Added show_vault_variables_draft.py

2025-08-29 15:06:26 +02:00 · 2025-05-20 14:31:50 +02:00
parent 5470be50a9
commit fa3636cf26
22 changed files with 109 additions and 95 deletions
--- a/roles/docker-akaunting/meta/schema.yml
+++ b/roles/docker-akaunting/meta/schema.yml
@@ -1,8 +1,4 @@
 credentials:
-  database_password:
-    description: "Database password for MariaDB"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
  setup_admin_password:
    description: "Initial admin user password for Akaunting"
    algorithm: "sha256"
--- a/roles/docker-attendize/meta/schema.yml
+++ b/roles/docker-attendize/meta/schema.yml
@@ -1,5 +1 @@
-credentials:
-  database_password:
-    description: "Database password for MariaDB used by Attendize"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
+credentials:
--- a/roles/docker-baserow/meta/schema.yml
+++ b/roles/docker-baserow/meta/schema.yml
@@ -1,5 +0,0 @@
-credentials:
-  database_password:
-    description: "Password for the PostgreSQL database used by Baserow"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
--- a/roles/docker-discourse/meta/schema.yml
+++ b/roles/docker-discourse/meta/schema.yml
@@ -1,5 +0,0 @@
-credentials:
-  database_password:
-    description: "Password for the Discourse PostgreSQL database"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
--- a/roles/docker-friendica/meta/schema.yml
+++ b/roles/docker-friendica/meta/schema.yml
@@ -1,5 +0,0 @@
-credentials:
-  database_password:
-    description: "Password for the Friendica database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
--- a/roles/docker-funkwhale/meta/schema.yml
+++ b/roles/docker-funkwhale/meta/schema.yml
@@ -1,8 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Funkwhale PostgreSQL database"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
  django_secret:
    description: "Django SECRET_KEY used for cryptographic signing"
    algorithm: "sha256"
--- a/roles/docker-gitea/meta/schema.yml
+++ b/roles/docker-gitea/meta/schema.yml
@@ -1,5 +1 @@
-credentials:
-  database_password:
-    description: "Password for the Gitea database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
+
--- a/roles/docker-gitlab/meta/schema.yml
+++ b/roles/docker-gitlab/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the GitLab PostgreSQL database"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  initial_root_password:
    description: "Initial password for the GitLab root user"
    algorithm: "sha256"
--- a/roles/docker-joomla/meta/schema.yml
+++ b/roles/docker-joomla/meta/schema.yml
@@ -1,5 +0,0 @@
-credentials:
-  database_password:
-    description: "Password for the Joomla database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
--- a/roles/docker-keycloak/meta/schema.yml
+++ b/roles/docker-keycloak/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Keycloak PostgreSQL database"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  administrator_password:
    description: "Password for the Keycloak administrator user (used in bootstrap and CLI access)"
    algorithm: "sha256"
--- a/roles/docker-listmonk/meta/schema.yml
+++ b/roles/docker-listmonk/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Listmonk PostgreSQL database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  administrator_password:
    description: "Initial password for the Listmonk administrator account"
    algorithm: "sha256"
--- a/roles/docker-mastodon/meta/schema.yml
+++ b/roles/docker-mastodon/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Mastodon PostgreSQL database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  secret_key_base:
    description: "Main secret key used to verify the integrity of signed cookies and tokens"
    algorithm: "sha256"
--- a/roles/docker-matomo/meta/schema.yml
+++ b/roles/docker-matomo/meta/schema.yml
@@ -1,8 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Matomo database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"

  auth_token:
    description: "Authentication token for the Matomo HTTP API (used for automation and integrations)"
--- a/roles/docker-moodle/meta/schema.yml
+++ b/roles/docker-moodle/meta/schema.yml
@@ -1,8 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Moodle database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
  user_password:
    description: "Initial password for the Moodle admin user"
    algorithm: "sha256"
--- a/roles/docker-nextcloud/meta/schema.yml
+++ b/roles/docker-nextcloud/meta/schema.yml
@@ -1,8 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Nextcloud database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"

  administrator_password:
    description: "Initial password for the Nextcloud administrator (change immediately and enable 2FA)"
--- a/roles/docker-openproject/meta/schema.yml
+++ b/roles/docker-openproject/meta/schema.yml
@@ -1,8 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the OpenProject PostgreSQL database"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"

  oauth2_proxy_cookie_secret:
    description: "Secret used to encrypt cookies for the OAuth2 proxy (hex-encoded, 16 bytes)"
--- a/roles/docker-pixelfed/meta/schema.yml
+++ b/roles/docker-pixelfed/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Pixelfed database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  app_key:
    description: "Application key used for encryption in Pixelfed (.env APP_KEY)"
    algorithm: "plain"
--- a/roles/docker-snipe-it/meta/schema.yml
+++ b/roles/docker-snipe-it/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Snipe-IT database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  app_key:
    description: "Application encryption key for Snipe-IT (.env APP_KEY)"
    algorithm: "plain"
--- a/roles/docker-taiga/meta/schema.yml
+++ b/roles/docker-taiga/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the Taiga PostgreSQL database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  secret_key:
    description: "Django SECRET_KEY used for cryptographic signing in Taiga"
    algorithm: "sha256"
--- a/roles/docker-wordpress/meta/schema.yml
+++ b/roles/docker-wordpress/meta/schema.yml
@@ -1,9 +1,4 @@
 credentials:
-  database_password:
-    description: "Password for the WordPress database user"
-    algorithm: "bcrypt"
-    validation: "^\\$2[aby]\\$.{56}$"
-
  administrator_password:
    description: "Initial password for the WordPress admin account"
    algorithm: "sha256"