Make security_actions.yml work with different node names
This commit is contained in:
Jose M
parent
f4942e58da
commit
d4895f41c4
@ -9,6 +9,28 @@
|
|||||||
- "{{ opendistro_conf_path }}/esnode.pem"
|
- "{{ opendistro_conf_path }}/esnode.pem"
|
||||||
- "{{ opendistro_conf_path }}/esnode-key.pem"
|
- "{{ opendistro_conf_path }}/esnode-key.pem"
|
||||||
|
|
||||||
|
|
||||||
|
- name: Configure node name
|
||||||
|
block:
|
||||||
|
- name: Setting node name (Elasticsearch)
|
||||||
|
set_fact:
|
||||||
|
od_node_name: elasticsearch_node_name
|
||||||
|
when:
|
||||||
|
elasticsearch_node_name is defined and kibana_node_name is not defined
|
||||||
|
|
||||||
|
- name: Setting node name (Kibana)
|
||||||
|
set_fact:
|
||||||
|
od_node_name: kibana_node_name
|
||||||
|
when:
|
||||||
|
kibana_node_name is defined
|
||||||
|
|
||||||
|
- name: Setting node name (Filebeat)
|
||||||
|
set_fact:
|
||||||
|
od_node_name: filebeat_node_name
|
||||||
|
when:
|
||||||
|
filebeat_node_name is defined
|
||||||
|
|
||||||
|
|
||||||
- name: Copy the node & admin certificates to Elasticsearch cluster
|
- name: Copy the node & admin certificates to Elasticsearch cluster
|
||||||
copy:
|
copy:
|
||||||
src: "{{ local_certs_path }}/certs/{{ item }}"
|
src: "{{ local_certs_path }}/certs/{{ item }}"
|
||||||
@ -17,17 +39,17 @@
|
|||||||
with_items:
|
with_items:
|
||||||
- root-ca.pem
|
- root-ca.pem
|
||||||
- root-ca.key
|
- root-ca.key
|
||||||
- "{{ inventory_hostname }}.key"
|
- "{{ od_node_name }}.key"
|
||||||
- "{{ inventory_hostname }}.pem"
|
- "{{ od_node_name }}.pem"
|
||||||
- "{{ inventory_hostname }}_http.key"
|
- "{{ od_node_name }}_http.key"
|
||||||
- "{{ inventory_hostname }}_http.pem"
|
- "{{ od_node_name }}_http.pem"
|
||||||
- "{{ inventory_hostname }}_elasticsearch_config_snippet.yml"
|
- "{{ od_node_name }}_elasticsearch_config_snippet.yml"
|
||||||
- admin.key
|
- admin.key
|
||||||
- admin.pem
|
- admin.pem
|
||||||
|
|
||||||
- name: Copy the OpenDistro security configuration file to cluster
|
- name: Copy the OpenDistro security configuration file to cluster
|
||||||
blockinfile:
|
blockinfile:
|
||||||
block: "{{ lookup('file', '{{ local_certs_path }}/certs/{{ inventory_hostname }}_elasticsearch_config_snippet.yml') }}"
|
block: "{{ lookup('file', '{{ local_certs_path }}/certs/{{ od_node_name }}_elasticsearch_config_snippet.yml') }}"
|
||||||
dest: "{{ opendistro_conf_path }}/elasticsearch.yml"
|
dest: "{{ opendistro_conf_path }}/elasticsearch.yml"
|
||||||
insertafter: EOF
|
insertafter: EOF
|
||||||
marker: "## {mark} Opendistro Security Node & Admin certificates configuration ##"
|
marker: "## {mark} Opendistro Security Node & Admin certificates configuration ##"
|
||||||
@ -71,7 +93,7 @@
|
|||||||
-key {{ opendistro_conf_path }}/admin.key
|
-key {{ opendistro_conf_path }}/admin.key
|
||||||
-cd {{ opendistro_sec_plugin_conf_path }}/
|
-cd {{ opendistro_sec_plugin_conf_path }}/
|
||||||
-nhnv -icl
|
-nhnv -icl
|
||||||
-h {{ hostvars[inventory_hostname]['ip'] }}
|
-h {{ hostvars[od_node_name]['ip'] }}
|
||||||
run_once: true
|
run_once: true
|
||||||
|
|
||||||
tags:
|
tags:
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user