4a12041754
This change replaces the hardcoded internal database password with a secret environment key provided by the ansible role. This change also adds the missing DB and ZK environment key required by the web service. Change-Id: I4f04732491c627e16988e81bc8ba9cccc78b2da1
17 lines
573 B
YAML
17 lines
573 B
YAML
- name: Check if zuul database-password is already created
|
|
set_fact:
|
|
_zuul_db_password: "{{ lookup('k8s', api_version='v1', kind='Secret', namespace=namespace, resource_name=zuul_name + '-database-password') }}"
|
|
|
|
- name: Generate and store database password
|
|
when: _zuul_db_password.data is not defined
|
|
k8s:
|
|
state: "{{ state }}"
|
|
namespace: "{{ namespace }}"
|
|
definition:
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: "{{ zuul_name }}-database-password"
|
|
stringData:
|
|
password: "{{ lookup('password', '/dev/null') }}"
|