Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG][Security Plugin Configuration] Unecessary user left on internal_users.yml #86

Open
rodolfovillordo opened this issue Jul 20, 2022 · 0 comments
Open

[BUG][Security Plugin Configuration] Unecessary user left on internal_users.yml #86

rodolfovillordo opened this issue Jul 20, 2022 · 0 comments
Labels
bug Something isn't working good first issue Good for newcomers

Comments

@rodolfovillordo
Copy link
Contributor

Describe the bug
An unnecessary user logstash was left on the files/internal_users.yml making the execution fail when following the instruction from the README.md

To Reproduce

  1. Run this playbook as instructed on the README;
$ ansible-playbook -i inventories/opensearch/hosts opensearch.yml --extra-vars "admin_password=Test@123 kibanaserver_password=Test@6789" --become
  1. See the error:
TASK [linux/opensearch : Security Plugin configuration | Filter service keys from the list of users] ****************************************************************************************
fatal: [os1]: FAILED! => {"msg": "The task includes an option with an undefined variable. The error was: {'_meta': {'type': 'internalusers', 'config_version': 2}, 'admin': {'hash': '{{ admin_password }}', 'reserved': True, 'backend_roles': ['admin'], 'description': 'admin user'}, 'kibanaserver': {'hash': '{{ kibanaserver_password }}', 'reserved': True, 'description': 'kibanaserver user'}, 'logstash': {'hash': '{{ logstash_password }}', 'reserved': True, 'description': 'logstash user'}}: 'logstash_password' is undefined\n\nThe error appears to be in '/Users/rodvill/code/git/github/rodolfovillordo/opensearch-playbook/roles/linux/opensearch/tasks/security.yml': line 259, column 7, but may\nbe elsewhere in the file depending on the exact syntax problem.\n\nThe offending line appears to be:\n\n    # passwords will be written next\n    - name: Security Plugin configuration | Filter service keys from the list of users\n      ^ here\n"}

PLAY RECAP **********************************************************************************************************************************************************************************
os1                        : ok=17   changed=4    unreachable=0    failed=1    skipped=27   rescued=0    ignored=0

Playbook Name
Specify the Playbook which is affected?

  • roles/linux/opensearch/tasks/security.yml
  • files/internal_users.yml

Screenshots
N/A

Host/Environment (please complete the following information):

  • Ansible Version: 2.12.6
  • Playbook Version: 2.1.0

Additional context
The logstash user is not needed in the default opensearch deployment.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working good first issue Good for newcomers
Projects
Engineering Effectiveness Board
Status: Backlog
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Remove unecessary logstash user from default deployment rodolfovillordo/opensearch-playbook
2 participants
@rodolfovillordo @peterzhuamazon