simple_vm_deploy_avassa.yml

---
- name: Simple vm deployment of Debian 11 template and  Avassa Edge Enforcer # use -l filter to specify cluster vs. full inventory
  hosts: all 
  vars:  
    vmname: "{{ site_name }}-avassa" # generally would use site_name pattern from inventory for fleet deployment
#    template_name: debian11 # not used - currently image base name is used for template name 
    image_url: 
      - "https://cloud.debian.org/images/cloud/bullseye/latest/debian-11-generic-amd64.qcow2"
    image_path: "/Users/davedemlow/tmp/" #~/tmp/" #path to download file
    avassa_ct_api: "api.demo.sc-platform.avassa.net"
    avassa_ct_user: "supd@scalecomputing.com"
    avassa_ct_password: "supdsupd"
    avassa_ct_deployment: "popcorn-deployment"
  connection: local
  gather_facts: false
  strategy: host_pinned # free  #allows each cluster to start next task before all clusters have finished current task
  environment:  # if set here - hypercore modules will automatically use this for each remote cluster - avoiding need to specify cluster_instance for each test
    SC_HOST: "https://{{ inventory_hostname }}"
    SC_USERNAME: "{{ scale_user | default('admin') }}"
    SC_PASSWORD: "{{ scale_pass | default('admin') }}"
    SC_TIMEOUT: 2000000
    SC_AUTH_METHOD: local # or oidc 

  tasks:
    - name: Set image name as ansible fact (for single image)
      ansible.builtin.set_fact:
        image_name: "{{ item | split('/') | last }}"
      loop: "{{ image_url }}"

    - name: Download Virtual Disk(s) image from URL list
      ansible.builtin.get_url:
        url: "{{ item }}"
        dest: "{{ image_path }}{{ image_name}}"
        timeout: 10000
        validate_certs: false
        force: false
      register: download
      loop: "{{ image_url }}"

    - name: Delete existing uploading-"{{ image_name }}" virtual disk # recovers from any previous failed upload 
      scale_computing.hypercore.virtual_disk:
        name: "uploading-{{ image_name }}"
        state: absent
      register: deleted
      loop: "{{ image_url }}"      

    - name: Upload Virtual Disk {{ item | split('/') | last }}" to HyperCore "{{ inventory_hostname }}"
      scale_computing.hypercore.virtual_disk:
        name: "{{ image_name }}"
        source: "{{ image_path }}{{ image_name }}"
        state: present
      register: uploadResult
      loop: "{{ image_url }}" 
      ignore_errors: false

  # TODO #2 - could use a handler to force update virtual disk attached to template only if there is a new download or upload?

    - name: Get info about template VM {{ image_name }}
      scale_computing.hypercore.vm_info:
        vm_name: "{{ image_name }}"
      register: vm_info_result

    - name: Create "{{ image_name }}" template vm if it does not already exist 
      scale_computing.hypercore.vm:
        vm_name: "{{ image_name }}"
        description: "{{ image_url[0] }} template "
        state: present
        tags:
          - template
          - avassa
          - vsdupload
          - serial
        memory: "{{ '1 GB' | human_to_bytes }}"
        vcpu: 0 # makes template vm unbootable - must change cpu on cloned vm 
        power_state: stop
        disks:
          - type: ide_cdrom
            disk_slot: 0
        nics:
          - vlan: 0
            type: virtio
        operating_system:  os_other
      when:  vm_info_result.records | length == 0   #only create VM if it doesn't already exist - else would delete existing template disk
      register: template

#TODO - may want a way to force update of virtual disk IN TEMPLATE vm - maybe as simple as delete template if the image is updated?
    - name: Attach uploaded virtual disk to  "{{ image_name }}" template  # this will NOT attach / update latest image 
      scale_computing.hypercore.virtual_disk_attach:
        name: "{{ image_name }}"
        vm_name: "{{ image_name }}"
        disk:
          type: virtio_disk
          disk_slot: 1
          disable_snapshotting: false
      register: diskattached

    # - name: Disk desired configuration for "{{ image_name }}"   # seems resizing disk before first boot causes panic on debian11 bulseye unless serial port exists - add SERIAL to tag or description
    #   scale_computing.hypercore.vm_disk:
    #     vm_name: "{{ image_name }}"
    #     items:
    #       - disk_slot: 1
    #         type: virtio_disk
    #         size: "{{ '300 GB' | human_to_bytes }}" # 50GB | human to bytes results in 53.7GB VSD in Hypercore
    #     state: present

