diff options
Diffstat (limited to 'baserock_openid_provider')
-rw-r--r-- | baserock_openid_provider/baserock_openid_provider.secret_key.yml | 10 | ||||
-rw-r--r-- | baserock_openid_provider/instance-config.yml | 14 |
2 files changed, 22 insertions, 2 deletions
diff --git a/baserock_openid_provider/baserock_openid_provider.secret_key.yml b/baserock_openid_provider/baserock_openid_provider.secret_key.yml new file mode 100644 index 00000000..166beebd --- /dev/null +++ b/baserock_openid_provider/baserock_openid_provider.secret_key.yml @@ -0,0 +1,10 @@ +$ANSIBLE_VAULT;1.1;AES256 +36663263633734313761323739363430616565623931343036636366313233643363356334633038 +3962643134303938326233336266396261623862316536390a363135646333356334663763333735 +64303365626430666531366232333564366663633031623834663063363632356362386361626137 +3833363630353434330a666437373232666263616562386337643138333530323137643530386539 +62316564393261393866633030633033376663626566643861363533333665313431343366323063 +30643039363538306461343130316137383939313561346335653561653964373137373032646363 +62356436663138633839333662353865306665333639343364333164663064643561613430303836 +33376365653236383662663837373739663463323434393734333631376564666135393066366266 +3731 diff --git a/baserock_openid_provider/instance-config.yml b/baserock_openid_provider/instance-config.yml index ffd7b66f..a0dd059e 100644 --- a/baserock_openid_provider/instance-config.yml +++ b/baserock_openid_provider/instance-config.yml @@ -8,10 +8,20 @@ sudo: yes tasks: - name: install database password - copy: src=../database/baserock_openid_provider.database_password.yml dest=/etc owner=cherokee group=cherokee mode=400 + copy: + content: "{{ lookup('file', '../baserock_database/baserock_openid_provider.database_password.yml') }}" + dest: /etc/baserock_openid_provider.database_password.yml + owner: cherokee + group: cherokee + mode: 400 - name: install Django secret key - copy: src=baserock_openid_provider.secret_key.yml dest=/etc owner=cherokee group=cherokee mode=400 + copy: + content: "{{ lookup('file', 'baserock_openid_provider.secret_key.yml') }}" + dest: /etc/baserock_openid_provider.secret_key.yml + owner: cherokee + group: cherokee + mode: 400 # This step could be part of image creation, except that because the secret # key file wouldn't be available at that time, the 'manage.py' script would |