status-im
/
infra-role-geth
mirror of https://github.com/status-im/infra-role-geth.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

jwt: let Geth generate secret by itself 

Using `password_hash` doesn't work as the value has to be hex encoded.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
This commit is contained in:
Jakub Sokołowski 2022-08-16 16:39:53 +02:00
parent da7ee8c266
commit 24993a45c7
No known key found for this signature in database
GPG Key ID: 09AA5403E54D9931
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
defaults/main.yml
View File

@ -55,7 +55,7 @@ geth_authrpc_enabled: true
geth_authrpc_addr: '127.0.0.1'
geth_authrpc_port: 8551
geth_authrpc_vhosts: '{{ geth_rpc_vhosts }}'
geth_authrpc_jwtsecret: '{{ geth_service_name | password_hash("sha512", (inventory_hostname|hash("sha1"))[0:16], rounds=5000) }}'
#geth_authrpc_jwtsecret: '0x64charHexEncodedSecretToken'
geth_authrpc_jwtsecret_file: '{{ geth_cont_vol }}/keys/jwtsecret'
# Sync mode: full, fast, light, snap

1
tasks/generate.yml
View File

@ -103,6 +103,7 @@
group: 'docker'
- name: Geth | Create JWT secret file
when: geth_authrpc_jwtsecret is defined
copy:
dest: '{{ geth_authrpc_jwtsecret_file }}'
content: '{{ geth_authrpc_jwtsecret | mandatory }}'