From ffc44a6b1226b43e1879f7dfdd0e60af6f7ed78c Mon Sep 17 00:00:00 2001 From: Rene Mewissen Date: Fri, 26 Jul 2024 11:43:46 +0200 Subject: [PATCH] add users for secondaries --- .../tasks/install_powerdns_server.yml | 14 +++++++++++++ roles/nameserver/vars/main.yml | 20 +++++++++++++++---- 2 files changed, 30 insertions(+), 4 deletions(-) diff --git a/roles/nameserver/tasks/install_powerdns_server.yml b/roles/nameserver/tasks/install_powerdns_server.yml index 99d3420..09784c2 100644 --- a/roles/nameserver/tasks/install_powerdns_server.yml +++ b/roles/nameserver/tasks/install_powerdns_server.yml @@ -49,6 +49,20 @@ config_file: "/etc/mysql/my.cnf" # not required. Specify a config file from which user and password are to be read. login_unix_socket: "{{ pdns_mysql_socket }}" # not required. The path to a Unix domain socket for local connections. + - name: nameserver | powerdns-server | create database users for secondaries + mysql_user: + name: "{{ pdns_db_user }}" + password: "{{ pdns_db_passwd | default(lookup('password', '/etc/powerdns/pdns.d/.mysqlpw length=20')) }}" + host: "{{ item }}" + priv: "{{ pdns_db_name }}.*:SELECT" + append_privs: False + sql_log_bin: True + state: present + update_password: on_create + config_file: "/etc/mysql/my.cnf" + login_unix_socket: "{{ pdns_mysql_socket }}" + loop: pdns_secondaries + - name: nameserver | powerdns-server | copy config template: src: "{{ item.src }}" diff --git a/roles/nameserver/vars/main.yml b/roles/nameserver/vars/main.yml index 4f5f478..05b8bf5 100644 --- a/roles/nameserver/vars/main.yml +++ b/roles/nameserver/vars/main.yml @@ -1,4 +1,16 @@ -mysql: True -pdns_db_name: "powerdns" -pdns_db_user: "powerdns" -pdns_db_passwd: "alsdkafhdfgjrnyödfdfjksdzlyso57sfn7093c5n7aß46bs946r9xbr85xr6" \ No newline at end of file +$ANSIBLE_VAULT;1.1;AES256 +33393637343963633639303764623635356261393833353539626539396635666264393865333738 +3666356534343238656532373735383161666232373536380a366134386664653133323936383364 +36616330356462373436313032303133656433316566373632656532333166323439663465343139 +6165353566313464370a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