From ba5672b72a9d64dad828f14296717808f03d6ad7 Mon Sep 17 00:00:00 2001 From: michael Date: Sun, 30 Oct 2022 02:32:27 +1300 Subject: [PATCH] add vault creds --- ansible/inventory/host_vars/kube01/vault.yaml | 10 ++++++++++ ansible/inventory/host_vars/kube02/vault.yaml | 10 ++++++++++ ansible/inventory/host_vars/kube03/vault.yaml | 10 ++++++++++ ansible/roles/vm_deploy/tasks/main.yml | 5 +++-- 4 files changed, 33 insertions(+), 2 deletions(-) create mode 100644 ansible/inventory/host_vars/kube01/vault.yaml create mode 100644 ansible/inventory/host_vars/kube02/vault.yaml create mode 100644 ansible/inventory/host_vars/kube03/vault.yaml diff --git a/ansible/inventory/host_vars/kube01/vault.yaml b/ansible/inventory/host_vars/kube01/vault.yaml new file mode 100644 index 0000000..9d0d395 --- /dev/null +++ b/ansible/inventory/host_vars/kube01/vault.yaml @@ -0,0 +1,10 @@ +$ANSIBLE_VAULT;1.1;AES256 +62346438396134376339306632616534613531363062666433333431333533363030396261623762 +6434663731306265383165643431353465376431656332320a343834633336326165616334366663 +36666332376535336665653330346533326435626264326566666264376161613362386634306266 +3032326430653735650a343764336538623761643964633065643763336536323763653339333936 +38326564343962643361643063613130383066343738373231363030353934613063393933383333 +38616137373534313663313635303238393435313365366363326339623038393336373738633265 +36366262663736356634303863626432656465643435313631346234646132613031633064663537 +37316131346665373838643337663535376137656362343830613763343633623164353565616631 +65656662653264343661656538656139623063313066303931376431353730633133 diff --git a/ansible/inventory/host_vars/kube02/vault.yaml b/ansible/inventory/host_vars/kube02/vault.yaml new file mode 100644 index 0000000..3c2be8a --- /dev/null +++ b/ansible/inventory/host_vars/kube02/vault.yaml @@ -0,0 +1,10 @@ +$ANSIBLE_VAULT;1.1;AES256 +64326239636634343065393634333264626663323062336233303334383066303565393530356632 +3039353138373865663531663135653931613030633536650a373638613738303535636139626261 +63323734396262653063343862366334386338316336613038633530383931396561313631346431 +6538323336343762650a323366353737376362633662663436346465356439373263336235636430 +62353031643636666166303732316561663331646265393463353735396630376339386636376163 +31346265386335363638356239353062313431383363613333336131616233663238326363323337 +36343237653233626634643933333662373838323738643539306363626364333738646334613462 +31643164616263356164353536326633623731323832363833396433353731666233373735393637 +38656666386236386230626361346266336435373037356635626232663231623135 diff --git a/ansible/inventory/host_vars/kube03/vault.yaml b/ansible/inventory/host_vars/kube03/vault.yaml new file mode 100644 index 0000000..b1da0f4 --- /dev/null +++ b/ansible/inventory/host_vars/kube03/vault.yaml @@ -0,0 +1,10 @@ +$ANSIBLE_VAULT;1.1;AES256 +61666234346238303662656330643131333465613139356537656665653665616335653131363738 +3234366464633131663063323131653037313965663635640a376336613265643133633562366539 +39376139373161363731313637623966646566366465336431313063306431636562396335633137 +6661613039366635330a333232656134613665333238373763386565343130306661393836623835 +33376239623338613832333064613930393637666261666562383939636562303965313036633332 +30626163626339386232643333656236616330366139663963653936663864633032653839356633 +33383031623435613563626238323934626565626339613032643534636638396262363633303335 +36353837363133653533373339313063653463333939333363616331356164333533326231393936 +34386132303439616561333933613535376561323263636131326565653264613337 diff --git a/ansible/roles/vm_deploy/tasks/main.yml b/ansible/roles/vm_deploy/tasks/main.yml index d841328..a516b97 100644 --- a/ansible/roles/vm_deploy/tasks/main.yml +++ b/ansible/roles/vm_deploy/tasks/main.yml @@ -36,9 +36,10 @@ virt-customize -a {{ root_vhd_pool_dir }}/{{ vm_name }}_vda.qcow2 \ --format qcow2 \ --hostname {{ vm_name }}.{{ vm_domain }} \ - --copy-in /tmp/eno1_{{ vm_name }}.network:/etc/systemd/network/eno1.network \ + --copy-in /tmp/eno1_{{ vm_name }}.network:/etc/systemd/network/10-eno1.network \ --append-line "/etc/hosts:127.0.1.1 {{ vm_name }}.{{ vm_domain }} {{ vm_name }}" - --password ladmin:password:{{ }} \ + --password ladmin:password:{{ hostvars[vm_name]['ansible_become_pass'] }} \ + --root-password password:{{ hostvars[vm_name]['ansible_root_pass'] }} \ --password-crypto sha512 \ --ssh-inject "ladmin:string:{{ }}"