Remove persistent nextcloud admin credentials

This commit is contained in:
Wojciech Kozlowski 2023-07-08 15:18:33 +02:00
parent c2a69fcf65
commit fa6f615a13
6 changed files with 0 additions and 16 deletions

View File

@ -58,8 +58,6 @@ services:
database_name: "{{ vault_services.cloud.database_name }}" database_name: "{{ vault_services.cloud.database_name }}"
database_user: "{{ vault_services.cloud.database_user }}" database_user: "{{ vault_services.cloud.database_user }}"
database_password: "{{ vault_services.cloud.database_password }}" database_password: "{{ vault_services.cloud.database_password }}"
admin_user: "{{ vault_services.cloud.admin_user }}"
admin_password: "{{ vault_services.cloud.admin_password }}"
smtp_host: "{{ vault_services.cloud.smtp_host }}" smtp_host: "{{ vault_services.cloud.smtp_host }}"
smtp_name: "{{ vault_services.cloud.smtp_name }}" smtp_name: "{{ vault_services.cloud.smtp_name }}"
smtp_password: "{{ vault_services.cloud.smtp_password }}" smtp_password: "{{ vault_services.cloud.smtp_password }}"

View File

@ -39,12 +39,6 @@ argument_specs:
database_password: database_password:
type: "str" type: "str"
required: true required: true
admin_user:
type: "str"
required: true
admin_password:
type: "str"
required: true
smtp_host: smtp_host:
type: "str" type: "str"
required: true required: true

View File

@ -24,8 +24,6 @@
dest: "{{ services_service_user_home }}/.config/{{ services_service_user_name }}/{{ item }}" dest: "{{ services_service_user_home }}/.config/{{ services_service_user_name }}/{{ item }}"
mode: 0600 mode: 0600
loop: loop:
- "admin.password"
- "admin.user"
- "database.name" - "database.name"
- "database.password" - "database.password"
- "database.user" - "database.user"

View File

@ -1 +0,0 @@
{{ services[services_service_name].admin_password }}

View File

@ -1 +0,0 @@
{{ services[services_service_name].admin_user }}

View File

@ -29,14 +29,10 @@ ExecStart=/usr/bin/podman run \
-v ./.config/pod-cloud/database.name:/run/secrets/database.name:ro \ -v ./.config/pod-cloud/database.name:/run/secrets/database.name:ro \
-v ./.config/pod-cloud/database.user:/run/secrets/database.user:ro \ -v ./.config/pod-cloud/database.user:/run/secrets/database.user:ro \
-v ./.config/pod-cloud/database.password:/run/secrets/database.password:ro \ -v ./.config/pod-cloud/database.password:/run/secrets/database.password:ro \
-v ./.config/pod-cloud/admin.user:/run/secrets/admin.user:ro \
-v ./.config/pod-cloud/admin.password:/run/secrets/admin.password:ro \
-e POSTGRES_HOST=pod-database:5432 \ -e POSTGRES_HOST=pod-database:5432 \
-e POSTGRES_DB_FILE=/run/secrets/database.name \ -e POSTGRES_DB_FILE=/run/secrets/database.name \
-e POSTGRES_USER_FILE=/run/secrets/database.user \ -e POSTGRES_USER_FILE=/run/secrets/database.user \
-e POSTGRES_PASSWORD_FILE=/run/secrets/database.password \ -e POSTGRES_PASSWORD_FILE=/run/secrets/database.password \
-e NEXTCLOUD_ADMIN_USER_FILE=/run/secrets/admin.user \
-e NEXTCLOUD_ADMIN_PASSWORD_FILE=/run/secrets/admin.password \
-e NEXTCLOUD_TRUSTED_DOMAINS="{{ services[services_service_name].domain }}" \ -e NEXTCLOUD_TRUSTED_DOMAINS="{{ services[services_service_name].domain }}" \
-e OVERWRITEPROTOCOL="https" \ -e OVERWRITEPROTOCOL="https" \
-e SMTP_HOST="{{ services[services_service_name].smtp_host }}" \ -e SMTP_HOST="{{ services[services_service_name].smtp_host }}" \