Browse Source

tripleo-keystone-resources: hide logs for resources with passwords

Hide the logs for the modules where we use data that shows the password when
creating a user, this isn't good for the security.
Let's hide it with no_log: true.

Change-Id: Icc80c239f507a1a4e50298345a94aba4fabed80d
tags/1.2.0
Emilien Macchi 1 week ago
parent
commit
6f77ee5e7b
4 changed files with 7 additions and 0 deletions
  1. +1
    -0
      tripleo_ansible/roles/tripleo_keystone_resources/tasks/admin.yml
  2. +2
    -0
      tripleo_ansible/roles/tripleo_keystone_resources/tasks/endpoints.yml
  3. +2
    -0
      tripleo_ansible/roles/tripleo_keystone_resources/tasks/services.yml
  4. +2
    -0
      tripleo_ansible/roles/tripleo_keystone_resources/tasks/users.yml

+ 1
- 0
tripleo_ansible/roles/tripleo_keystone_resources/tasks/admin.yml View File

@@ -39,6 +39,7 @@
- keystone_enable_member | default(tripleo_keystone_resources_member_role_enabled)

- name: Create admin user
no_log: true
os_user:
cloud: "{{ tripleo_keystone_resources_cloud_name }}"
name: admin

+ 2
- 0
tripleo_ansible/roles/tripleo_keystone_resources/tasks/endpoints.yml View File

@@ -15,6 +15,7 @@
# under the License.

- name: "Async creation of Keystone {{ keystone_endpoint_type }} endpoint"
no_log: true
os_keystone_endpoint:
cloud: "{{ tripleo_keystone_resources_cloud_name }}"
service: "{{ tripleo_keystone_resources_data.key }}"
@@ -30,6 +31,7 @@
loop_var: tripleo_keystone_resources_data

- name: "Check Keystone {{ keystone_endpoint_type }} endpoint status"
no_log: true
async_status:
jid: "{{ tripleo_keystone_resources_endpoint_async_result_item.ansible_job_id }}"
loop: "{{ tripleo_keystone_resources_endpoint_results.results }}"

+ 2
- 0
tripleo_ansible/roles/tripleo_keystone_resources/tasks/services.yml View File

@@ -15,6 +15,7 @@
# under the License.

- name: Async creation of Keystone service
no_log: true
os_keystone_service:
cloud: "{{ tripleo_keystone_resources_cloud_name }}"
name: "{{ tripleo_keystone_resources_data.key }}"
@@ -29,6 +30,7 @@
loop_var: tripleo_keystone_resources_data

- name: Check Keystone service status
no_log: true
async_status:
jid: "{{ tripleo_keystone_resources_service_async_result_item.ansible_job_id }}"
loop: "{{ tripleo_keystone_resources_service_results.results }}"

+ 2
- 0
tripleo_ansible/roles/tripleo_keystone_resources/tasks/users.yml View File

@@ -15,6 +15,7 @@
# under the License.

- name: "Async creation of Keystone user"
no_log: true
os_user:
cloud: "{{ tripleo_keystone_resources_cloud_name }}"
name: "{{ lookup('dict', tripleo_keystone_resources_data).key }}"
@@ -30,6 +31,7 @@
loop_var: tripleo_keystone_resources_data

- name: "Check Keystone user status"
no_log: true
async_status:
jid: "{{ tripleo_keystone_resources_user_async_result_item.ansible_job_id }}"
loop: "{{ tripleo_keystone_resources_user_results.results }}"

Loading…
Cancel
Save