oradb_manage_db: Configure sqlnet.ora, listener.ora and tnsnames.ora wirh playbook manage_sqlnet.yml

Author: Rendanic

changelogs/fragments/sqlnet.yml

@@ -0,0 +1,4 @@
+---
+minor_changes:
+  - "oradb_manage_db: Configure sqlnet.ora, listener.ora and tnsnames.ora wirh playbook manage_sqlnet.yml (oravirt#475)"
+  - "galaxy: added new collection as dependency for RAC/Restart listener configuration (oravirt#475)"

example/rac/ansible/playbooks/manage_sqlnet.yml

@@ -0,0 +1,19 @@
+---
+- name: SQLNet Configuration (sqlnet.ora, listener.ora, tnsnames.ora)
+  hosts: "{{ hostgroup | default('all') }}"
+  any_errors_fatal: true
+  tasks:
+    - name: Configure tnsnames.ora
+      ansible.builtin.import_role:
+        name: opitzconsulting.ansible_oracle.oradb_manage_db
+        tasks_from: configure_tnsnames.yml
+
+    - name: Configure sqlnet.ora
+      ansible.builtin.import_role:
+        name: opitzconsulting.ansible_oracle.oradb_manage_db
+        tasks_from: configure_sqlnet.yml
+
+    - name: Configure listener.ora
+      ansible.builtin.import_role:
+        name: opitzconsulting.ansible_oracle.oradb_manage_db
+        tasks_from: configure_listener.yml

galaxy.yml

@@ -21,3 +21,4 @@ dependencies:
   ansible.posix: '1.5.4'
   ansible.utils: '5.1.0'
   devsec.hardening: '>=8.6.0,<9.0.0'
+  ibre5041.ansible_oracle_modules: '3.2.3'

playbooks/manage_sqlnet.yml

@@ -0,0 +1,19 @@
+---
+- name: SQLNet Configuration (sqlnet.ora, listener.ora, tnsnames.ora)
+  hosts: "{{ hostgroup | default('all') }}"
+  any_errors_fatal: true
+  tasks:
+    - name: Configure tnsnames.ora
+      ansible.builtin.import_role:
+        name: opitzconsulting.ansible_oracle.oradb_manage_db
+        tasks_from: configure_tnsnames.yml
+
+    - name: Configure sqlnet.ora
+      ansible.builtin.import_role:
+        name: opitzconsulting.ansible_oracle.oradb_manage_db
+        tasks_from: configure_sqlnet.yml
+
+    - name: Configure listener.ora
+      ansible.builtin.import_role:
+        name: opitzconsulting.ansible_oracle.oradb_manage_db
+        tasks_from: configure_listener.yml

roles/oradb_manage_db/tasks/configure_listener.yml

@@ -0,0 +1,13 @@
+---
+# Taskfile to configure listener.ora only
+- name: configure_listener | include listener_details.yml
+  ansible.builtin.include_tasks: loop_listener_details.yml
+  with_items:
+    - "{{ listener_installed }}"
+  loop_control:
+    loop_var: lsnrinst
+  when:
+    - listener_installed is defined
+  tags:
+    - listener
+    - listener2

roles/oradb_manage_db/tasks/configure_sqlnet.yml

@@ -0,0 +1,13 @@
+---
+# Taskfile to configure sqlnet.ora only
+- name: sqlnet | include sqlnet.yml
+  ansible.builtin.include_tasks: loop_sqlnet.yml
+  with_items:
+    - "{{ sqlnet_installed }}"
+  loop_control:
+    loop_var: sqlnetinst
+  when:
+    - sqlnet_installed is defined
+  tags: sqlnet2
+  vars:
+    _sqlnet_ansible_file: "{{ _oradb_manage_db_tns_home }}/network/admin/sqlnet_ansible.ora"

roles/oradb_manage_db/tasks/configure_tnsnames.yml

@@ -0,0 +1,11 @@
+---
+# Taskfile to configure tnsnames.ora only
+- name: tnsnames | include tnsnames.yml
+  ansible.builtin.include_tasks: loop_tnsnames.yml
+  with_items:
+    - "{{ tnsnames_installed }}"
+  loop_control:
+    loop_var: tnsinst
+  when:
+    - tnsnames_installed is defined
+  tags: tnsnames2

