ansible-role-mongodb/tasks/auth_initialization.yml

---
- name: Use different mongod.conf for auth initialization
  template:
    src: mongod_init.conf.j2
    dest: /etc/mongod.conf
    owner: root
    group: root
    mode: 0644
  notify:
    - mongodb restart
    - wait when mongodb is started on localhost

- name: Flush all handlers at this point
  meta: flush_handlers

- name: create administrative user siteUserAdmin
  mongodb_user:
    database: admin
    name: "{{ item.name }}"
    password: "{{ item.password }}"
    update_password: "{{ mongodb_user_update_password }}"
    roles: "{{ item.roles }}"
    login_port: "{{ mongodb_net_port }}"
  with_items:
    - {
      name: "{{ mongodb_user_admin_name }}",
      password: "{{ mongodb_user_admin_password }}",
      roles: "userAdminAnyDatabase"
      }
  no_log: true

- name: create administrative user siteRootAdmin
  mongodb_user:
    database: admin
    name: "{{ item.name }}"
    password: "{{ item.password }}"
    update_password: "{{ mongodb_user_update_password }}"
    roles: "{{ item.roles }}"
    login_port: "{{ mongodb_net_port }}"
  with_items:
    - {
      name: "{{ mongodb_root_admin_name }}",
      password: "{{ mongodb_root_admin_password }}",
      roles: "root"
      }
  no_log: true

- name: create backup user "backupuser"
  mongodb_user:
    database: admin
    name: "{{ item.name }}"
    password: "{{ item.password }}"
    update_password: "{{ mongodb_user_update_password }}"
    roles: "{{ item.roles }}"
    login_port: "{{ mongodb_net_port }}"
  with_items:
    - {
      name: "{{ mongodb_root_backup_name }}",
      password: "{{ mongodb_root_backup_password }}",
      roles: "backup,clusterMonitor"
      }
  no_log: true

- name: Move back mongod.conf
  template:
    src: mongod.conf.j2
    dest: /etc/mongod.conf
    owner: root
    group: root
    mode: 0644
  notify:
    - mongodb restart
    - wait when mongodb is started

