You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@airavata.apache.org by ma...@apache.org on 2017/04/28 15:22:55 UTC
[14/50] [abbrv] airavata git commit: scigap prod pga configurations
for a iu, phasta, etc.
scigap prod pga configurations for a iu, phasta, etc.
Project: http://git-wip-us.apache.org/repos/asf/airavata/repo
Commit: http://git-wip-us.apache.org/repos/asf/airavata/commit/7f8272db
Tree: http://git-wip-us.apache.org/repos/asf/airavata/tree/7f8272db
Diff: http://git-wip-us.apache.org/repos/asf/airavata/diff/7f8272db
Branch: refs/heads/develop
Commit: 7f8272db47f123f1e03f6e871cfd06a37325ed20
Parents: 22e9798
Author: Marcus Christie <ma...@apache.org>
Authored: Thu Apr 6 17:06:26 2017 -0400
Committer: Marcus Christie <ma...@apache.org>
Committed: Thu Apr 6 17:06:26 2017 -0400
----------------------------------------------------------------------
.../production/pga_config/iugateway/vars.yml | 56 +++++++++++++++++++
.../production/pga_config/iugateway/vault.yml | 18 +++++++
.../scigap/production/pga_config/nsg/vars.yml | 57 ++++++++++++++++++++
.../scigap/production/pga_config/nsg/vault.yml | 18 +++++++
.../production/pga_config/oiitandy/vars.yml | 56 +++++++++++++++++++
.../production/pga_config/oiitandy/vault.yml | 18 +++++++
.../scigap/production/pga_config/oscer/vars.yml | 56 +++++++++++++++++++
.../production/pga_config/oscer/vault.yml | 18 +++++++
.../production/pga_config/phasta/vars.yml | 56 +++++++++++++++++++
.../production/pga_config/phasta/vault.yml | 18 +++++++
.../production/pga_config/scigap/vars.yml | 1 +
.../production/pga_config/simvascular/vars.yml | 52 ++++++++++++++++++
.../production/pga_config/simvascular/vault.yml | 18 +++++++
dev-tools/ansible/pga-scigap-prod.yml | 6 +++
dev-tools/ansible/roles/pga/defaults/main.yml | 4 ++
.../roles/pga/templates/pga_config.php.j2 | 8 +--
16 files changed, 456 insertions(+), 4 deletions(-)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vars.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vars.yml
new file mode 100644
index 0000000..fd70a17
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vars.yml
@@ -0,0 +1,56 @@
+#
+#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+
+---
+pga_repo: "https://github.com/apache/airavata-php-gateway.git"
+git_branch: "master"
+user: "pga"
+group: "pga"
+doc_root_dir: "/var/www/portals/iugateway"
+vhost_servername: "cybergateway.iu.edu"
+vhost_ssl: True
+# TODO: have Ansible manage these files as well
+ssl_certificate_file: "/etc/pki/tls/certs/cybergateway_iu_edu_cert.cer"
+ssl_certificate_chain_file: "/etc/pki/tls/certs/cybergateway_iu_edu_interm.cer"
+ssl_certificate_key_file: "/etc/pki/tls/private/iugateway.key"
+
+## WSO2 IS related variables
+tenant_domain: "airavata.iub"
+admin_username: "admin"
+admin_password: "{{ vault_admin_password }}"
+oauth_client_key: "{{ vault_oauth_client_key }}"
+oauth_client_secret: "{{ vault_oauth_client_secret }}"
+
+gateway_id: "iugateway"
+# relative to document root dir
+experiment_data_dir: "{{ user_data_dir }}/iugateway"
+# TODO: this is only for testing, we'll need to update this again during the real migration
+gateway_data_store_resource_id: "gf4.ucs.indiana.edu_71a8409a-0713-4a45-985f-22847f63df4e"
+gateway_data_store_ssh_public_key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCjKGnDVSWXJynfzyOOcACuXG8KdIaPvx1idpsMeioYAX+T+W2wK86tHfD2B9QxzmrcjvAZD7/GvTcMotBUQ+5nJyFyYkRDKL5XtC2HWaMijCmsGFgODfc+i3E274Cw9oYAamRPTCUShoqogd9jzW8gaIzTy+2sU5R/dYAUeiHM2ov9SpIJXNuCoT12R948iUd3b2amnBIJvy/DnhorLXz7MQ70l9cWQp986ZVOS32JRUZhk/2nLHQLxP9cwjP3kVXEtoaOZc3lwypOzdA/xJq4pRTb4s8mZ4SaQIzHBPBYneU85+P6j7cjlV3UeN+0YwvnXe1iWaoUuoUFrNmzudlf"
+
+## Portal related variables
+super_admin_portal: "false"
+admin_emails: "['athota@iu.edu', 'sgg@iu.edu']"
+portal_email_username: "pga.airavata@gmail.com"
+portal_email_password: "{{ vault_portal_email_password }}"
+portal_theme: "iugateway"
+portal_theme_repo: "https://github.com/SciGaP/iu-cybergateway-theme.git"
+portal_title: "IU Gateway"
+...