roles/oradb_manage_db/tasks/listener_details.yml

@@ -0,0 +1,70 @@
+---
+- name: listener | loop data
+  ansible.builtin.debug:
+    msg:
+      - "ORACLE_HOME      {{ _oradb_manage_db_listener_home }}"
+      - "Listener Name    {{ lsnrinst.listener_name }}"
+      - "os-user          {{ _oradb_manage_db_listener_oracle_user }}"
+  tags:
+    - listener
+    - listener2
+
+- name: listener | block
+  become: true
+  become_user: "{{ _oradb_manage_db_listener_oracle_user }}"
+  tags:
+    - listener
+    - listener2
+  block:
+
+    - name: listener | create custom configuration in listener.ora
+      ansible.builtin.blockinfile:
+        path: "{{ _oradb_manage_db_listener_home }}/network/admin/listener.ora"
+        backup: true
+        create: true
+        mode: "0644"
+        state: present
+        insertafter: "EOF"
+        marker: "# {mark} Ansible managed for  {{ lsnrinst.listener_name }}"
+        block: "{{ lookup('template', 'listener_details.j2') }}"
+
+    # Don't try to stop the listener at this point
+    # => Restart of role will fail at create/manage database due to TNS-12514
+    # Only executed when on Single-Instance!
+    - name: listener | Start/Reload Listener  # noqa no-changed-when
+      ansible.builtin.shell: |
+        #!/usr/bin/env bash
+        set -eu
+        set -o pipefail
+        LSNRCTL="${ORACLE_HOME}/bin/lsnrctl"
+
+        if "${LSNRCTL}" status {{ lsnrinst.listener_name }} 2>/dev/null ; then
+          # Reload running listener
+          "${LSNRCTL}" reload {{ lsnrinst.listener_name }} > /dev/null
+        else
+          # Start listener
+          "${LSNRCTL}" start {{ lsnrinst.listener_name }} > /dev/null
+        fi
+      environment: "{{ oracle_env_lsnrctl }}"
+      when:
+        - oracle_install_option_gi == ''
+      tags:
+        - molecule-idempotence-notest
+
+    - name: listener | Register listener with srvctl
+      ibre5041.ansible_oracle_modules.oracle_crs_listener:
+        name: "{{ lsnrinst.listener_name }}"
+        endpoints: >-
+          {{ _oradb_manage_db_endpoints['protocol'] | default('TCP') }}:{{ _oradb_manage_db_endpoints['port'] | default('1521') }}
+        enabled: true
+      environment:
+        ORACLE_BASE: "{{ grid_base }}"
+      vars:
+        _oradb_manage_db_endpoints: >-
+          {{ oracle_listeners_config[lsnrinst.listener_name]['address'][0] | default({}) }}
+      when:
+        - oracle_install_option_gi in ('CRS_CONFIG', 'HA_CONFIG')
+        - _orasw_meta_primary_node | default(true) | bool
+        - oracle_listeners_config[lsnrinst.listener_name]['listener_type'] | default('NORMAL') == 'NORMAL'
+      tags:
+        - listener

roles/oradb_manage_db/tasks/loop_listener_details.yml

@@ -0,0 +1,77 @@
+---
+- name: loop_sqlnet | loop data
+  ansible.builtin.debug:
+    msg:
+      - "ORACLE_BASE_HOME {{ _oradb_manage_db_listener_home }}"
+      - "os-user          {{ _oradb_manage_db_listener_oracle_user }}"
+  tags:
+    - sqlnet
+    - sqlnet2
+
+- name: loop_sqlnet | block
+  become: true
+  become_user: "{{ _oradb_manage_db_listener_oracle_user }}"
+  tags:
+    - sqlnet
+    - sqlnet2
+  block:
+    - name: loop_sqlnet | create IFILE entry in sqlnet.ora
+      ansible.builtin.lineinfile:
+        line: "IFILE={{ _oradb_manage_db_tns_home }}/network/admin/sqlnet_ansible.ora"
+        regexp: "^IFILE=/"
+        insertbefore: BOF
+        path: "{{ _oradb_manage_db_tns_home }}/network/admin/sqlnet.ora"
+        backup: true
+        create: true
+        state: present
+        mode: "0644"
+
+    # Important!
+    # ansible-oracle <= 4.3 used lineinfile instead blockinfile with marker
+    # => Remove old entries before readding them with blockinfile
+    - name: loop_sqlnet | Check for existing sqlnet_ansible.ora
+      ansible.builtin.stat:
+        path: "{{ _sqlnet_ansible_file }}"
+      register: _sqlnet_ansible_file_res
+
+    - name: loop_sqlnet | Working on sqlnet_ansible.ora
+      when:
+        - _sqlnet_ansible_file_res.stat.exists
+      block:
+        - name: loop_sqlnet | Search for marker in sqlnet_ansible.ora
+          ansible.builtin.lineinfile:
+            path: "{{ _sqlnet_ansible_file }}"
+            regexp: "# BEGIN Ansible managed for .*"
+            line: "# BEGIN Ansible managed for .*"
+            state: present
+          register: old_sqlnet_ansible_res
+          changed_when: false
+          check_mode: true
+
+        # Remove existing sqlnet_ansible.ora when no new marker is in place
+        # => we found an old configuration file created with lineinfile
+        #    this must be changed to blockinfile with marker
+        - name: loop_sqlnet | Remove existing sqlnet_ansible.ora due to missing new marker items
+          ansible.builtin.file:
+            path: "{{ _sqlnet_ansible_file }}"
+            state: absent
+          when: "'line added' in old_sqlnet_ansible_res.msg"
+
+    - name: loop_sqlnet | create custom configuration in sqlnet_ansible.ora
+      ansible.builtin.blockinfile:
+        path: "{{ _sqlnet_ansible_file }}"
+        block: >-
+          {{ sc_loop.name }} = {{ sc_loop.value }}
+        marker: "# {mark} Ansible managed for {{ sc_loop.name }}"
+        insertafter: "EOF"
+        backup: true
+        create: true
+        state: present
+        mode: "0644"
+      with_items:
+        - "{{ sqlnet_config[sqlnetinst.sqlnet] }}"
+      loop_control:
+        label: >-
+          {{ sqlnetinst.sqlnet }}
+          {{ sc_loop.name }}
+        loop_var: sc_loop