Houzhong Xu
e8bfc76038
2
3 主要变更:
4 - 重构Terraform/OpenTofu目录结构,统一迁移至infrastructure/opentofu
5 - 添加"7天创造世界"文档,记录基础设施建设演进逻辑
6 - 更新Consul集群配置管理经验,添加实际案例和解决方案
7 - 修正README中的Sticky Note,反映Consul集群健康状态
8 - 添加Ansible部署配置和inventory文件
9 - 完善项目文档结构,添加各组件配置指南
10
11 技术架构演进:
12 - 第1天: Tailscale网络连接基础 ✅
13 - 第2天: Ansible分布式控制 ✅
14 - 第3天: Nomad服务感知与任务调度 ✅
15 - 第4天: Consul配置集中管理 ✅
16 - 第5天: OpenTofu状态一致性 ✅
17 - 第6天: Vault密钥管理 ⏳
18 - 第7天: Waypoint应用部署 ⏳
36 lines
851 B
YAML
36 lines
851 B
YAML
---
|
|
# install_vault.yml
|
|
- name: Install HashiCorp Vault
|
|
hosts: vault_servers
|
|
become: yes
|
|
tasks:
|
|
- name: Check if Vault is already installed
|
|
command: which vault
|
|
register: vault_check
|
|
ignore_errors: yes
|
|
changed_when: false
|
|
|
|
- name: Install Vault using apt
|
|
apt:
|
|
name: vault
|
|
state: present
|
|
update_cache: yes
|
|
when: vault_check.rc != 0
|
|
|
|
- name: Create Vault data directory
|
|
file:
|
|
path: "{{ vault_data_dir | default('/opt/nomad/data/vault/config') }}"
|
|
state: directory
|
|
owner: root
|
|
group: root
|
|
mode: '0755'
|
|
recurse: yes
|
|
|
|
- name: Verify Vault installation
|
|
command: vault --version
|
|
register: vault_version
|
|
changed_when: false
|
|
|
|
- name: Display Vault version
|
|
debug:
|
|
var: vault_version.stdout |