2018-01-09 01:51:59 +03:00
Managing Custom Python Dependencies
===================================
awx installations pre-build a special [Python
virtualenv](https://pypi.python.org/pypi/virtualenv) which is automatically
activated for all `ansible-playbook` runs invoked by awx (for example, any time
a Job Template is launched). By default, this virtualenv is located at
`/var/lib/awx/venv/ansible` on the file system.
awx pre-installs a variety of third-party library/SDK support into this
virtualenv for its integration points with a variety of cloud providers (such
as EC2, OpenStack, Azure, etc...)
Periodically, awx users want to add additional SDK support into this
virtualenv; this documentation describes the supported way to do so.
Preparing a New Custom Virtualenv
=================================
awx allows a _different_ virtualenv to be specified and used on Job Template
2019-02-27 06:09:28 +03:00
runs. To choose a custom virtualenv, first we need to create one. Here, we are
using `/opt/my-envs/` as the directory to hold custom venvs. But you can use any
other directory and replace `/opt/my-envs/` with that. Let's create the directory
first if absent:
2018-01-09 01:51:59 +03:00
2019-02-27 06:09:28 +03:00
$ sudo mkdir /opt/my-envs
Now, we need to tell Tower to look into this directory for custom venvs. For that,
we can add this directory to the `CUSTOM_VENV_PATHS` setting as:
$ HTTP PATCH /api/v2/settings/system {'CUSTOM_VENV_PATHS': ["/opt/my-envs/"]}
If we have venvs spanned over multiple directories, we can add all the paths and
Tower will aggregate venvs from them:
$ HTTP PATCH /api/v2/settings/system {'CUSTOM_VENV_PATHS': ["/path/1/to/venv/",
"/path/2/to/venv/",
"/path/3/to/venv/"]}
Now that we have the directory setup, we can create a virtual environment in that using:
$ sudo virtualenv /opt/my-envs/custom-venv
2018-01-09 01:51:59 +03:00
2019-01-17 01:14:08 +03:00
Multiple versions of Python are supported, though it's important to note that
the semantics for creating virtualenvs in Python 3 has changed slightly:
2019-02-27 06:09:28 +03:00
$ sudo python3 -m venv /opt/my-envs/custom-venv
2019-01-17 01:14:08 +03:00
2018-01-09 01:51:59 +03:00
Your newly created virtualenv needs a few base dependencies to properly run
2019-03-22 15:46:05 +03:00
playbooks:
2018-01-09 01:51:59 +03:00
fact gathering):
2019-02-27 06:09:28 +03:00
$ sudo /opt/my-envs/custom-venv/bin/pip install psutil
2018-01-09 01:51:59 +03:00
From here, you can install _additional_ Python dependencies that you care
about, such as a per-virtualenv version of ansible itself:
2019-02-27 06:09:28 +03:00
$ sudo /opt/my-envs/custom-venv/bin/pip install -U "ansible == X.Y.Z"
2018-01-09 01:51:59 +03:00
...or an additional third-party SDK that's not included with the base awx installation:
2019-02-27 06:09:28 +03:00
$ sudo /opt/my-envs/custom-venv/bin/pip install -U python-digitalocean
2018-01-09 01:51:59 +03:00
If you want to copy them, the libraries included in awx's default virtualenv
can be found using `pip freeze` :
$ sudo /var/lib/awx/venv/ansible/bin/pip freeze
One important item to keep in mind is that in a clustered awx installation,
you need to ensure that the same custom virtualenv exists on _every_ local file
2019-02-27 06:09:28 +03:00
system at `/opt/my-envs/` . For container-based deployments, this likely
2018-01-10 21:46:10 +03:00
means building these steps into your own custom image building workflow, e.g.,
```diff
diff --git a/Makefile b/Makefile
index aa8b304..eb05f91 100644
--- a/Makefile
+++ b/Makefile
@@ -164,6 +164,10 @@ requirements_ansible_dev:
$(VENV_BASE)/ansible/bin/pip install pytest mock; \
fi
+requirements_custom:
2019-02-27 06:09:28 +03:00
+ mkdir -p /opt/my-envs
+ virtualenv /opt/my-envs/my-custom-env
+ /opt/my-envs/my-custom-env/bin/pip install psutil
2018-01-10 21:46:10 +03:00
+
diff --git a/installer/image_build/templates/Dockerfile.j2 b/installer/image_build/templates/Dockerfile.j2
index d69e2c9..a08bae5 100644
--- a/installer/image_build/templates/Dockerfile.j2
+++ b/installer/image_build/templates/Dockerfile.j2
@@ -34,6 +34,7 @@ RUN yum -y install epel-release & & \
pip install virtualenv supervisor & & \
VENV_BASE=/var/lib/awx/venv make requirements_ansible & & \
VENV_BASE=/var/lib/awx/venv make requirements_awx & & \
+ VENV_BASE=/var/lib/awx/venv make requirements_custom & & \
```
2018-01-09 01:51:59 +03:00
2019-02-27 06:09:28 +03:00
Once the AWX API is available, update the `CUSTOM_VENV_PATHS` setting as described in `Preparing a New Custom Virtualenv` .
