authtoken: Make password required

The password parameter is not really optional. This makes it a required parameter to give more sensible validation error. Change-Id: I879e4c6cb072892a2e143702c876b22dc9ae526e
2023-07-12 21:53:31 +09:00 · 2023-07-12 21:53:31 +09:00 · 5518d822e6
parent 133dd8b13d
commit 5518d822e6
1 changed files with 4 additions and 9 deletions
--- a/manifests/keystone/authtoken.pp
+++ b/manifests/keystone/authtoken.pp
@ -4,14 +4,13 @@
 #
 # === Parameters
 #
+# [*password*]
+#   (Required) Password to create for the service user
+#
 # [*username*]
 #   (Optional) The name of the service user
 #   Defaults to 'designate'
 #
-# [*password*]
-#   (Optional) Password to create for the service user
-#   Defaults to $facts['os_service_default']
-#
 # [*auth_url*]
 #   (Optional) The URL to use for authentication.
 #   Defaults to 'http://localhost:5000'.
@ -201,8 +200,8 @@
 #  authtoken class. Values set here override the individual parameters above.
 #
 class designate::keystone::authtoken(
+  String[1] $password,
  $username                       = 'designate',
-  $password                       = $facts['os_service_default'],
  $auth_url                       = 'http://localhost:5000',
  $project_name                   = 'services',
  $user_domain_name               = 'Default',
@ -243,10 +242,6 @@ class designate::keystone::authtoken(

  include designate::deps

-  if is_service_default($password) {
-    fail('Please set password for designate service user')
-  }
-
  keystone::resource::authtoken {
    'designate_config':
      *                              => $params;