    - name: Set attached vsd device as bootable
      scale_computing.hypercore.vm_boot_devices:
        vm_name: "{{ image_name }}"
        items:
          - type: virtio_disk
            disk_slot: 1
        state: present
      register: bootable

# template complete! 

    - name: Clone and configure vm "{{ vmname }}" from template "{{ image_name }}" # will only clone if "{{ vmname }}" does not already exist
      scale_computing.hypercore.vm_clone:
        vm_name: "{{ vmname }}"
        source_vm_name: "{{ image_name }}"
        cloud_init:
          user_data: |
            #cloud-config
            password: "password"
            chpasswd: { expire: False }
            ssh_pwauth: True
            ssh_authorized_keys: # Add your ssh public key for publickey authentication
                - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDihWWhjoPj8KVLtdLDwNJQ71zi9An0iUFjefRWu2Eju ddemlow@scalecomputing.com
                - MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTiBEMhRymL0yqDAGF33DVwzfqp2CcyKJOOq5A862ocnOKRVhKoaU6ZfXnyLanqbylMKut5kuCRfq51nR7eBGpM6V0IUe5wlgvRB1HtXJHDBedclRaPWa8XQikk8AOscbmGufcs10TEFDH45L4tJd3ym+VD8mKp7PIge6yvhxaQaPfGx3MafEPm/ISpDLxbNueTIHBUt3WE7lfPXZ3owHIaEEht3L7hXvEqG801x/snT7Y1NJwfEpfD2EClDwoHHdln+UzJyxsbGZgmCgTVmXvnaz833lb2pEvmzfRZQybuXMtFB4/q8evc0CfIhqIcRaLzdImxgV
            disable_root: false # allow ssh root login
            runcmd:
              - 'curl -s "https://{{ avassa_ct_api }}"/install | /bin/sh -s -- -y -c'
              - |
                export HOSTNAME=$(cat /proc/sys/kernel/hostname)
                export HOME=/root
                echo "{{ avassa_ct_password }}" | /usr/bin/supctl --host "{{ avassa_ct_api }}" do login "{{ avassa_ct_user }}"
                /usr/bin/supctl create system sites $HOSTNAME <<EOF
                  name: "$HOSTNAME"
                  descriptive-name: "$HOSTNAME"
                  type: edge
                  topology:
                    parent-site: control-tower
                  ingress-allocation-method: dhcp
                  hosts:
                    - host-id: $(curl -s https://{{ avassa_ct_api }}/install | sudo sh -s -- --get-host-id)
                EOF
              - |
                export HOSTNAME=$(cat /proc/sys/kernel/hostname)
                export HOME=/root
                echo "{{ avassa_ct_password }}" | /usr/bin/supctl --host "{{ avassa_ct_api }}" do login "{{ avassa_ct_user }}"
                until /usr/bin/supctl show --site "$HOSTNAME" system cluster hosts; do sleep 10; done
                /usr/bin/supctl do application-deployments "{{ avassa_ct_deployment }}" redeploy
          meta_data: |
            dsmode: local
            local-hostname: "{{ vmname }}"

 #TODO - could register VM with Avassa control tower directly at this stage before even starting VM and remove those steps from cloud-init
 
    - name: Disk desired configuration for "{{ vmname }}"   # seems resizing disk before first boot causes panic on debian11 bulseye unless serial port exists - add SERIAL to tag or description
      scale_computing.hypercore.vm_disk:  
        vm_name: "{{ vmname }}"
        items:
          - disk_slot: 1
            type: virtio_disk
            size: "{{ '300 GB' | human_to_bytes }}" # 50GB | human to bytes results in 53.7GB VSD in Hypercore
        state: present

    - name: Vm desired configuration and state for "{{ vmname }}"
      scale_computing.hypercore.vm_params:
        vm_name: "{{vmname}}"
        memory: "{{ '4 GB' | human_to_bytes }}"
        description: debian 11 - user=debian - password=password - avassa EE - SERIAL
        tags:
          - avassa
          - "{{vmname}}"
          - ansible
          - "{{ site_name }}"
          - ansible_group__"{{vmname}}" # this will create tag used by hypercore inventory plugin when executing towards VM hosts
          - SERIAL
        vcpu: 4
        power_state: start