Dell-Omnia-Clusters-HPC-AI/roles/cluster_validation/tasks/fetch_password.yml

#  Copyright 2020 Dell Inc. or its subsidiaries. All Rights Reserved.
#
#  Licensed under the Apache License, Version 2.0 (the "License");
#  you may not use this file except in compliance with the License.
#  You may obtain a copy of the License at
#
#      http://www.apache.org/licenses/LICENSE-2.0
#
#  Unless required by applicable law or agreed to in writing, software
#  distributed under the License is distributed on an "AS IS" BASIS,
#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
#  See the License for the specific language governing permissions and
#  limitations under the License.
---
- name: Check if input config file is encrypted
  command: cat {{ role_path }}/../../appliance/{{ input_config_filename }}
  changed_when: false
  register: config_content
  no_log: True

- name: Decrpyt input_config.yml
  command: >-
    ansible-vault decrypt {{ role_path }}/../../appliance/{{ input_config_filename }}
    --vault-password-file {{ role_path }}/../../appliance/roles/common/files/{{ vault_filename }}
  when: "'$ANSIBLE_VAULT;' in config_content.stdout"

- name: Include variable file input_config.yml
  include_vars: "{{ role_path }}/../../appliance/{{ input_config_filename }}"
  no_log: True

- name: Save input variables from file
  set_fact:
    cobbler_password: "{{ provision_password }}"
    db_password: "{{ mariadb_password }}"
    k8s_cni: "{{ k8s_cni }}"
  no_log: True

- name: Encrypt input config file
  command: >-
    ansible-vault encrypt {{ role_path }}/../../appliance/{{ input_config_filename }}
    --vault-password-file {{ role_path }}/../../appliance/roles/common/files/{{ vault_filename }}
  when: "'$ANSIBLE_VAULT;' not in config_content.stdout"