mirror of
https://github.com/ansible/awx-operator.git
synced 2026-05-06 13:22:50 +00:00
bfec61ad8d
- This prevents us from overwriting vars unintentionally at restore time - This will make it easier to add secrets to be backed up in the future - Add generated secret names to awx spec backup - Fail early if secret status doesn't exist - Skip if secret is not in spec for non-generated secrets - Secret values must be b64 decoded before secret is created - Cleanup temp files
36 lines
922 B
YAML
36 lines
922 B
YAML
---
|
|
|
|
- name: Get secret name
|
|
set_fact:
|
|
_name: "{{ this_awx['resources'][0]['status'][item] }}"
|
|
|
|
- name: Fail if status is not set on AWX CR
|
|
block:
|
|
- name: Set error message
|
|
set_fact:
|
|
error_msg: "{{ item }} status is not set on AWX object yet"
|
|
|
|
- name: Handle error
|
|
import_tasks: error_handling.yml
|
|
|
|
- name: Fail early if secret name status is not set
|
|
fail:
|
|
msg: "{{ error_msg }}"
|
|
when: _name is not defined or _name == ''
|
|
|
|
- name: Get secret
|
|
k8s_info:
|
|
version: v1
|
|
kind: Secret
|
|
namespace: '{{ meta.namespace }}'
|
|
name: "{{ _name }}"
|
|
register: _secret
|
|
|
|
- name: Set secret data
|
|
set_fact:
|
|
_data: "{{ _secret['resources'][0]['data'] }}"
|
|
|
|
- name: Create and Add secret names and data to dictionary
|
|
set_fact:
|
|
secret_dict: "{{ secret_dict | default({}) | combine({ item: {'name': _name, 'data': _data }}) }}"
|