Change gitea config;Remove image compression logic;Switch to template;Reenable/Move workaround

ansible/roles/firstboot/files/ansible_payload/roles/metacluster/tasks/assets.yml

@@ -1,12 +1,5 @@
-- name: Extract container images
-  ansible.builtin.unarchive:
-    src: /opt/metacluster/container-images/image-tarballs.tgz
-    dest: /opt/metacluster/container-images
-    list_files: yes
-  register: imagetarballs
-
 - name: Import container images
   ansible.builtin.command:
     cmd: k3s ctr image import {{ item }}
     chdir: /opt/metacluster/container-images
-  loop: "{{ imagetarballs.files }}"
+  with_fileglob: /opt/metacluster/container-images/*.tar

ansible/roles/firstboot/files/ansible_payload/roles/metacluster/tasks/certauthority.yml

@@ -29,20 +29,19 @@
 - name: Store root certificate in namespaced secrets
   kubernetes.core.k8s:
     state: present
-    definition:
-      apiVersion: v1
-      kind: Secret
-      metadata:
-        name: step-certificates-certs
-        namespace: "{{ item.namespace }}"
-      data:
-        "{{ item.key }}": "{{ stepca_cm_certs.resources[0].data['root_ca.crt'] | b64encode }}"
+    template: secret.j2
+  vars:
+    _template:
+      name: step-certificates-certs
+      namespace: "{{ item.namespace }}"
+      key: "{{ item.filename }}"
+      value: "{{ stepca_cm_certs.resources[0].data['root_ca.crt'] | b64encode }}"
     kubeconfig: "{{ kubeconfig.path }}"
   loop:
     - namespace: argo-cd
-      key: custom-ca-certificates.crt
+      filename: custom-ca-certificates.crt
     - namespace: kube-system
-      key: root_ca.crt
+      filename: root_ca.crt
 
 - name: Configure step-ca passthrough ingress
   ansible.builtin.template:

ansible/roles/firstboot/files/ansible_payload/roles/metacluster/tasks/cleanup.yml

@@ -1,21 +1,9 @@
-# - name: Create component entries in /etc/hosts
-#   ansible.builtin.lineinfile:
-#     path: /etc/hosts
-#     line: "{{ vapp['guestinfo.ipaddress'] }}  {{ item + '.' + vapp['metacluster.fqdn'] }}"
-#     state: present
-#   loop:
-#     # TODO: Make this list dynamic
-#     - git
-#     - gitops
-#     - ingress
-#     - registry
-#     - storage
-
-- name: Delete container image tarballs/archives
-  ansible.builtin.file:
-    path: "{{ item }}"
-    state: absent
-  with_fileglob: /opt/metacluster/container-images/*.tar
+- name: Compress tarballs
+  community.general.archive:
+    dest: /opt/metacluster/container-images/image-tarballs.tgz
+    path: /opt/metacluster/container-images/*
+    format: gz
+    remove: yes
 
 - name: Cleanup tempfile
   ansible.builtin.file:

ansible/roles/firstboot/files/ansible_payload/roles/metacluster/tasks/init.yml

@@ -0,0 +1,12 @@
+- name: Create component entries in /etc/hosts
+  ansible.builtin.lineinfile:
+    path: /etc/hosts
+    line: "{{ vapp['guestinfo.ipaddress'] }}  {{ item + '.' + vapp['metacluster.fqdn'] }}"
+    state: present
+  loop:
+    # TODO: Make this list dynamic
+    - git
+    - gitops
+    - ingress
+    - registry
+    - storage

ansible/roles/firstboot/files/ansible_payload/roles/metacluster/tasks/main.yml

@@ -7,6 +7,4 @@
 - import_tasks: git.yml
 - import_tasks: gitops.yml
 
-# - include_tasks: certauthority.yml
-#   tags: final
 - import_tasks: cleanup.yml