tasks/keys.yml

   1 ---
   2 - name: Set scope variables
   3   set_fact:
   4     rundeck_keys_base_path: "{{ rundeck_keys_scoped_by_project | default(true) | ternary('project/' + rundeck_project + '/' + rundeck_keys_group_path, rundeck_keys_group_path) }}"
   5   vars:
   6     group_name: "{{ rundeck_jobs_group | default('') }}"
   7     rundeck_keys_group_path: "{{ rundeck_keys_scoped_by_group | default((group_name|length) > 0) | ternary(group_name, '') }}"
   8
   9 - name: Include rundeck key
  10   include_tasks: key.yml
  11   with_items: "{{ rundeck_jobs_keys }}"
  12
  13 - name: Get all stored keys
  14   script:
  15     cmd: "{{ role_path }}/files/fetch_keys.sh {{ rundeck_api_url }}/{{ rundeck_api_version }} {{ rundeck_api_token }} keys/{{ rundeck_keys_base_path }}"
  16   register: rundeck_existing_keys
  17   when: rundeck_remove_missing_keys
  18
  19 - name: "Prepare list of keys to remove"
  20   set_fact:
  21     rundeck_existing_keys: "{{ rundeck_existing_keys.stdout_lines | list }}"
  22     rundeck_known_keys: "{{ rundeck_jobs_keys | map(attribute='path') | list }}"
  23   when: rundeck_remove_missing_keys
  24
  25 - name: "Remove jobs not declared"
  26   uri:
  27     url: "{{ rundeck_api_url }}/{{ rundeck_api_version }}/storage/keys/{{ rundeck_keys_base_path }}/{{ item }}"
  28     method: DELETE
  29     headers:
  30       Accept: application/json
  31       X-Rundeck-Auth-Token: "{{ rundeck_api_token }}"
  32     status_code: [204, 404]
  33   with_items: "{{ rundeck_existing_keys | difference(rundeck_known_keys) }}"
  34   when: rundeck_remove_missing_keys