From 449faf71a514237bbcff959cc81e0cf9310f7816 Mon Sep 17 00:00:00 2001
From: Takashi Kajinami <tkajinam@redhat.com>
Date: Tue, 29 Nov 2022 14:53:55 +0900
Subject: [PATCH] Do not dump detail of container definitions

Some containers such as keystone_bootstrap contains secret information
in the container definitions. We should not dump such details into
ansible output.

Closes-Bug: #1998181
Change-Id: I6c98afc8e0d6822199001ffd9535575a4506b82d
---
 .../roles/tripleo_container_standalone/tasks/main.yml         | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/tripleo_ansible/roles/tripleo_container_standalone/tasks/main.yml b/tripleo_ansible/roles/tripleo_container_standalone/tasks/main.yml
index 5a07341d1..cbefdbad3 100644
--- a/tripleo_ansible/roles/tripleo_container_standalone/tasks/main.yml
+++ b/tripleo_ansible/roles/tripleo_container_standalone/tasks/main.yml
@@ -55,6 +55,10 @@
   copy:
     content: "{{ item.value | to_nice_json }}"
     dest: "{{ tripleo_container_standalone_container_startup_config_dir }}/{{ tripleo_container_standalone_service }}/{{ item.key }}.json"
+  # NOTE(tkajinam): Some containers (eg. keystone_bootstrap) contain secrets
+  #                 in its environments. Hide the output to avoid dumping these
+  #                 to output.
+  no_log: true
   loop: "{{ tripleo_container_standalone_container_defs | dict2items }}"
 
 - name: Run {{ tripleo_container_standalone_service }}  containers