ansible/awx-resource-operator
1
0
Fork 0
mirror of https://github.com/ansible/awx-resource-operator synced 2026-04-05 19:24:56 +00:00
Code Issues Projects Releases Packages Wiki Activity
No description
184 commits 5 branches 1 tag 1.1 MiB
  • Jinja 48.2%
  • Makefile 27.4%
  • Shell 20.6%
  • Dockerfile 2.2%
  • Python 1.6%
Find a file
Exact
Dimitri Savineau ee395eadb3
 Merge pull request #186 from rooftopcellist/feat/upgrade-operator-sdk-v1.40.0 
Upgrade operator-sdk to v1.40.0 and remove kube-rbac-proxy
2026-03-04 13:45:38 -05:00
.github/workflows Update InstanceGroup and Add Build Runner in MAKEFILE (#162) 2025-05-05 19:07:58 -04:00
config Fix config/testing overlay to use new metrics patch 2026-03-03 23:42:59 -05:00
dev Modify dev script to automatically create k8s connection secret from env vars (#179) 2025-05-05 19:08:41 -04:00
docs Update docs.ansible.com links now that latest is removed & update ToC (#180) 2025-06-18 17:19:09 -04:00
molecule Update kubernetes.core to 2.4.2 to fix k8s_cp module usage against OCP with virt (#172) 2025-03-17 12:12:43 -04:00
playbooks Initial move to 1.12.0 2021-09-30 15:38:17 -04:00
roles devel: Fix conditional message 2025-11-13 13:05:25 +00:00
test-e2e Update kubernetes.core to 2.4.2 to fix k8s_cp module usage against OCP with virt (#172) 2025-03-17 12:12:43 -04:00
.ansible-lint molecule: fix lint configuration & add .ansible-lint config 2022-10-27 08:43:28 -04:00
.gitignore Add base CSV template 2021-10-15 14:50:21 -04:00
.yamllint Upgrade Operator SDK and bump operator base image to v1.16.0 2022-07-26 22:04:42 -04:00
Dockerfile Upgrade operator-sdk to v1.40.0 and remove kube-rbac-proxy 2026-03-03 23:28:16 -05:00
Dockerfile.runner Add GHA to build and push operator and runner images on merge (#154) 2023-11-27 17:56:07 -05:00
down.sh Add Development up.sh and down.sh scripts and docs to use them (#177) 2025-04-22 09:57:28 -04:00
Makefile Upgrade operator-sdk to v1.40.0 and remove kube-rbac-proxy 2026-03-03 23:28:16 -05:00
PROJECT Define ansible inventory (#125) 2023-05-16 16:15:21 -04:00
README.md Update docs.ansible.com links now that latest is removed & update ToC (#180) 2025-06-18 17:19:09 -04:00
requirements.yml Update collections to match other operators and use kubernetes.core 3.2.0 (#181) 2025-06-18 18:12:39 -04:00
up.sh devel: Implement multiarch for podman binary 2026-01-19 13:50:00 +00:00
watches.yaml Define ansible inventory (#125) 2023-05-16 16:15:21 -04:00

README.md

AWX Resource Operator

License Build Status Code of Conduct AWX Mailing List IRC Chat - #ansible-awx

An operator that can be used along side Ansible AWX to launch automation jobs and create job templates by creating resources directly in kubernetes. This operator is built with Operator SDK and Ansible.

Table of Contents

Overview

There are currently two Custom Resources provided by the awx-resource-operator:

  • AnsibleJob - launches a job in the AWX instance specified in the the specified k8s secret (awx host url, token)
  • JobTemplate - creates a job template in the AWX instance specified.

Prerequisites

Installing the Operator

  1. Clone the awx-resource-operator
git clone git@github.com:ansible/awx-resource-operator.git
  1. Log in to your cluster.
kubectl login <cluster-url>
  1. Run the make target
NAMESPACE=awx IMG=quay.io/ansible/awx-resource-operator:latest make deploy

This will create a deployment named resource-operator-controller-manager in the namespace specified, in this case the awx namespace. The resulting operator pod will reconcile any AnsibleJob or JotTemplate resources created.