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vault.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vault.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vault.yml
new file mode 100644
index 0000000..c2fcaa7
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/iugateway/vault.yml
@@ -0,0 +1,18 @@
+$ANSIBLE_VAULT;1.1;AES256
+30613430626237373639393261636364373635313266303134366230343561356262363964306533
+3130636130343966313739393031636662626366343038380a356465636138616462396164653866
+66643331343234633439663232313633633664393938623839636130353761366337356439636566
+6632363330653665340a623634393433336366643139626136343732323565353533623962626266
+62653561333538656361363964373735633165386564313733396636323739666234613834653637
+64346562626664623265666362623535633866633564343538663365376139636537336138303766
+65313138363239633034373266343365316362646362336538306565656165613465633231626332
+63323436346535633463303339353638376533366235316463353432306530373036343736363761
+33303634373634613931653939663463613938336435383338373034616638616334646364643732
+65303662626230326235623562373264373331646334323566356437303239323436363239373936
+32623332336633363837373031373030386137343030613234646634303135383465313233313863
+66336339383662363462643531303163363734393438333639663163306336386661623130363663
+61653662343235343030646630393961653234343330613334356239343834376166623962363264
+32643839393966633538393133623433373131653537396234643436633733366338643863393461
+64666139633436353631323863326263303839653261653533663130616130363637366139646366
+33336263306563373836346238386230336233613834363163343664633436323262396332626539
+38306163616362316166613335353536643036386637656563396264343135386136
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vars.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vars.yml
new file mode 100644
index 0000000..583f0b1
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vars.yml
@@ -0,0 +1,57 @@
+#
+#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+
+---
+pga_repo: "https://github.com/apache/airavata-php-gateway.git"
+git_branch: "master"
+user: "pga"
+group: "pga"
+doc_root_dir: "/var/www/portals/nsg"
+vhost_servername: "nsg.scigap.org"
+vhost_ssl: True
+# TODO: have Ansible manage these files as well
+ssl_certificate_file: "/etc/pki/tls/certs/nsg_scigap_org_cert.cer"
+ssl_certificate_chain_file: "/etc/pki/tls/certs/nsg_scigap_org_interm.cer"
+ssl_certificate_key_file: "/etc/pki/tls/private/nsg.scigap.key"
+
+## WSO2 IS related variables
+tenant_domain: "prod.nsg"
+admin_username: "nsgadmin"
+admin_password: "{{ vault_admin_password }}"
+oauth_client_key: "{{ vault_oauth_client_key }}"
+oauth_client_secret: "{{ vault_oauth_client_secret }}"
+user_role_name: "airavata-user"
+
+gateway_id: "nsg"
+# relative to document root dir
+experiment_data_dir: "{{ user_data_dir }}/nsg"
+# TODO: this is only for testing, we'll need to update this again during the real migration
+gateway_data_store_resource_id: "gf4.ucs.indiana.edu_71a8409a-0713-4a45-985f-22847f63df4e"
+#gateway_data_store_ssh_public_key: ""
+
+## Portal related variables
+super_admin_portal: "false"
+admin_emails: "['sgg@iu.edu']"
+portal_email_username: "pga.airavata@gmail.com"
+portal_email_password: "{{ vault_portal_email_password }}"
+#portal_theme: "base"
+#portal_theme_repo: ""
+portal_title: "NSG SciGaP Admin Portal"
+...
