status-im/ansible-role-mongodb
2
0
Fork 0
mirror of https://github.com/status-im/ansible-role-mongodb.git synced 2025-02-16 06:57:56 +00:00
Code Issues Projects Releases Wiki Activity

Changes in autorization

Browse Source
This commit is contained in:
Sergei Antipov 2015-02-10 13:45:52 +06:00
parent 9e17ec9ed8
commit d6aa8e0ffa
2 changed files with 14 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
defaults/main.yml
View File

@ -41,7 +41,6 @@ mongodb_shell: {} # Define mongo shell commands
# dbname: # dbname:
# - db.setProfilingLevel(1, 50) # - db.setProfilingLevel(1, 50)
# MMS Agent # MMS Agent
mongodb_mms_agent_pkg: https://mms.mongodb.com/download/agent/automation/mongodb-mms-automation-agent-manager_1.4.2.783-1_amd64.deb mongodb_mms_agent_pkg: https://mms.mongodb.com/download/agent/automation/mongodb-mms-automation-agent-manager_1.4.2.783-1_amd64.deb
mongodb_mms_group_id: "" mongodb_mms_group_id: ""
@ -59,6 +58,7 @@ mongodb_logrotate_options:
- size 10M - size 10M
# password for inter-process authentication # password for inter-process authentication
# please regenerate this file on production environment with command 'openssl rand -base64 741'
mongodb_keyfile_content: | mongodb_keyfile_content: |
8pYcxvCqoe89kcp33KuTtKVf5MoHGEFjTnudrq5BosvWRoIxLowmdjrmUpVfAivh 8pYcxvCqoe89kcp33KuTtKVf5MoHGEFjTnudrq5BosvWRoIxLowmdjrmUpVfAivh
CHjqM6w0zVBytAxH1lW+7teMYe6eDn2S/O/1YlRRiW57bWU3zjliW3VdguJar5i9 CHjqM6w0zVBytAxH1lW+7teMYe6eDn2S/O/1YlRRiW57bWU3zjliW3VdguJar5i9
@ -77,6 +77,9 @@ mongodb_keyfile_content: |
T+c73exupZFxItXs1Bnhe3djgE3MKKyYvxNUIbcTJoe7nhVMrwO/7lBSpVLvC4p3 T+c73exupZFxItXs1Bnhe3djgE3MKKyYvxNUIbcTJoe7nhVMrwO/7lBSpVLvC4p3
wR700U0LDaGGQpslGtiE56SemgoP wR700U0LDaGGQpslGtiE56SemgoP
# password for administrative users # names and passwords for administrative users
mongodb_user_admin_name: siteUserAdmin
mongodb_user_admin_password: passw0rd mongodb_user_admin_password: passw0rd
mongodb_root_admin_name: siteRootAdmin
mongodb_root_admin_password: passw0rd mongodb_root_admin_password: passw0rd

18
tasks/authorization.yml
View File

@ -4,31 +4,31 @@
apt: name=python-pymongo apt: name=python-pymongo
- name: create administrative user siteRootAdmin - name: create administrative user siteRootAdmin
mongodb_user: mongodb_user:
database: admin database: admin
name: "{{ item.name }}" name: "{{ item.name }}"
password: "{{ item.password }}" password: "{{ item.password }}"
roles: "{{ item.roles }}" roles: "{{ item.roles }}"
login_host: "{{ mongodb_user_login_host|default('localhost') }}" login_host: "{{ mongodb_user_login_host|default('localhost') }}"
with_items: with_items:
- { - {
name: siteRootAdmin, name: "{{ mongodb_root_admin_name }}",
password: "{{ mongodb_root_admin_password }}", password: "{{ mongodb_root_admin_password }}",
roles: "root" roles: "root"
} }
- name: create administrative user siteUserAdmin - name: create administrative user siteUserAdmin
mongodb_user: mongodb_user:
database: admin database: admin
name: "{{ item.name }}" name: "{{ item.name }}"
password: "{{ item.password }}" password: "{{ item.password }}"
roles: "{{ item.roles }}" roles: "{{ item.roles }}"
login_host: "{{ mongodb_user_login_host|default('localhost') }}" login_host: "{{ mongodb_user_login_host|default('localhost') }}"
login_user: "siteRootAdmin" login_user: "{{ mongodb_root_admin_name }}"
login_password: "{{ mongodb_root_admin_password }}" login_password: "{{ mongodb_root_admin_password }}"
with_items: with_items:
- { - {
name: siteUserAdmin, name: "{{ mongodb_user_admin_name }}",
password: "{{ mongodb_user_admin_password }}", password: "{{ mongodb_user_admin_password }}",
roles: "userAdminAnyDatabase" roles: "userAdminAnyDatabase"
} }
@ -40,8 +40,8 @@
password: "{{ item.password }}" password: "{{ item.password }}"
roles: "{{ item.roles }}" roles: "{{ item.roles }}"
login_host: "{{ mongodb_user_login_host|default('localhost') }}" login_host: "{{ mongodb_user_login_host|default('localhost') }}"
login_user: "siteRootAdmin" login_user: "{{ mongodb_root_admin_name }}"
login_password: "{{ mongodb_root_admin_password }}" login_password: "{{ mongodb_root_admin_password }}"
with_items: with_items:
- {{ mongodb_users }} - "{{ mongodb_users }}"
when: mongodb_users is defined when: mongodb_users is defined