如何使用ansible递归地上传文件夹到aws s3

Question

我使用ansible来部署我的应用程序。 我来到了我想要将我的咕噜资产上传到新创建的存储桶的位置，这里是我所做的： {{hostvars.localhost.public_bucket}}是存储桶名称， {{client}}/{{version_id}}/assets/admin是包含多层文件夹的文件夹的路径，资产上传：

- s3: 
    aws_access_key: "{{ lookup('env','AWS_ACCESS_KEY_ID') }}" 
    aws_secret_key: "{{ lookup('env','AWS_SECRET_ACCESS_KEY') }}" 
    bucket: "{{hostvars.localhost.public_bucket}}" 
    object: "{{client}}/{{version_id}}/assets/admin" 
    src: "{{trunk}}/public/assets/admin" 
    mode: put 

以下是错误消息：

fatal: [x.y.z.t]: FAILED! => {"changed": false, "failed": true, "invocation": {"module_name": "s3"}, "module_stderr": "", "module_stdout": "\r\nTraceback (most recent call last):\r\n File \"/home/ubuntu/.ansible/tmp/ansible-tmp-1468581761.67-193149771659393/s3\", line 2868, in <module>\r\n main()\r\n File \"/home/ubuntu/.ansible/tmp/ansible-tmp-1468581761.67-193149771659393/s3\", line 561, in main\r\n upload_s3file(module, s3, bucket, obj, src, expiry, metadata, encrypt, headers)\r\n File \"/home/ubuntu/.ansible/tmp/ansible-tmp-1468581761.67-193149771659393/s3\", line 307, in upload_s3file\r\n key.set_contents_from_filename(src, encrypt_key=encrypt, headers=headers)\r\n File \"/usr/local/lib/python2.7/dist-packages/boto/s3/key.py\", line 1358, in set_contents_from_filename\r\n with open(filename, 'rb') as fp:\r\nIOError: [Errno 21] Is a directory: '/home/abcd/efgh/public/assets/admin'\r\n", "msg": "MODULE FAILURE", "parsed": false} 

我通过文件去了，我没有找到递归选项ansible s3_module。 这是一个错误还是我错过了什么？

Answer 1

通过使用ansible，它看起来像你想要的东西幂等，但ansible尚不支持S3目录上传或任何递归，所以你应该使用AWS CLI做这样的工作：

command: "aws s3 cp {{client}}/{{version_id}}/assets/admin s3://{{hostvars.localhost.public_bucket}}/ --recursive" 

Answer 2

ansible s3模块不支持目录上传或任何递归。 对于这个任务，我建议使用s3cmd检查下面的语法。

command: "aws s3 cp {{client}}/{{version_id}}/assets/admin s3://{{hostvars.localhost.public_bucket}}/ --recursive" 

Answer 3

我能够通过遍历目录列表我想上传的输出来完成这个使用S3模块。我通过命令模块运行的小内联python脚本只输出目录中文件路径的完整列表，格式为JSON。

- name: upload things 
    hosts: localhost 
    connection: local 

    tasks: 
    - name: Get all the files in the directory i want to upload, formatted as a json list 
     command: python -c 'import os, json; print json.dumps([os.path.join(dp, f)[2:] for dp, dn, fn in os.walk(os.path.expanduser(".")) for f in fn])' 
     args: 
      chdir: ../../styles/img 
     register: static_files_cmd 

    - s3: 
      bucket: "{{ bucket_name }}" 
      mode: put 
      object: "{{ item }}" 
      src: "../../styles/img/{{ item }}" 
      permission: "public-read" 
     with_items: "{{ static_files_cmd.stdout|from_json }}" 

Answer 4

由于Ansible 2.3，你可以使用：s3_sync：

- name: basic upload 
    s3_sync: 
    bucket: tedder 
    file_root: roles/s3/files/ 

注：如果您使用非默认的区域，应设置region明确，否则，你得到一个沿线有点模糊的错误：An error occurred (400) when calling the HeadObject operation: Bad Request An error occurred (400) when calling the HeadObject operation: Bad Request

下面是一个完整的剧本，与上面试图做的匹配：

- hosts: localhost 
    vars: 
    aws_access_key: "{{ lookup('env','AWS_ACCESS_KEY_ID') }}" 
    aws_secret_key: "{{ lookup('env','AWS_SECRET_ACCESS_KEY') }}"  
    bucket: "{{hostvars.localhost.public_bucket}}" 
    tasks: 
    - name: Upload files 
    s3_sync: 
     aws_access_key: '{{aws_access_key}}' 
     aws_secret_key: '{{aws_secret_key}}' 
     bucket: '{{bucket}}' 
     file_root: "{{trunk}}/public/assets/admin" 
     key_prefix: "{{client}}/{{version_id}}/assets/admin" 
     permission: public-read 
     region: eu-central-1 

注：

1. 你也许可以清除区域，我只是说这例举上述
2. 我的观点，我刚添加的关键是明确的。您可以（并且可能应该）使用环境变量是：

从文档：

如果参数未在模块内设置，下面的环境变量可以按递减顺序使用优先AWS_URL或EC2_URL，AWS_ACCESS_KEY_ID或AWS_ACCESS_KEY或EC2_ACCESS_KEY，AWS_SECRET_ACCESS_KEY或AWS_SECRET_KEY或EC2_SECRET_KEY，AWS_SECURITY_TOKEN或EC2_SECURITY_TOKEN，AWS_REGION或EC2_REGION

的