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vault.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vault.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vault.yml
new file mode 100644
index 0000000..bd6c7f8
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/nsg/vault.yml
@@ -0,0 +1,18 @@
+$ANSIBLE_VAULT;1.1;AES256
+31653563373664623963356139623437303239303730616666343533383734633833353939376430
+3237393136613135303062643663303835636636323636610a613362373565323339366339363836
+33343766613565663662316364376238633836643134666333373064383439643661656664346532
+3430626262343366620a386166376466366634646635316566356630343166353331366630613933
+65316332373964386463343261343266353937366239323463383236343063656265656664626665
+38666333346332323864643238363931313863393664386634666230326266376537326665313634
+61353536613933376163336634383637623466313264633531363261353862336566633436306266
+64633038323964663631316533633264316238376438353262376261313666623631666534643266
+35626464643831333039643133303830613465393339376537636330373337366335613335623837
+61666531643034643965616130623339653363366531373439303966363935323638363736323031
+61616638643131663036623530363265623830373834303264666130336433383565643136613033
+37303831653563343461303737633334646262356333316563303831323736666564633466613238
+62643664633230333361623965623264643638373031393566333861303634356261623537643136
+63393263326566303131613962643738346231656565316432333064376537383430616535396362
+66633763323531343533636330613033663836306330313236353630636236653936316630303633
+30343038333334623836616264313861396335333232333630303832643739626335643133343539
+66623137366162316632336661613330346632623135373930346239373235313666
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vars.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vars.yml
new file mode 100644
index 0000000..ed2678f
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vars.yml
@@ -0,0 +1,56 @@
+#
+#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+
+---
+pga_repo: "https://github.com/apache/airavata-php-gateway.git"
+git_branch: "master"
+user: "pga"
+group: "pga"
+doc_root_dir: "/var/www/portals/oii-tandy"
+vhost_servername: "scigw.oii.org"
+vhost_ssl: True
+# TODO: have Ansible manage these files as well
+ssl_certificate_file: "/etc/letsencrypt/live/scigw.oii.org/cert.pem"
+ssl_certificate_chain_file: "/etc/letsencrypt/live/scigw.oii.org/fullchain.pem"
+ssl_certificate_key_file: "/etc/letsencrypt/live/scigw.oii.org/privkey.pem"
+
+## WSO2 IS related variables
+tenant_domain: "prod.oii"
+admin_username: "admin"
+admin_password: "{{ vault_admin_password }}"
+oauth_client_key: "{{ vault_oauth_client_key }}"
+oauth_client_secret: "{{ vault_oauth_client_secret }}"
+
+gateway_id: "oiitandy"
+# relative to document root dir
+experiment_data_dir: "{{ user_data_dir }}/oii-tandy"
+# TODO: this is only for testing, we'll need to update this again during the real migration
+gateway_data_store_resource_id: "gf4.ucs.indiana.edu_71a8409a-0713-4a45-985f-22847f63df4e"
+gateway_data_store_ssh_public_key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDW1N6Y2UJul9Y9Nd1jO6j+huPBzOm8uKCMgo7njslDS0WQEXB8+JZ+krZr3PTIWNl9KcRKkrQi86ufzxSImS1fdCIAtNsp3VWZ2hOU4G4h20K9wdSXsi3ppeOveruYqpBHfGwXhDflS0bsof6uRdmQR7nCa5hrVjGuntcs1DKdHSsrxfhc/4w7py7Ema5v32ZvCXYe0s3JpMR3Sd6zCsQBEw84GUGdz6f7K6CjxRuJlWOikbKttrSq+P1tstIdKIX1XxAnuvsbzJhWtJDvtGviQMiokW7SnZQ1KglrmG2R9CIteDhttLOAI5XL1hDL/gK78LSQ7sbF1i1PV+R7yPYt"
+
+## Portal related variables
+super_admin_portal: "false"
+admin_emails: "['techmail@oii.org','sgg@iu.edu','it-alert@oii.org']"
+portal_email_username: "pga.airavata@gmail.com"
+portal_email_password: "{{ vault_portal_email_password }}"
+portal_theme: "oii-gateway-theme"
+portal_theme_repo: "https://github.com/SciGaP/oii-gateway-theme.git"
+portal_title: "OII Science Gateway"
+...
