Changeset - 5283779cf2aa
[Not reviewed]
3 5 0
Branko Majic (branko) - 4 years ago 2020-12-23 22:20:08
branko@majic.rs
MAR-168: Clean-up references to database_server root password:

- Updated role reference documentation.
- Updated usage instructions.
- Updated test configurations.
- Remvoed unused files/variables.
- Updated test site configuration.
8 files changed with 4 insertions and 39 deletions:
0 comments (0 inline, 0 general)
docs/rolereference.rst
Show inline comments
 
@@ -2000,16 +2000,8 @@ The role implements the following:
 

	
 
* Installs MariaDB server and client.
 
* Configures MariaDB server and client to use *UTF-8* encoding by default.
 
* Sets password for the database root user.
 

	
 
.. note::
 
   On Debian Stretch it is possible to login into the database through
 
   Unix socket as ``root`` operating system account as well - relying
 
   on Unix socket user authentication without providing password. This
 
   is the default set-up of MariaDB server on Debian Stretch
 

	
 
* Deploys MariaDB client configuration in location ``/root/.my.cnf`` that
 
  contains username and password for the root database user.
 
* Sets-up the database root user for passwordless login via UNIX
 
  socket authentication.
 

	
 

	
 
Role dependencies
docs/usage.rst
Show inline comments
 
@@ -1343,18 +1343,8 @@ server.
 
          - web_server
 
          - database_server
 

	
 
2. Now let's configure the role. This is rather simplistic, since we only need
 
   to set the database server root (admin) password.
 

	
 
   .. note::
 
      Default MariaDB server configuration on Debian Stretch enables
 
      the ``root`` OS user to login via Unix socket without providing
 
      password as well.
 

	
 
   :file:`~/mysite/group_vars/web.yml`
 
   ::
 

	
 
      db_root_password: root
 
2. This particular role has no parameters, and no additional steps are
 
   necessary to configure it. So move along...
 

	
 
3. No TLS support has been implemented for this role (yet), so simply apply the
 
   changes::
roles/database/molecule/default/group_vars/parameters-mandatory.yml
Show inline comments
 
@@ -2,6 +2,3 @@
 

	
 
db_name: testdb
 
db_password: testdbpassword
 

	
 
# database_server role
 
db_root_password: "root_password"
roles/database/molecule/default/group_vars/parameters-optional.yml
Show inline comments
 
@@ -4,9 +4,6 @@ db_name: testdb
 
db_password: testdbpassword
 
enable_backup: true
 

	
 
# database_server
 
db_root_password: "root_password"
 

	
 
# backup_client
 
backup_client_username: "bak-localhost"
 
backup_encryption_key: "{{ lookup('file', 'tests/data/gnupg/parameters-optional.asc') }}"
roles/database_server/molecule/default/group_vars/deprecated.yml
Show inline comments
 
deleted file
roles/database_server/molecule/default/group_vars/parameters-mandatory.yml
Show inline comments
 
deleted file
roles/database_server/templates/root_my.cnf.j2
Show inline comments
 
deleted file
testsite/group_vars/web.yml
Show inline comments
 
@@ -13,8 +13,6 @@ default_https_tls_certificate: "{{ lookup('file', inventory_dir + '/tls/web.' +
 
web_default_title: "Welcome to Example Inc."
 
web_default_message: "You are attempting to access the web server using a wrong name or an IP address. Please check your URL."
 

	
 
db_root_password: "root"
 

	
 
website_mail_recipients: "john.doe@example.com"
 

	
 
environment_indicator:
0 comments (0 inline, 0 general)