digitalocean/ansible-st2

digitalocean/ansible-st2

Description: Ansible Roles and Playbooks to deploy StackStorm

License: Apache-2.0

Stars: 0

Forks: 0

Open issues: 2

Created: 2025-09-16T19:35:20Z

Pushed: 2026-05-20T01:17:05Z

Default branch: master

Fork: yes

Parent repository: StackStorm/ansible-st2

Archived: no

README:

Ansible-st2

Ansible roles and playbooks to deploy StackStorm.

> StackStorm is event-driven automation platform written in Python. With over 50+ integrations like GitHub, Docker, Nagios, NewRelic, AWS, Ansible it allows you to wire together your existing infrastructure into complex Workflows with auto-remediation and many more. Aka IFTTT orchestration for Ops.


Supported platforms

• Ubuntu Focal (20.04)
• RHEL 7 and CentOS 7
• RHEL 8 and Rocky Linux 8

> If you are using the provided [Vagrantfile](Vagrantfile), note that it uses Focal by default.

> In order to access StackStorm Web UI, please do not forget to ensure that the http and https ports are allowed by the firewall.

Requirements

A supported version of Ansible and its dependencies. At least 2 GB of memory and 3.5 GB of disk space is required, since StackStorm is shipped with RabbitMQ, Mongo, Redis and nginx.

Installation

# Deploy StackStorm
ansible-playbook stackstorm.yml

Variables

Below is the list of variables which you can redefine in your playbook, or inventory, to customize the StackStorm deployment:

| Variable | Default | Description | | ------------------------ | ------------- | ------------ | | st2repo | st2repo_name | stable | StackStorm PackageCloud repository to install. `stable`, `unstable`, `staging-stable`, `staging-unstable` | st2 | st2_version | latest | StackStorm version to install. present to install available package, latest to get automatic updates, or pin it to numeric version like 2.2.0 or with revision like 2.2.0-1 | st2_config | {} | Hash with StackStorm configuration settings to set in `st2.conf` ini file. | st2_system_user | stanley | System user from which st2 will execute local/remote shell actions. | st2_system_user_in_sudoers | yes| Add st2_system_user to the sudoers (recommended for most st2 features to work). | st2_ssh_key_file | /home/{{st2_system_user}}/.ssh/{{st2_system_user}}_rsa | Path to st2_system_user SSH private key. It will be autogenerated by default. | st2_auth_enable | yes | Enable StackStorm standalone authentication. | st2_auth_username | testu | Username used by StackStorm standalone authentication. | st2_auth_password | testp | Password used by StackStorm standalone authentication. | st2_save_credentials | yes | Save credentials for local CLI in /root/.st2/config file. | st2_rbac_enable | no | Enable RBAC. | | st2_rbac | [See st2_rbac variable in role defaults](roles/st2/defaults/main.yml) | RBAC roles and assignments. This is a dictionary with three keys roles, assignments, and mappings (based on LDAP group membership). roles, assignments, and mappings are arrays. Each element in the array follows the exact YAML schema for roles, assignments defined in ST2 documentation. mappings are slightly different, they use a name and a mapping key, see [./roles/StackStorm.st2/defaults/main.yml](./roles/StackStorm.st2/defaults/main.yml) for an example. | st2_ldap_enable | no | Enable LDAP authentication backend. | | st2_ldap | [See st2_ldap variable in role defaults](roles/st2/defaults/main.yml) | Settings for LDAP authentication backend. st2_ldap is a dictionary and has one item backend_kwargs. backend_kwargs should be provided as exactly listed in ST2 documentation for LDAP configuration. | st2_packs | [ st2 ] | List of packs to install. This flag does not work with a --python3 only pack. | st2_python_packages | [ ] | List of python packages to install into the /opt/stackstorm/st2 virtualenv. This is needed when deploying alternative auth or coordination backends which depend on Python modules to make them work. | st2web | st2web_version | latest | st2web version to install. present to install available package, latest to get automatic updates, or pin it to numeric version like 2.2.0 or with revision like 2.2.0-1. | st2web_ssl_certificate | null | String with custom SSL certificate (.crt). If not provided, self-signed certificate will be generated. | st2web_ssl_certificate_key | null | String with custom SSL certificate secret key (.key). If not provided, self-signed certificate will be generated. | st2web_nginx_config | null | String with a custom nginx configuration file (st2.conf). If not provided, the default st2.conf will be used. | st2chatops | nodejs_major_version | 14 | The default fits st2chatops version >= 3.5.0. | st2chatops_version | latest | st2chatops version to install. present to install available package, latest to get automatic updates, or pin it to numeric version like 2.2.0 or with revision like 2.2.0-1. | st2chatops_st2_api_key | | st2 API key to be updated in st2chatops.env using "st2 apikey create -k" in a task | st2chatops_hubot_adapter | | Hubot Adapter to be used for st2chatops. Default is shell, but should be changed to one of the [supported adapters](https://github.com/StackStorm/ansible-st2/blob/master/roles/st2chatops/vars/main.yml).[Required] | st2chatops_config | { } | Based on adapter in st2chatops_hubot_adapter, provide hash for the adapter settings, to update…