2016-07-22 23:44:27 +01:00
---
2016-07-24 15:25:32 +01:00
#Shield specific configuration done here
2016-07-22 23:44:27 +01:00
#TODO: 1. Skip users with no password defined or error 2. Passwords | length > 6
#-----------------------------FILE BASED REALM----------------------------------------
- include : elasticsearch-shield-file.yml
2016-07-23 22:37:22 +01:00
when : (es_enable_xpack and '"shield" in es_xpack_features') and ((es_users is defined and es_users.file) or (es_roles is defined and es_roles.file is defined))
2016-07-22 23:44:27 +01:00
#-----------------------------NATIVE BASED REALM----------------------------------------
# The native realm requires the node to be started so we do as a handler
- command : /bin/true
notify : load-native-realms
2016-07-23 22:37:22 +01:00
when : (es_enable_xpack and '"shield" in es_xpack_features') and ((es_users is defined and es_users.native is defined) or (es_roles is defined and es_roles.native is defined))
#---------------------------------------------------------------------
2016-07-22 23:44:27 +01:00
2016-07-23 16:41:37 +01:00
#Ensure shield conf directory is created
- name : Ensure shield conf directory exists
file : path={{ conf_dir }}/shield state=directory owner={{ es_user }} group={{ es_group }}
changed_when : False
2016-07-23 21:47:27 +01:00
when : es_enable_xpack and '"shield" in es_xpack_features'