2019-02-12 23:28:45 +03:00
Kubernetes Custom Virtualenvs
=============================
You can create custom virtualenvs without updating the awx images by using initContainers and a shared emptydir within Kubernetes. To start create an emptydir volume in the volumes stanza.
volumes:
- emptyDir: {}
name: custom-venv
Now create an initContainer stanza. You can subsititute your own custom images for this example we are using centos:7 as the base to build upon. The command stanza is where you will add the python modules you require in your virtualenv.
initContainers:
- image: 'centos:7'
2019-02-27 06:09:28 +03:00
name: init-custom-venv
2019-02-14 18:12:54 +03:00
command:
2019-02-12 23:28:45 +03:00
- sh
- '-c'
- >-
yum install -y ansible python-pip curl python-setuptools epel-release openssl openssl-devel gcc python-devel & &
curl 'https://bootstrap.pypa.io/get-pip.py' | python & &
pip install virtualenv & &
2019-02-27 06:09:28 +03:00
mkdir -p /opt/my-envs & &
virtualenv /opt/my-envs/custom-venv & &
source /opt/my-envs/custom-venv/bin/activate & &
/opt/my-envs/custom-venv/bin/pip install psutil & &
/opt/my-envs/custom-venv/bin/pip install -U "ansible == X.Y.Z" & &
/opt/my-envs/custom-venv/bin/pip install -U custom-python-module
2019-02-14 18:12:54 +03:00
volumeMounts:
2019-02-27 06:09:28 +03:00
- mountPath: /opt/my-envs/custom-venv
2019-02-12 23:28:45 +03:00
name: custom-venv
2019-03-20 23:33:02 +03:00
Finally in the awx-celery and awx-web containers stanza add the shared volume as a mount.
2019-02-12 23:28:45 +03:00
volumeMounts:
2019-02-27 06:09:28 +03:00
- mountPath: /opt/my-envs/custom-venv
2019-02-12 23:28:45 +03:00
name: custom-venv
- mountPath: /etc/tower
name: awx-application-config
readOnly: true
- mountPath: /etc/tower/conf.d
name: awx-confd
readOnly: true
2019-02-27 06:09:28 +03:00
Once the AWX API is available, update the `CUSTOM_VENV_PATHS` setting as described in `Preparing a New Custom Virtualenv` .
2018-01-09 01:51:59 +03:00
Assigning Custom Virtualenvs
============================
Once you've created a custom virtualenv, you can assign it at the Organization,
Project, or Job Template level:
PATCH https://awx-host.example.org/api/v2/organizations/N/
PATCH https://awx-host.example.org/api/v2/projects/N/
PATCH https://awx-host.example.org/api/v2/job_templates/N/
Content-Type: application/json
{
2019-02-27 06:09:28 +03:00
'custom_virtualenv': '/opt/my-envs/custom-venv'
2018-01-09 01:51:59 +03:00
}
An HTTP `GET` request to `/api/v2/config/` will provide a list of
detected installed virtualenvs:
{
"custom_virtualenvs": [
2019-02-27 06:09:28 +03:00
"/opt/my-envs/custom-venv",
"/opt/my-envs/my-other-custom-venv",
2018-01-09 01:51:59 +03:00
],
...
}
