Refactor inv_linuxes_portainer and miniplay.yml: remove hardcoded passwords for security, simplify tasks, and enhance clarity.

2025-10-03 16:06:29 +02:00
parent 27577a2ff9
commit fdd8834ea3
2 changed files with 5 additions and 22 deletions
--- a/2
+++ b/2
@@ -2,4 +2,4 @@
 proxmox ansible_host=192.168.69.2

 [nextcloud_host]
-portainer ansible_host=192.168.69.253
+portainer ansible_host=192.168.69.253 ansible_user=howard ansible_password=Papadopolus0 ansible_connection=ssh ansible_port=22 ansible_ssh_common_args='-o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o PreferredAuthentications=keyboard-interactive,password -o PubkeyAuthentication=no -o NumberOfPasswordPrompts=1 -J root@192.168.69.2'
--- a/nextcloud/miniplay.yml
+++ b/nextcloud/miniplay.yml
@@ -1,25 +1,8 @@
 ---
- name: "pure SSH and then sudo"
+- name: "SSH ping through jump host"
  hosts: nextcloud_host
  gather_facts: false
+  become: false
  tasks:
-    - name: "Who am I as SSH user? (no sudo)"
-      become: false
-      ansible.builtin.command: whoami
-      changed_when: false
-      register: who
-
-    - name: "Show SSH user"
-      ansible.builtin.debug:
-        msg: "SSH user is: {{ who.stdout }}"
-
-    - name: "Who am I with sudo? (explicit become)"
-      become: true
-      become_method: sudo
-      ansible.builtin.command: whoami
-      changed_when: false
-      register: who_root
-
-    - name: "Show become user"
-      ansible.builtin.debug:
-        msg: "Become user is: {{ who_root.stdout }}"
+    - name: ping
+      ansible.builtin.ping: