
+++ b/collections/requirements.yml
@@ -0,0 +1,3 @@
+collections:
+- name: ansibleguy-opnsense-1.2.8.tar.gz
+  version: 1.2.8
--- a/execution-environment.yml
+++ b/execution-environment.yml
@@ -0,0 +1,70 @@
+---
+version: 3
+
+build_arg_defaults:
+  ANSIBLE_GALAXY_CLI_COLLECTION_OPTS: "-c --disable-gpg-verify -v"
+
+additional_build_files:
+  - src: 1password.repo
+    dest: files/
+  - src: 1password.asc
+    dest: files/
+
+additional_build_steps:
+  prepend_galaxy:
+   - ENV ANSIBLE_GALAXY_SERVER_LIST=pah_validated,pah_certified,pah_community
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_URL=https://aap.toal.ca/api/galaxy/content/rh-certified
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_URL=https://aap.toal.ca/api/galaxy/content/community
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_URL=https://aap.toal.ca/api/galaxy/content/validated
+
+  prepend_builder: 
+#   - ENV PKGMGR_OPTS="--nodocs --setopt=install_weak_deps=0 --setopt=rhocp-4.12-for-rhel-8-x86_64-rpms.enabled=true --setopt=ansible-automation-platform-2.5-for-rhel-8-x86_64-rpms.enabled=true"
+
+  prepend_final:
+#   - ENV PKGMGR_OPTS="--nodocs --setopt=install_weak_deps=0 --setopt=rhocp-4.12-for-rhel-8-x86_64-rpms.enabled=true --setopt=ansible-automation-platform-2.5-for-rhel-8-x86_64-rpms.enabled=true"
+   - RUN whoami
+   - RUN cat /etc/os-release
+
+  prepend_base:
+    - COPY _build/files/1password.repo /etc/yum.repos.d/1password.repo
+    - COPY _build/files/1password.asc /tmp/
+    - ENV PKGMGR_OPTS "--nodocs --setopt install_weak_deps=0 --enablerepo=1password"
+    - RUN rpm --import /tmp/1password.asc
+  prepend_builder:
+    - COPY _build/files/1password.repo /etc/yum.repos.d/1password.repo
+    - COPY _build/files/1password.asc /tmp/
+    - ENV PKGMGR_OPTS "--nodocs --setopt install_weak_deps=0 --enablerepo=1password" 
+    - RUN rpm --import /tmp/1password.asc
+
+dependencies:
+#  ansible_core:
+#    package_pip: ansible-core>=2.17.4
+#  ansible_runner:
+#    package_pip: ansible-runner
+  galaxy: requirements.yml
+  python: requirements.txt
+  system:
+    - genisoimage
+    - jq
+    - python3.11-devel
+    - gcc
+    - systemd-devel
+    - libxml2-devel
+    - 1password-cli
+#  python_interpreter:
+#    package_system: python3.11
+#    python_path: "/usr/bin/python3.11"
+
+images:
+  base_image:
+#    name: 'registry.redhat.io/ansible-automation-platform-25/ansible-dev-tools-rhel8:latest'
+    name: 'registry.redhat.io/ansible-automation-platform-25/ee-minimal-rhel9:latest'
+options:
+  package_manager_path: /usr/bin/microdnf
+  tags: 
+    - ee-demo:latest
+    - aaphub.toal.ca/ee-demo:latest
+  
--- a/execution-environment.yml.broken-lint
+++ b/execution-environment.yml.broken-lint
@@ -0,0 +1,48 @@
+---
+version: 3
+
+build_arg_defaults:
+  ANSIBLE_GALAXY_CLI_COLLECTION_OPTS: "-c --disable-gpg-verify -v"
+
+additional_build_steps:
+  prepend_galaxy:
+   - ENV PIP_OPTS="--cache-dir=/output/wheels"
+   - ENV ANSIBLE_GALAXY_SERVER_LIST=pah_validated,pah_certified,pah_community
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_URL=https://aaphub.toal.ca/api/galaxy/content/rh-certified
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_URL=https://aaphub.toal.ca/api/galaxy/content/community
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_URL=https://aaphub.toal.ca/api/galaxy/content/validated
+  append_base:
+   - ENV PIP_OPTS="--cache-dir=/output/wheels"
+   - RUN microdnf remove -y ansible-lint
+
+  prepend_builder: 
+   - ENV PKGMGR_OPTS="--nodocs --setopt=install_weak_deps=0 --setopt=rhocp-4.12-for-rhel-9-x86_64-rpms.enabled=true --setopt=ansible-automation-platform-2.5-for-rhel-9-x86_64-rpms.enabled=true"
+
+  prepend_final:
+   - ENV PKGMGR_OPTS="--nodocs --setopt=install_weak_deps=0 --setopt=rhocp-4.12-for-rhel-9-x86_64-rpms.enabled=true --setopt=ansible-automation-platform-2.5-for-rhel-9-x86_64-rpms.enabled=true"
+   - RUN whoami
+   - RUN cat /etc/os-release
+
+dependencies:
+  ansible_core:
+    package_pip: ansible-core>=2.14
+  ansible_runner:
+    package_pip: ansible-runner
+#  galaxy: requirements.yml
+  python: requirements.txt
+  system:
+    - genisoimage
+    - jq
+    - python3-pip
+  exclude:
+    python:
