bw

2025-12-16 19:27:37 +00:00 · 2025-10-30 13:33:00 +00:00
parent 895dacd28d
commit 2b060b27f0
4 changed files with 47 additions and 45 deletions
--- a/roles/stolon/tasks/main.yml
+++ b/roles/stolon/tasks/main.yml
@ -21,52 +21,17 @@
  shell: ls -l /tmp/stolon/kubernetes-files/files
  register: resultado_ls

+- name: Obter várias notas do Bitwarden
+  shell: |
+    export BW_SESSION={{ lookup('env', 'BW_SESSION') }}
+    bw get item "{{ item.id }}" --session $BW_SESSION | jq -r '.notes' > {{ item.dest }}
+  loop:
+    - { id: "iac.ansible.dockersecrets", dest: "/tmp/stolon/kubernetes-files/files/docker-secrets.yaml" }
+    - { id: "iac.ansible.stolon.repl.secret", dest: "/tmp/stolon/kubernetes-files/files/stolon-repl-secret.yaml" }
+    - { id: "iac.ansible.stolon.keeper.secret", dest: "/tmp/stolon/kubernetes-files/files/stolon-secret.yaml" }
+  args:
+    executable: /bin/bash

- name: Buscar values.yaml do Bitwarden e aplicar remotamente
-  hosts: localhost
-  gather_facts: no
-  tasks:
-    - name: Criar diretório temporário no remoto
-      file:
-        path: /tmp/stolon/kubernetes-files
-        state: directory
-        mode: '0755'
-    - name: Buscar values.yaml do Bitwarden
-      shell: |
-        bw get item "iac.ansible.dockersecrets" --session $BW_SESSION | jq -r '.notes' > /tmp/stolon/kubernetes-files/files/docker-secrets.yaml
-        bw get item "iac.ansible.stolon.repl.secret" --session $BW_SESSION | jq -r '.notes' > /tmp/stolon/kubernetes-files/files/stolon-repl-secret.yaml    
-        bw get item "iac.ansible.stolon.keeper.secret" --session $BW_SESSION | jq -r '.notes' > /tmp/stolon/kubernetes-files/files/stolon-secret.yaml    
-      args:
-        executable: /bin/bash
-      environment:
-        BW_SESSION: "{{ lookup('env', 'BW_SESSION') }}"
-
- name: Copiar ficheiros para o nó remoto
-  hosts: localhost
-  gather_facts: no
-  vars:
-    remote_host: "k8s-node-01"
-    files_to_copy:
-      - { src: "/tmp/stolon/kubernetes-files/files/docker-secrets.yaml", dest: "/tmp/stolon/kubernetes-files/files/docker-secrets.yaml" }
-      - { src: "/tmp/stolon/kubernetes-files/files/stolon-repl-secret.yaml", dest: "/tmp/stolon/kubernetes-files/files/stolon-repl-secret.yaml" }
-      - { src: "/tmp/stolon/kubernetes-files/files/stolon-secret.yaml", dest: "/tmp/stolon/kubernetes-files/files/stolon-secret.yaml" }
-
-  tasks:
-    - name: Copiar ficheiros para o nó remoto
-      copy:
-        src: "{{ item.src }}"
-        dest: "{{ item.dest }}"
-        mode: '0600'
-      loop: "{{ files_to_copy }}"
-      delegate_to: "{{ groups['master'][0] }}"
-
-#- name: Buscar values.yaml do Bitwarden
-#  shell: |
-#    bw get item "iac.ansible.dockersecrets" --session {{ lookup('env', 'BW_SESSION') }} | jq -r '.notes' > /tmp/stolon/kubernetes-files/files/docker-secrets.yaml
-#    bw get item "iac.ansible.stolon.repl.secret" --session {{ lookup('env', 'BW_SESSION') }} | jq -r '.notes' > /tmp/stolon/kubernetes-files/files/stolon-repl-secret.yaml    
-#    bw get item "iac.ansible.stolon.keeper.secret" --session {{ lookup('env', 'BW_SESSION') }} | jq -r '.notes' > /tmp/stolon/kubernetes-files/files/stolon-secret.yaml    
-#  args:
-#    executable: /bin/bash

 - name: Mostrar resultado do ls
  debug: