diff options
author | Rich Megginson <rmeggins@redhat.com> | 2017-04-19 15:16:03 -0600 |
---|---|---|
committer | Rich Megginson <rmeggins@redhat.com> | 2017-04-19 15:16:03 -0600 |
commit | 5bb31fda251fc930cd83842fcf06afb7cc77c1c7 (patch) | |
tree | cceeec7992be8061789c3ad301c31b58899d6936 /roles/openshift_logging/tasks/procure_shared_key.yaml | |
parent | 9ace041daaf1bca509f21499b812f4f3e96fdd80 (diff) | |
download | openshift-5bb31fda251fc930cd83842fcf06afb7cc77c1c7.tar.gz openshift-5bb31fda251fc930cd83842fcf06afb7cc77c1c7.tar.bz2 openshift-5bb31fda251fc930cd83842fcf06afb7cc77c1c7.tar.xz openshift-5bb31fda251fc930cd83842fcf06afb7cc77c1c7.zip |
mux does not require privileged, only hostmount-anyuid
Diffstat (limited to 'roles/openshift_logging/tasks/procure_shared_key.yaml')
-rw-r--r-- | roles/openshift_logging/tasks/procure_shared_key.yaml | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/roles/openshift_logging/tasks/procure_shared_key.yaml b/roles/openshift_logging/tasks/procure_shared_key.yaml new file mode 100644 index 000000000..056ff6b98 --- /dev/null +++ b/roles/openshift_logging/tasks/procure_shared_key.yaml @@ -0,0 +1,25 @@ +--- +- name: Checking for {{ shared_key_info.procure_component }}_shared_key + stat: path="{{generated_certs_dir}}/{{ shared_key_info.procure_component }}_shared_key" + register: component_shared_key_file + check_mode: no + +- name: Trying to discover shared key variable name for {{ shared_key_info.procure_component }} + set_fact: procure_component_shared_key={{ lookup('env', '{{shared_key_info.procure_component}}' + '_shared_key') }} + when: + - shared_key_info[ shared_key_info.procure_component + '_shared_key' ] is defined + check_mode: no + +- name: Creating shared_key for {{ shared_key_info.procure_component }} + copy: content="{{'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789'|random_word(64)}}" + dest="{{generated_certs_dir}}/{{shared_key_info.procure_component}}_shared_key" + check_mode: no + when: + - not component_shared_key_file.stat.exists + +- name: Copying shared key for {{ shared_key_info.procure_component }} to generated certs directory + copy: content="{{procure_component_shared_key}}" dest="{{generated_certs_dir}}/{{shared_key_info.procure_component}}_shared_key" + check_mode: no + when: + - shared_key_info[ shared_key_info.procure_component + '_shared_key' ] is defined + - not component_shared_key_file.stat.exists |