---
 
- hosts: cluster_nodes
  roles:
    - role: common
      tags: base
    - role: users
      tags: account

# UNSAFE!! This section is disabled by default, to run it the flags -t net should be added
# to the ansible playbook command line.
# Reason: when rules.{v4,v6} are changed, the whole iptables configuration is reloaded.
# This creates issues with Docker, which injects its own configuration in iptables when it starts.
# In practice, most (all?) containers will break if rules.{v4,v6} are changed,
# and docker will have to be restared.
- hosts: cluster_nodes
  roles:
   - role: network
     tags: [ net, never ]

- hosts: cluster_nodes
  serial: 1
  roles:
    - role: consul
      tags: kv
    - role: nomad
      tags: orchestrator

# UNSAFE!! This section configures glusterfs. Once done, don't run it ever again as it may break stuff.
#   - role: storage
#      tags: sto