Stop generating ssh keypair for ironic user
There is no obvious need to have an SSH keypairs for ironic user I was not able to find any proof in the project installation guide that such keypairs were ever needed. Thus, such functionality is removed. Depends-On: https://review.opendev.org/c/openstack/openstack-ansible-plugins/+/896017 Change-Id: I493d5f5aa0a915e7bc9fb7dbcd2673749c0b95d3
This commit is contained in:
parent
0f2e50ba41
commit
fb50e99438
@ -228,11 +228,6 @@ ironic_db_connection_string: >-
|
||||
# Common configuration
|
||||
ironic_node_name: ironic
|
||||
|
||||
# If you want to regenerate the ironic users SSH keys, on each run, set this
|
||||
# var to True. Otherwise keys will be generated on the first run and not
|
||||
# regenerated each run.
|
||||
ironic_recreate_keys: False
|
||||
|
||||
ironic_tftp_server_address: "{{ ironic_bmaas_address }}"
|
||||
|
||||
# Use this variable to add extra files into the ironic_tftp_root directory
|
||||
|
@ -0,0 +1,6 @@
|
||||
---
|
||||
deprecations:
|
||||
- |
|
||||
Generation of SSH keypairs for Ironic users has been deprecated
|
||||
and removed.
|
||||
A variable ``ironic_recreate_keys`` has been removed and has no effect.
|
@ -19,16 +19,6 @@
|
||||
state: "present"
|
||||
system: "yes"
|
||||
|
||||
- name: Remove old key file(s) if found
|
||||
file:
|
||||
path: "{{ item }}"
|
||||
state: "absent"
|
||||
with_items:
|
||||
- "{{ ironic_system_home_folder }}/.ssh/authorized_keys"
|
||||
- "{{ ironic_system_home_folder }}/.ssh/id_rsa"
|
||||
- "{{ ironic_system_home_folder }}/.ssh/id_rsa.pub"
|
||||
when: ironic_recreate_keys | bool
|
||||
|
||||
- name: Create ironic system users
|
||||
user:
|
||||
name: "{{ ironic_system_user_name }}"
|
||||
@ -38,7 +28,6 @@
|
||||
system: "yes"
|
||||
createhome: "yes"
|
||||
home: "{{ ironic_system_home_folder }}"
|
||||
generate_ssh_key: "yes"
|
||||
|
||||
- name: Create ironic dir
|
||||
file:
|
||||
|
Loading…
Reference in New Issue
Block a user