diff options
| author | Kevin Fenzi <kevin@scrye.com> | 2016-12-05 17:53:13 +0000 |
|---|---|---|
| committer | Kevin Fenzi <kevin@scrye.com> | 2016-12-05 17:53:13 +0000 |
| commit | 37000ddda20003b9dc26ab43816c1ccc382f529d (patch) | |
| tree | 40b2996031c7710edcf6ef0adcdec20dd0f872da /roles/keytab | |
| parent | 3163d7fdd52751f9fc2b5cb07e7f029da9ca2de2 (diff) | |
| download | ansible-37000ddda20003b9dc26ab43816c1ccc382f529d.tar.gz ansible-37000ddda20003b9dc26ab43816c1ccc382f529d.tar.xz ansible-37000ddda20003b9dc26ab43816c1ccc382f529d.zip | |
set check_mode: no on all the tasks that register variables to get the ipa playbooks working with check mode
Diffstat (limited to 'roles/keytab')
| -rw-r--r-- | roles/keytab/service/tasks/main.yml | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/roles/keytab/service/tasks/main.yml b/roles/keytab/service/tasks/main.yml index edff03404..b82477533 100644 --- a/roles/keytab/service/tasks/main.yml +++ b/roles/keytab/service/tasks/main.yml @@ -2,6 +2,7 @@ - name: Determine whether we need to get keytab stat: path={{kt_location}} register: keytab_status + check_mode: no tags: - keytab - config @@ -20,6 +21,7 @@ delegate_to: "{{ ipa_server }}" command: ipa host-add {{host}} register: host_add_result + check_mode: no changed_when: "'Added host' in host_add_result.stdout" failed_when: "not ('Added host' in host_add_result.stdout or 'already exists' in host_add_result.stderr)" tags: @@ -32,6 +34,7 @@ delegate_to: "{{ ipa_server }}" command: ipa service-add {{service}}/{{host}} register: service_add_result + check_mode: no changed_when: "'Added service' in service_add_result.stdout" failed_when: "not ('Added service' in service_add_result.stdout or 'already exists' in service_add_result.stderr)" tags: @@ -44,6 +47,7 @@ delegate_to: "{{ ipa_server }}" command: ipa service-allow-retrieve-keytab {{service}}/{{host}} --hosts={{inventory_hostname}} register: service_perm_add_result + check_mode: no changed_when: "'members added 1' in service_perm_add_result.stdout" failed_when: "not ('members added' in service_perm_add_result.stdout)" tags: @@ -56,6 +60,7 @@ delegate_to: "{{ ipa_server }}" command: ipa service-allow-retrieve-keytab {{service}}/{{host}} --users=admin register: service_perm_add_result + check_mode: no changed_when: "'members added 1' in service_perm_add_result.stdout" failed_when: "not ('members added' in service_perm_add_result.stdout)" tags: @@ -68,6 +73,8 @@ delegate_to: "{{ ipa_server }}" command: ipa-getkeytab --retrieve --server {{ipa_server}} --keytab /tmp/{{service}}_{{host}}.kt --principal {{service}}/{{host}} register: retrieve_result + check_mode: no + changed_when: "1 != 1" failed_when: "not ('Keytab successfully retrieved' in retrieve_result.stderr or 'krbPrincipalKey not found' in retrieve_result.stderr)" tags: - keytab @@ -97,6 +104,7 @@ delegate_to: "{{ ipa_server }}" command: base64 /tmp/{{service}}_{{host}}.kt register: keytab + check_mode: no tags: - keytab - config |