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vault.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vault.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vault.yml
new file mode 100644
index 0000000..d885c2e
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/oiitandy/vault.yml
@@ -0,0 +1,18 @@
+$ANSIBLE_VAULT;1.1;AES256
+62303734386432636433343337306638653838393637386634306137353839616164653435343464
+3461353736383331363362343163343836343239396265320a323863623135306637353635663566
+38343836326532303838633334316334666361323835386630396335626138363139646539316330
+3965356435303133660a663937656434663262633264343163373666396233313662316332643930
+33303237386333346166306137656133326639313565316461313665336438323331356230346364
+65663531353438663730323037303135353164623032396561393937306262366438333465343161
+35363361356163323965633933396331356431343131363639623235333632613432653361383966
+63636234393237663265623730663663646666636430363231656165363036363831353038383363
+32636561353332323432326436633161623239386134653866306261623864386363613935356535
+34336265326137323662366163363637343132623931313835323964393261383432343133323161
+31316239306566306664386233313730373834383739373838383337356532646163633366383063
+38363962363239663831656232623031383836343934623931326538336630623963613164613762
+37376539313762326635373962663432303564356230343231653930333464633634373336333831
+62396133653435653163386434663035316236663365323465663634383732333131326166346636
+30646331653563353238333632653136663530613265613135386533393732323439323932393661
+33306338306435353133306263383866383764643539396232326436643333303862626632363763
+36646636636561353964303132333030306263366635306535333138633935666265
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vars.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vars.yml
new file mode 100644
index 0000000..088a9de
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vars.yml
@@ -0,0 +1,56 @@
+#
+#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+
+---
+pga_repo: "https://github.com/apache/airavata-php-gateway.git"
+git_branch: "master"
+user: "pga"
+group: "pga"
+doc_root_dir: "/var/www/portals/oscer"
+vhost_servername: "sciencegateway.oscer.ou.edu"
+vhost_ssl: True
+# TODO: have Ansible manage these files as well
+ssl_certificate_file: "/etc/letsencrypt/live/sciencegateway.oscer.ou.edu/cert.pem"
+ssl_certificate_chain_file: "/etc/letsencrypt/live/sciencegateway.oscer.ou.edu/fullchain.pem"
+ssl_certificate_key_file: "/etc/letsencrypt/live/sciencegateway.oscer.ou.edu/privkey.pem"
+
+## WSO2 IS related variables
+tenant_domain: "prod.oscer"
+admin_username: "admin"
+admin_password: "{{ vault_admin_password }}"
+oauth_client_key: "{{ vault_oauth_client_key }}"
+oauth_client_secret: "{{ vault_oauth_client_secret }}"
+
+gateway_id: "oscer"
+# relative to document root dir
+experiment_data_dir: "{{ user_data_dir }}/oscer"
+# TODO: this is only for testing, we'll need to update this again during the real migration
+gateway_data_store_resource_id: "gf4.ucs.indiana.edu_71a8409a-0713-4a45-985f-22847f63df4e"
+gateway_data_store_ssh_public_key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDZs3ErVmOoQ7GCRwsBJkh3BQVPaoeDw6cja67kXJPCBP7hQ1m9ld0h+PeIt/O8qwPgVN9kGf2fGeekJ9hTjAN8jk0xnU7og7F1RYg6+TqnugyfKZ22ZjfGf/tcc0Wd5BlokvMVJIsLCIv1N0OyxELrGi33y3U98egzn7r0j0uhtNZVN2AC4m1OpRJL7S9FRv9Z7CBXEs7x1j9ctyi3+Q8kBjWm7D78QPqCd2ODrHIDsPZpHm8CUOwHy9p7M+E2bbhkeGxExQhmBIFF75U4Lm3dzUzSmQGvUOppT+Nler8im7ArxS/8OJHEMOi4nW9J+BvtpDztQDAraJAX+VRNjaH5"
+
+## Portal related variables
+super_admin_portal: "false"
+admin_emails: "['smarru@iu.edu','sgg@iu.edu']"
+portal_email_username: "pga.airavata@gmail.com"
+portal_email_password: "{{ vault_portal_email_password }}"
+portal_theme: "oscer"
+portal_theme_repo: "https://github.com/SciGaP/ou-gateway-theme"
+portal_title: "OU CyberGateway"
+...