- name: Flush all handlers at this point
  meta: flush_handlers
Added authorization configuration 2015-02-09 18:39:32 +06:00			`---`
Fix replication module 2018-02-26 15:35:36 +07:00			`- name: Use different mongod.conf for auth initialization`
Fix all issues and warnings 2019-05-23 00:37:39 -04:00			`template:`
			`src: mongod_init.conf.j2`
			`dest: /etc/mongod.conf`
			`owner: root`
			`group: root`
			`mode: 0644`
			`notify:`
			`- mongodb restart`
			`- wait when mongodb is started on localhost`
Added authorization configuration 2015-02-09 18:39:32 +06:00
Fix all issues and warnings 2019-05-23 00:37:39 -04:00			`- name: Flush all handlers at this point`
			`meta: flush_handlers`
Adding wait after mongodb restart 2015-11-22 11:58:35 +02:00
Fixed issue #3 2015-03-02 16:07:44 +06:00			`- name: create administrative user siteUserAdmin`
Changes in autorization 2015-02-10 13:45:52 +06:00			`mongodb_user:`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`database: admin`
			`name: "{{ item.name }}"`
			`password: "{{ item.password }}"`
Support of mongodb 3 2016-04-17 19:43:00 +06:00			`update_password: "{{ mongodb_user_update_password }}"`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`roles: "{{ item.roles }}"`
Support of mongodb 3 2016-04-17 19:43:00 +06:00			`login_port: "{{ mongodb_net_port }}"`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`with_items:`
Changes in autorization 2015-02-10 13:45:52 +06:00			`- {`
Fixed issue #3 2015-03-02 16:07:44 +06:00			`name: "{{ mongodb_user_admin_name }}",`
			`password: "{{ mongodb_user_admin_password }}",`
			`roles: "userAdminAnyDatabase"`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`}`
Do not show passwords in Ansible output This role prints passwords in Ansible outputs (e.g. when creating users, etc.). This is a problem because passwords must never appear in plaintext under any circunstances. This commit attempts to fix the problem described above. The option "no_log: true" has been added to tasks which may print passwords during Ansible execution. 2016-09-21 23:51:38 +02:00			`no_log: true`
Added authorization configuration 2015-02-09 18:39:32 +06:00
Fixed issue #3 2015-03-02 16:07:44 +06:00			`- name: create administrative user siteRootAdmin`
Changes in autorization 2015-02-10 13:45:52 +06:00			`mongodb_user:`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`database: admin`
			`name: "{{ item.name }}"`
			`password: "{{ item.password }}"`
Support of mongodb 3 2016-04-17 19:43:00 +06:00			`update_password: "{{ mongodb_user_update_password }}"`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`roles: "{{ item.roles }}"`
Support of mongodb 3 2016-04-17 19:43:00 +06:00			`login_port: "{{ mongodb_net_port }}"`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`with_items:`
Changes in autorization 2015-02-10 13:45:52 +06:00			`- {`
Fixed issue #3 2015-03-02 16:07:44 +06:00			`name: "{{ mongodb_root_admin_name }}",`
			`password: "{{ mongodb_root_admin_password }}",`
			`roles: "root"`
Added authorization configuration 2015-02-09 18:39:32 +06:00			`}`
Do not show passwords in Ansible output This role prints passwords in Ansible outputs (e.g. when creating users, etc.). This is a problem because passwords must never appear in plaintext under any circunstances. This commit attempts to fix the problem described above. The option "no_log: true" has been added to tasks which may print passwords during Ansible execution. 2016-09-21 23:51:38 +02:00			`no_log: true`
Added authorization configuration 2015-02-09 18:39:32 +06:00
Add user for backup mongodb databases 2015-11-17 12:14:41 +06:00			`- name: create backup user "backupuser"`
			`mongodb_user:`
			`database: admin`
			`name: "{{ item.name }}"`
			`password: "{{ item.password }}"`
Merged backup user creating 2016-04-18 19:08:24 +06:00			`update_password: "{{ mongodb_user_update_password }}"`
Add user for backup mongodb databases 2015-11-17 12:14:41 +06:00			`roles: "{{ item.roles }}"`
Merged backup user creating 2016-04-18 19:08:24 +06:00			`login_port: "{{ mongodb_net_port }}"`
Add user for backup mongodb databases 2015-11-17 12:14:41 +06:00			`with_items:`
			`- {`
			`name: "{{ mongodb_root_backup_name }}",`
			`password: "{{ mongodb_root_backup_password }}",`
			`roles: "backup,clusterMonitor"`
			`}`
Do not show passwords in Ansible output This role prints passwords in Ansible outputs (e.g. when creating users, etc.). This is a problem because passwords must never appear in plaintext under any circunstances. This commit attempts to fix the problem described above. The option "no_log: true" has been added to tasks which may print passwords during Ansible execution. 2016-09-21 23:51:38 +02:00			`no_log: true`
Add user for backup mongodb databases 2015-11-17 12:14:41 +06:00
Global refactoring of authorization and replication 2015-06-22 14:59:25 +06:00			`- name: Move back mongod.conf`
Fix all issues and warnings 2019-05-23 00:37:39 -04:00			`template:`
			`src: mongod.conf.j2`
			`dest: /etc/mongod.conf`
			`owner: root`
			`group: root`
			`mode: 0644`
			`notify:`
			`- mongodb restart`
			`- wait when mongodb is started`
fix issue with unmanaged service with latest update, a mongodb restart couldn't work properly. New checks have been added to fix the issue 2015-06-28 21:54:04 +02:00
Fix all issues and warnings 2019-05-23 00:37:39 -04:00			`- name: Flush all handlers at this point`
			`meta: flush_handlers`