Usage

Now that the awx-resource-operator is installed in your cluster, you can try creating a k8s resource to manage your AWX instance.

First, you need create a k8s secret with connection information for your AWX instance though. Below is example yaml that you can save to a file, edit, and apply to your cluster.

Create an AWX Access Token

Create an OAuth2 token for your user in the AWX UI.

  1. Navigate to Users
  2. Select the username you wish to create a token for
  3. Click on tokens, then the green plus icon
  4. Application can be left empty, input a description and select the read/write scope.

Alternatively, you can create one at the command-line using the create_oauth2_token manage command (docs)

Create a Connection Secret

To make this connection information available to the operator, create a k8s secret with the host and token value. Here is example yaml for the connection k8s secret.

---
apiVersion: v1
kind: Secret
metadata:
  name: awx-access
  type: Opaque
stringData:
  token: <generated-token>
  host: https://my-awx-host.example.com/

Save this to a file, for example, awx-connection-secret.yml, edit it with your host and token value, the apply it to your cluster.

kubectl create -f awx-connection-secret.yml

AnsibleJob

Launch an automation job on AWX by creating an AnsibleJob resource. Be sure to specify the connection secret on connection_secret as well as the Job Template you wish to launch.

---
apiVersion: tower.ansible.com/v1alpha1
kind: AnsibleJob
metadata:
  generateName: demo-job-1 # generate a unique suffix per 'kubectl create'
spec:
  connection_secret: awx-access
  job_template_name: Demo Job Template

It is possible to configure other things like inventory, extra vars, and time to live for the job.

spec:
  connection_secret: awx-access
  job_template_name: Demo Job Template
  inventory: Demo Inventory                    # Inventory prompt on launch needs to be enabled
  runner_image: quay.io/ansible/awx-resource-runner
  runner_version: latest
  job_ttl: 100

  extra_vars:                                  # Extra variables prompt on launch needs to be enabled
     test_var: test

  job_tags: "provision,install,configuration"  # Specify tags to run
  skip_tags: "configuration,restart"           # Skip tasks with a given tag

Note that prompt on launch needs to be enabled for inventories and extra vars if you are specifying those. In order to enable "PROMPT ON LAUNCH", within the AWX UI:

  1. Select Resources -> Templates
  2. Within Templates, select your template and click the "PROMPT ON LAUNCH" checkbox next to INVENTORY and EXTRA VARIABLES.

Prompt on Launch Configuration Example

Launching Workflows

Launch a Workflow Job Template with an AnsibleJob object by specifying the workflow_template_name instead of job_template_name.

---
apiVersion: tower.ansible.com/v1alpha1
kind: AnsibleJob
metadata:
  generateName: demo-job-1 # generate a unique suffix per 'kubectl create'
spec:
  connection_secret: awx-access
  workflow_template_name: Demo Workflow Template

JobTemplate

Create a job template on AWX by creating a JobTemplate resource.

---
apiVersion: tower.ansible.com/v1alpha1
kind: JobTemplate
metadata:
  name: jobtemplate-4
spec:
  connection_secret: awx-access
  job_template_name: ExampleJobTemplate4
  job_template_project: Demo Project
  job_template_playbook: hello_world.yml
  job_template_inventory: Demo Inventory

Building and Testing

If you have made changes to the operator and want to test them, you can do the following:

Build the operator image

make docker-build docker-push IMG=<your-registry>:dev

Build the runner image

make runner-build runner-push RUNNER_IMG=<your-registry>:dev

Deploy the operator

make deploy NAMESPACE=awx IMG=<your-registry>:dev

Author

This maintained by the Red Hat Ansible Team.

Code of Conduct

We ask all of our community members and contributors to adhere to the Ansible code of conduct. If you have questions or need assistance, please reach out to our community team at codeofconduct@ansible.com

Get Involved

We welcome your feedback and ideas. The AWX resource operator uses the same mailing list and IRC channel as AWX itself. Here's how to reach us with feedback and questions:

  • Join the #ansible-awx channel on irc.libera.chat
    • You can also join using Matrix and a client of your choice (Element is recommended) for a better experience (more info here)
  • Join the mailing list