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vault.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vault.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vault.yml
new file mode 100644
index 0000000..a04aa9c
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/oscer/vault.yml
@@ -0,0 +1,18 @@
+$ANSIBLE_VAULT;1.1;AES256
+61623562303862643764333631626135396161353430666539386233366431666630643230333861
+3935623062363934653938383630333166373133326235610a343466356664356439393861633438
+65633264353130633262633230363439366232343261343031313331326137383861383232316430
+3661383731376630370a643265313361356330376131626261336566343632313761356334316361
+66373364613063653639353633353036323439336265363466383133313739663265623536653634
+63356665623330643663626533333633366536663363373338653836666665613735623331656235
+61383564613364636363666562376337646330666637323365616234346430396662633239626334
+38303437306235326638633965393033353533393162353262623637323134653162653862373636
+66373266353137333131343631346334386137643765313238366436346138326536656330326162
+65323133383535373539313334336639373036346134333439303033383033393266653131623363
+34363138633939626166643738353062643964343765366366353738373730363763353232303763
+36653335656565396465376364663366363966316630333339353732613164303861333362653639
+62343833656433366433663339326230663866343231616337353966366139666466666336636232
+37626562353933323533326265316666633566303163613437323964313631383561326538366235
+64333964326664353232303962633237346565323665653763666437633832333136356366343233
+63653632353235373133626165313061353336343636653763323039643131313562343630393763
+6130
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vars.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vars.yml
new file mode 100644
index 0000000..cfdb368
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vars.yml
@@ -0,0 +1,56 @@
+#
+#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+
+---
+pga_repo: "https://github.com/apache/airavata-php-gateway.git"
+git_branch: "master"
+user: "pga"
+group: "pga"
+doc_root_dir: "/var/www/portals/phasta"
+vhost_servername: "phasta.scigap.org"
+vhost_ssl: True
+# TODO: have Ansible manage these files as well
+ssl_certificate_file: "/etc/pki/tls/certs/phasta_scigap_org_cert.cer"
+ssl_certificate_chain_file: "/etc/pki/tls/certs/phasta_scigap_org_interm.cer"
+ssl_certificate_key_file: "/etc/pki/tls/private/phasta.scigap.key"
+
+## WSO2 IS related variables
+tenant_domain: "product.phasta"
+admin_username: "phasta_admin"
+admin_password: "{{ vault_admin_password }}"
+oauth_client_key: "{{ vault_oauth_client_key }}"
+oauth_client_secret: "{{ vault_oauth_client_secret }}"
+
+gateway_id: "phasta"
+# relative to document root dir
+experiment_data_dir: "{{ user_data_dir }}/phasta"
+# TODO: this is only for testing, we'll need to update this again during the real migration
+gateway_data_store_resource_id: "gf4.ucs.indiana.edu_71a8409a-0713-4a45-985f-22847f63df4e"
+gateway_data_store_ssh_public_key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCIvxQcdWfZPnXgM1mU++kTuX2ydkQ5BxK0w4stY9qEwJDUoRxF6nstTFBEDkhS34/oBYsJIH9IM4UPxiiplwoIPSYRpqI24pmVNnfJakcsFmxeSVmQRI7SztedXca9IAn9DelJZyORonYsfbsYIDQNzAiMUVs+K9l4flZUqVIZwYrrKfDbd2StC3DUvCugKgJk+v+XsRUxGsebk8wqE273GYPtMt4bdTQFZMfCLg52pXUqrK8RTbL+WdB7uCVXAGC2vu7OsI5+BJSVVUUPiA3vS9oiuZS9qPAYEwowEs+RMl56sGLh5udvhMxaSDn4zqWKTo/LNXcO2p2Y9sit90LD"
+
+## Portal related variables
+super_admin_portal: "false"
+admin_emails: "['eroma.abeysinghe@gmail.com','supun.nakandala@gmail.com','sgg@iu.edu']"
+portal_email_username: "pga.airavata@gmail.com"
+portal_email_password: "{{ vault_portal_email_password }}"
+portal_theme: "phasta"
+portal_theme_repo: "https://github.com/SciGaP/phasta-portal-theme.git"
+portal_title: "PHASTA Science Gateway"
+...