+      - cryptography
+
+images:
+  base_image:
+    name: 'registry.redhat.io/ansible-automation-platform-24/ee-minimal-rhel9:latest'
+options:
+  package_manager_path: /usr/bin/microdnf
--- a/execution-environment.yml.maybe
+++ b/execution-environment.yml.maybe
@@ -0,0 +1,57 @@
+---
+version: 3
+
+build_arg_defaults:
+  ANSIBLE_GALAXY_CLI_COLLECTION_OPTS: "-c --disable-gpg-verify -v"
+
+additional_build_steps:
+  prepend_galaxy:
+   - ENV PIP_OPTS="--cache-dir=/output/wheels"
+   - ENV ANSIBLE_GALAXY_SERVER_LIST=pah_validated,pah_certified,pah_community
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_CERTIFIED_URL=https://aaphub.toal.ca/api/galaxy/content/rh-certified
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_COMMUNITY_URL=https://aaphub.toal.ca/api/galaxy/content/community
+   - ARG ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_TOKEN
+   - ENV ANSIBLE_GALAXY_SERVER_PAH_VALIDATED_URL=https://aaphub.toal.ca/api/galaxy/content/validated
+  append_base:
+   - ENV PIP_OPTS="--cache-dir=/output/wheels"
+   - RUN microdnf remove -y ansible-lint
+
+  prepend_builder: 
+   - ENV PKGMGR_OPTS="--nodocs --setopt=install_weak_deps=0 --setopt=rhocp-4.12-for-rhel-9-x86_64-rpms.enabled=true --setopt=ansible-automation-platform-2.5-for-rhel-9-x86_64-rpms.enabled=true"
+
+  prepend_final:
+   - ENV PKGMGR_OPTS="--nodocs --setopt=install_weak_deps=0 --setopt=rhocp-4.12-for-rhel-9-x86_64-rpms.enabled=true --setopt=ansible-automation-platform-2.5-for-rhel-9-x86_64-rpms.enabled=true"
+   - RUN whoami
+   - RUN cat /etc/os-release
+
+dependencies:
+  ansible_core:
+    package_pip: ansible-core>=2.14
+  ansible_runner:
+    package_pip: ansible-runner
+#  galaxy: requirements.yml
+  python: requirements.txt
+  system:
+    - genisoimage
+    - jq
+    - python3-Cython
+    - python3.11-devel
+    - gcc
+#  exclude:
+#    python:
+#      - cryptography
+  python_interpreter:
+    package_system: python3.11
+    python_path: "/usr/bin/python3.11"
+
+images:
+  base_image:
+    name: 'registry.redhat.io/ansible-automation-platform-25/ee-minimal-rhel9:latest'
+options:
+  package_manager_path: /usr/bin/microdnf
+  tags: 
+    - ee-demo:latest
+    - aaphub.toal.ca/ee-demo:latest
+  
--- a/requirements.txt
+++ b/requirements.txt
@@ -0,0 +1,8 @@
+aiohttp
+infoblox-client
+PyVMomi
+netifaces
+python-gitlab
+httpx
+ansible-lint
+azure-cli
--- a/requirements.yml
+++ b/requirements.yml
@@ -0,0 +1,61 @@
+---
+# A YAML list of collections we depend on, eg:
+# - name: community.general
+#   version: x.y.z  (optional)
+#   source: https://cloud.redhat.com/api/automation-hub (optional)
+
+collections:
+  - name: azure.azcollection
+    version: '>=2.7.0'
+  - name: community.vmware
+    version: '>=2.10.0'
+  - name: ansible.netcommon
+    version: '>=4.0.0'
+  - name: cloud.common
+    version: '>=2.1.2'
+  - name: infoblox.nios_modules
+    version: '>=1.4.0'
+  - name: vmware.vmware_rest
+    version: '>=2.2.0'
+  - name: community.mysql
+    version: '>=3.8.0'
+  - name: community.postgresql
+    version: '>=2.2.0'
+  - name: community.crypto
+  - name: community.general
+    version: '>=5.8.0'
+  - name: community.windows
+  - name: chocolatey.chocolatey
+  - name: redhat.satellite
+    version: '>=3.14.0'
+  - name: f5networks.f5_modules
+  - name: f5networks.f5_bigip
+    version: '>=1.10.0'
+  - name: netbox.netbox
+  - name: infra.controller_configuration
+  - name: infra.ah_configuration
+  - name: infra.ee_utilities
+  - name: infra.aap_utilities
+  - name: ansible.platform
+  - name: ansible.hub
+  - name: ansible.controller
+  - name: ansible.eda
+  - name: infra.aap_configuration
+  - name: sensu.sensu_go
+#  - name: middleware_automation.jws
+  - name: redhat.eap
+  - name: redhat.rhel_idm
+  - name: cisco.asa
+  - name: cisco.aci
+  - name: fedora.linux_system_roles
+  - name: servicenow.itsm
+    version: '>=2.4.0'
+#  - name: lab.azure_deployment
+#    source: https://github.com/ansible-content-lab/azure_ansible_deployment.git
+#    type: git
+  - name: ansibleguy.opnsense
+    source: https://github.com/O-X-L/ansible-opnsense.git
+    type: git
+  - name: community.hashi_vault
+  - name: containers.podman
+  - name: cloud.terraform