From f886b0ba6adfbcfc4c551b41de610906e66a4e3f Mon Sep 17 00:00:00 2001 From: Devan Goodwin Date: Wed, 3 May 2017 09:45:56 -0300 Subject: Stop logging AWS credentials in master role. Using lineinfile and with_items, the items end up logged and in this case include AWS credentials. Simple us of no_log to hide them. --- roles/openshift_master/tasks/systemd_units.yml | 1 + 1 file changed, 1 insertion(+) (limited to 'roles/openshift_master') diff --git a/roles/openshift_master/tasks/systemd_units.yml b/roles/openshift_master/tasks/systemd_units.yml index 506c8b129..58fabddeb 100644 --- a/roles/openshift_master/tasks/systemd_units.yml +++ b/roles/openshift_master/tasks/systemd_units.yml @@ -90,6 +90,7 @@ dest: /etc/sysconfig/{{ openshift.common.service_type }}-master-api line: "{{ item }}" with_items: "{{ master_api_aws.stdout_lines | default([]) }}" + no_log: True - name: Preserve Master Controllers Proxy Config options command: grep PROXY /etc/sysconfig/{{ openshift.common.service_type }}-master-controllers -- cgit v1.2.1