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vault.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vault.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vault.yml
new file mode 100644
index 0000000..a7b1f5b
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/phasta/vault.yml
@@ -0,0 +1,18 @@
+$ANSIBLE_VAULT;1.1;AES256
+34393362646639623536616530363932393732383265616430636166353537623439353263386461
+3937376637623966313861373164643961643630656131650a316265306638353963643339373263
+30663964393533616566316163373734336234323663643430623063333866356164626639626333
+3764646161363333370a663335363831316465653734386131373338623831633266376434636131
+35653766363835316338643739666339333638303231636135613936376231383431656562616662
+33306262363965396131353237326330643339613834633761373666373765666135316235366466
+64616334353161643638323561313438346662353038643835386133623165373831643562393332
+66393665653833656638396337626436386234666162666438393738643964626632306631373736
+62653564333961633462363534653866323231366263313430316630633833663239316262613564
+37663561386161383531626135353361363064633564316162383262666161613733663064643835
+31626663333031623332646463333833623635373035303437656362343934343135376564613361
+39313133653562613466623762393031393065663066333536326263353166313831326163333833
+30393738323734333432613232633363653664326438623565323938313265343236326336613936
+39306636633535316161333533323166383662373630343431323337343334653338363364623636
+31656636396361383462353039633561363164633035386366306131643432666638626464353532
+34623262343637646134343131363365383830626137373264343162306136623161643437303563
+37663264303864373331613431666363366562353831366439633932326562353761
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml
index 5e77eea..9822f96 100644
--- a/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml
@@ -41,6 +41,7 @@ admin_username: "scigap_admin"
admin_password: "{{ vault_admin_password }}"
oauth_client_key: "{{ vault_oauth_client_key }}"
oauth_client_secret: "{{ vault_oauth_client_secret }}"
+user_role_name: "airavata-user"
gateway_id: "scigap"
# relative to document root dir
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vars.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vars.yml
new file mode 100644
index 0000000..2d745fe
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vars.yml
@@ -0,0 +1,52 @@
+#
+#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+
+---
+pga_repo: "https://github.com/apache/airavata-php-gateway.git"
+git_branch: "master"
+user: "pga"
+group: "pga"
+doc_root_dir: "/var/www/portals/simvascular"
+vhost_servername: "gateway.simvascular.org"
+vhost_ssl: False
+
+## WSO2 IS related variables
+tenant_domain: "airavata.simvascular"
+admin_username: "admin"
+admin_password: "{{ vault_admin_password }}"
+oauth_client_key: "{{ vault_oauth_client_key }}"
+oauth_client_secret: "{{ vault_oauth_client_secret }}"
+
+gateway_id: "simvascular"
+# relative to document root dir
+experiment_data_dir: "{{ user_data_dir }}/simvascular"
+# TODO: this is only for testing, we'll need to update this again during the real migration
+gateway_data_store_resource_id: "gf4.ucs.indiana.edu_71a8409a-0713-4a45-985f-22847f63df4e"
+gateway_data_store_ssh_public_key: ""
+
+## Portal related variables
+super_admin_portal: "false"
+admin_emails: "['sgg@iu.edu']"
+portal_email_username: "pga.airavata@gmail.com"
+portal_email_password: "{{ vault_portal_email_password }}"
+portal_theme: "base"
+#portal_theme_repo: ""
+portal_title: "SimVascular Gateway Portal"
+...
