sec
This commit is contained in:
olli
parent
9ebe030804
commit
16c8ca7411
@ -11,6 +11,49 @@
|
||||
state: directory
|
||||
mode: '0770'
|
||||
|
||||
- name: /home/docker/portainer.{{inventory_hostname}}/genpw.sh (generate Random)
|
||||
blockinfile:
|
||||
path: /home/docker/portainer.{{inventory_hostname}}/genpw.sh
|
||||
create: yes
|
||||
mode: 0550
|
||||
owner: root
|
||||
group: docker
|
||||
marker: "# {mark} ANSIBLE MANAGED BLOCK"
|
||||
block: |
|
||||
cd /home/docker/portainer.{{inventory_hostname}}
|
||||
|
||||
if [ -f env ]
|
||||
then
|
||||
. ./env
|
||||
echo "${WEBPASSWDCRYPT}"
|
||||
else
|
||||
webpassword=$(pwgen -s 32 1)
|
||||
webpasswordcrypted=$(htpasswd -nbB foo $webpassword | cut -d: -f2)
|
||||
|
||||
echo "WEBUSER=admin
|
||||
WEBPASSWD=${webpassword}
|
||||
WEBPASSWDCRYPT=${webpasswordcrypted}
|
||||
" >env
|
||||
|
||||
chmod 440 env
|
||||
chown root:docker env
|
||||
echo "${webpasswordcrypted}"
|
||||
fi
|
||||
|
||||
backup: yes
|
||||
validate: /bin/bash -n %s
|
||||
|
||||
- name: /home/docker/portainer.{{inventory_hostname}}/genpw.sh shebang
|
||||
lineinfile:
|
||||
path: /home/docker/portainer.{{inventory_hostname}}/genpw.sh
|
||||
insertbefore: BOF
|
||||
line: "#!/bin/bash -e"
|
||||
|
||||
- name: Get crypted PW
|
||||
shell: bash /home/docker/portainer.{{inventory_hostname}}/genpw.sh
|
||||
register: cryptpw
|
||||
changed_when: false
|
||||
|
||||
- name: /home/docker/portainer/docker-compose.yml Portainer Container Configuration
|
||||
blockinfile:
|
||||
path: /home/docker/portainer/docker-compose.yml
|
||||
@ -25,7 +68,7 @@
|
||||
portainer:
|
||||
image: portainer/portainer-ce:latest
|
||||
# htpasswd -nb -B admin "PASSWORD" | cut -d ":" -f 2 | sed -e s/\\$/\\$\\$/g
|
||||
command: --admin-password $$2y$$05$$zpNgDI6UufemwrBAg022QezGKJKFGziKudMjVdcHvQMFkiL1jmJCm
|
||||
command: --admin-password {{ cryptpw.stdout }}
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- traefik
|
||||
|
||||
Loading…
Reference in New Issue
Block a user