fix: hide sensitive information in log output
All checks were successful
continuous-integration/drone/push Build is passing

This commit is contained in:
Markus Pesch 2023-02-15 14:25:49 +01:00
parent 9f36a69078
commit cc71ada59d
Signed by: volker.raschek
GPG Key ID: 852BCC170D81A982
2 changed files with 9 additions and 4 deletions

View File

@ -14,7 +14,8 @@
shell: "{{ unix_user.value.shell | default('/bin/bash') }}" shell: "{{ unix_user.value.shell | default('/bin/bash') }}"
password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}" password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}"
state: present state: present
when: "unix_user.value.groups is not defined and unix_user.value.uid is not defined" when: unix_user.value.groups is not defined and unix_user.value.uid is not defined
no_log: true
- name: "Create unix user without additional groups and with uid: {{ unix_user.key }}" - name: "Create unix user without additional groups and with uid: {{ unix_user.key }}"
ansible.builtin.user: ansible.builtin.user:
@ -27,7 +28,8 @@
shell: "{{ unix_user.value.shell | default('/bin/bash') }}" shell: "{{ unix_user.value.shell | default('/bin/bash') }}"
password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}" password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}"
state: present state: present
when: "unix_user.value.groups is not defined and unix_user.value.uid is defined" when: unix_user.value.groups is not defined and unix_user.value.uid is defined
no_log: true
- name: "Create unix user with additional groups and uid: {{ unix_user.key }}" - name: "Create unix user with additional groups and uid: {{ unix_user.key }}"
ansible.builtin.user: ansible.builtin.user:
@ -41,7 +43,8 @@
shell: "{{ unix_user.value.shell | default('/bin/bash') }}" shell: "{{ unix_user.value.shell | default('/bin/bash') }}"
password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}" password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}"
state: present state: present
when: "unix_user.value.groups is defined and unix_user.value.uid is defined" when: unix_user.value.groups is defined and unix_user.value.uid is defined
no_log: true
- name: "Create unix user with additional groups and without uid: {{ unix_user.key }}" - name: "Create unix user with additional groups and without uid: {{ unix_user.key }}"
ansible.builtin.user: ansible.builtin.user:
@ -54,7 +57,8 @@
shell: "{{ unix_user.value.shell | default('/bin/bash') }}" shell: "{{ unix_user.value.shell | default('/bin/bash') }}"
password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}" password: "{{ unix_user.value.password | default('') | password_hash('sha512') }}"
state: present state: present
when: "unix_user.value.groups is defined and unix_user.value.uid is not defined" when: unix_user.value.groups is defined and unix_user.value.uid is not defined
no_log: true
- name: "Create .ssh directory for unix user: {{ unix_user.key }}" - name: "Create .ssh directory for unix user: {{ unix_user.key }}"
ansible.builtin.file: ansible.builtin.file:

View File

@ -34,6 +34,7 @@
- name: Create unix users - name: Create unix users
ansible.builtin.include_tasks: create_unix_user.yml ansible.builtin.include_tasks: create_unix_user.yml
no_log: true
with_dict: "{{ unix_users }}" with_dict: "{{ unix_users }}"
loop_control: loop_control:
loop_var: unix_user loop_var: unix_user