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vault.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vault.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vault.yml
new file mode 100644
index 0000000..d25f6cb
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/production/pga_config/simvascular/vault.yml
@@ -0,0 +1,18 @@
+$ANSIBLE_VAULT;1.1;AES256
+63303434393531636337626266376134353865333465663338616665363738653165643161343662
+3034303964666433656232316336313865346332316666370a343236373330653465663362613733
+33313862383462376664643466346337613536633862636537373930316365623234666536633532
+3064353436333838650a656234643965623130633262326561383937393233373537353139346362
+38366331643435613965393034323564656633316533653465373561366634386231663033343262
+32646538353737393665613461333233353036313338646130613131643465656131343830313435
+34626138333330653830323038313365386464396437363065313539666632323836623033616564
+62343766636133316166653963666339323632623462356163316662313232383963643561636466
+63663261326536653435303065646561386133353733616561623736646633636665633939313139
+37393963633035333237346535336439383234333532343035313733306232613636613862303634
+39383961626264363833363935323762393466376263366135363038383339373963303563343063
+36323535386430316363623734643931323138643063316233616638373864613835336466303561
+61303137343630626135313934643539613936396530636436313262303861636361396333636162
+63303331363561663034383262623939333137306139616437616533373835613962616262376230
+63636634353463653934623433383265346463623637366133373530363561333461383437663637
+35346662336332306565646463626234313263616131373230396335633863666461653530643932
+62343065306438343232323361656231306138643034373663313933336265376439
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/pga-scigap-prod.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/pga-scigap-prod.yml b/dev-tools/ansible/pga-scigap-prod.yml
index 0e58808..f5d5bd2 100644
--- a/dev-tools/ansible/pga-scigap-prod.yml
+++ b/dev-tools/ansible/pga-scigap-prod.yml
@@ -22,5 +22,11 @@
- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/seagrid"
- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/testdrive"
- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/scigap"
+- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/iugateway"
+- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/phasta"
+- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/nsg"
+- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/oscer"
+- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/oiitandy"
+- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/simvascular"
...
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/roles/pga/defaults/main.yml
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/roles/pga/defaults/main.yml b/dev-tools/ansible/roles/pga/defaults/main.yml
index eb0308d..e2690f3 100644
--- a/dev-tools/ansible/roles/pga/defaults/main.yml
+++ b/dev-tools/ansible/roles/pga/defaults/main.yml
@@ -39,6 +39,10 @@ admin_username: "tdaadmin"
admin_password: "SciDeploy"
oauth_client_key: "RuLl_Uw7i_KXaLoAGJkiasTfyBYa"
oauth_client_secret: "vD9yi2ANkChzgWiih3RahrIcfsoa"
+admin_role_name: "admin"
+admin_readonly_role_name: "admin-read-only"
+user_role_name: "gateway-user"
+initial_role_name: "user-pending"
## Airavata Client related variables
#airavata_server: "tls://gw77.iu.xsede.org"
http://git-wip-us.apache.org/repos/asf/airavata/blob/7f8272db/dev-tools/ansible/roles/pga/templates/pga_config.php.j2
----------------------------------------------------------------------
diff --git a/dev-tools/ansible/roles/pga/templates/pga_config.php.j2 b/dev-tools/ansible/roles/pga/templates/pga_config.php.j2
index 6db651a..78cb65b 100644
--- a/dev-tools/ansible/roles/pga/templates/pga_config.php.j2
+++ b/dev-tools/ansible/roles/pga/templates/pga_config.php.j2
@@ -11,17 +11,17 @@ return array(
/**
* Admin Role Name
*/
- 'admin-role-name' => 'admin',
+ 'admin-role-name' => '{{ admin_role_name }}',
/**
* Read only Admin Role Name
*/
- 'read-only-admin-role-name' => 'admin-read-only',
+ 'read-only-admin-role-name' => '{{ admin_readonly_role_name }}',
/**
* Gateway user role
*/
- 'user-role-name' => 'gateway-user',
+ 'user-role-name' => '{{ user_role_name }}',
/**
* Initial user role. This is the initial user role assigned to a new
@@ -29,7 +29,7 @@ return array(
* grant new users that role, or set to some other role ('user-pending')
* to require admin approval before users have access.
*/
- 'initial-role-name' => 'user-pending',
+ 'initial-role-name' => '{{ initial_role_name }}',
/**
* Tenant Domain