41 lines
1.4 KiB
YAML
41 lines
1.4 KiB
YAML
---
|
|
- name: Barbican sanity - storing a secret
|
|
become: true
|
|
shell: >
|
|
set -o pipefail && \
|
|
docker exec -t barbican_api openstack \
|
|
--os-auth-url={{ openstack_auth.auth_url }} \
|
|
--os-password={{ openstack_auth.password }} \
|
|
--os-username={{ openstack_auth.username }} \
|
|
--os-system-scope={{ openstack_auth.system_scope }}
|
|
secret store -f value -p kolla | head -1
|
|
register: barbican_store_secret
|
|
run_once: True
|
|
when: kolla_enable_sanity_barbican | bool
|
|
|
|
- name: Barbican sanity - fetch secret
|
|
become: true
|
|
command: >
|
|
docker exec -t barbican_api openstack
|
|
--os-auth-url={{ openstack_auth.auth_url }}
|
|
--os-password={{ openstack_auth.password }}
|
|
--os-username={{ openstack_auth.username }}
|
|
--os-system-scope={{ openstack_auth.system_scope }}
|
|
secret get -f value -p {{ barbican_store_secret.stdout }}
|
|
register: barbican_get_secret
|
|
failed_when: barbican_get_secret.stdout != 'kolla'
|
|
run_once: True
|
|
when: kolla_enable_sanity_barbican | bool
|
|
|
|
- name: Barbican sanity - cleaning up
|
|
become: true
|
|
command: >
|
|
docker exec -t barbican_api openstack
|
|
--os-auth-url={{ openstack_auth.auth_url }}
|
|
--os-password={{ openstack_auth.password }}
|
|
--os-username={{ openstack_auth.username }}
|
|
--os-system-scope={{ openstack_auth.system_scope }}
|
|
secret delete {{ barbican_store_secret.stdout }}
|
|
run_once: True
|
|
when: kolla_enable_sanity_barbican | bool
|