Add option to keep existing users
This commit is contained in:
pemontto
parent
7196557c09
commit
27e3cff9a2
3 changed files with 7 additions and 5 deletions
|
|
@ -60,3 +60,5 @@ es_ssl_certificate_authority: ""
|
||||||
es_ssl_certificate_path: "/etc/elasticsearch/certs"
|
es_ssl_certificate_path: "/etc/elasticsearch/certs"
|
||||||
es_ssl_verification_mode: "certificate"
|
es_ssl_verification_mode: "certificate"
|
||||||
es_validate_certs: "yes"
|
es_validate_certs: "yes"
|
||||||
|
delete_unmanaged_file: true
|
||||||
|
delete_unmanaged_native: true
|
||||||
|
|
|
||||||
|
|
@ -11,7 +11,7 @@
|
||||||
register: old_users_file
|
register: old_users_file
|
||||||
check_mode: no
|
check_mode: no
|
||||||
|
|
||||||
- name: Copy the old users file from the old depreacted location
|
- name: Copy the old users file from the old deprecated location
|
||||||
copy:
|
copy:
|
||||||
remote_src: yes
|
remote_src: yes
|
||||||
force: no # only copy it if the new path doesn't exist yet
|
force: no # only copy it if the new path doesn't exist yet
|
||||||
|
|
@ -33,7 +33,7 @@
|
||||||
|
|
||||||
- name: set fact users_to_remove
|
- name: set fact users_to_remove
|
||||||
set_fact: users_to_remove={{ current_file_users.stdout_lines | difference (es_users.file.keys() | list) }}
|
set_fact: users_to_remove={{ current_file_users.stdout_lines | difference (es_users.file.keys() | list) }}
|
||||||
when: manage_file_users
|
when: manage_file_users and delete_unmanaged_file
|
||||||
|
|
||||||
#Remove users
|
#Remove users
|
||||||
- name: Remove Users
|
- name: Remove Users
|
||||||
|
|
@ -49,7 +49,7 @@
|
||||||
|
|
||||||
- name: set fact users_to_add
|
- name: set fact users_to_add
|
||||||
set_fact: users_to_add={{ es_users.file.keys() | list | difference (current_file_users.stdout_lines) }}
|
set_fact: users_to_add={{ es_users.file.keys() | list | difference (current_file_users.stdout_lines) }}
|
||||||
when: manage_file_users
|
when: manage_file_users and delete_unmanaged_file
|
||||||
|
|
||||||
#Add users
|
#Add users
|
||||||
- name: Add Users
|
- name: Add Users
|
||||||
|
|
|
||||||
|
|
@ -82,7 +82,7 @@
|
||||||
password: "{{es_api_basic_auth_password}}"
|
password: "{{es_api_basic_auth_password}}"
|
||||||
force_basic_auth: yes
|
force_basic_auth: yes
|
||||||
validate_certs: "{{ es_validate_certs }}"
|
validate_certs: "{{ es_validate_certs }}"
|
||||||
when: manage_native_users
|
when: manage_native_users and delete_unmanaged_native
|
||||||
with_items: "{{ users_to_remove | default([]) }}"
|
with_items: "{{ users_to_remove | default([]) }}"
|
||||||
|
|
||||||
- name: set fact users_to_ignore
|
- name: set fact users_to_ignore
|
||||||
|
|
@ -178,7 +178,7 @@
|
||||||
password: "{{es_api_basic_auth_password}}"
|
password: "{{es_api_basic_auth_password}}"
|
||||||
force_basic_auth: yes
|
force_basic_auth: yes
|
||||||
validate_certs: "{{ es_validate_certs }}"
|
validate_certs: "{{ es_validate_certs }}"
|
||||||
when: manage_native_roles
|
when: manage_native_roles and delete_unmanaged_native
|
||||||
with_items: "{{roles_to_remove | default([]) }}"
|
with_items: "{{roles_to_remove | default([]) }}"
|
||||||
|
|
||||||
- name: set fact roles_to_modify
|
- name: set fact roles_to_modify
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue