From 83e0b4a44ca19c649b77e7d7416a8079c9e8fa73 Mon Sep 17 00:00:00 2001
From: Hinrikus Wolf <hinrikus@cs.rwth-aachen.de>
Date: Sat, 4 Nov 2017 10:39:43 +0100
Subject: [PATCH] refactor nfs-server

now we are using automatically the machine user for creating the
principles. It is untestet, because there is no host where we need a new
encrypted nfs :(
---
 nfs-server/tasks/main.yml | 19 +------------------
 1 file changed, 1 insertion(+), 18 deletions(-)

diff --git a/nfs-server/tasks/main.yml b/nfs-server/tasks/main.yml
index 7378778..dd29762 100644
--- a/nfs-server/tasks/main.yml
+++ b/nfs-server/tasks/main.yml
@@ -65,25 +65,8 @@
     - service-principal
 
 - block:
-    - name: test if there is a nfs-user account
-      shell: samba-tool user list | grep nfs-user
-      register: nfsuser
-      failed_when: False
-      delegate_to: "{{ hostvars[groups['ad-server'][0]]['ansible_host'] }}"
-      tags:
-        - nfs-server
-        - service-principal
-
-    - name: ensure there is a nfs-user account
-      command: samba-tool user create nfs-user --random-password
-      when: nfsuser.rc == 1
-      delegate_to: "{{ hostvars[groups['ad-server'][0]]['ansible_host'] }}"
-      tags:
-        - nfs-server
-        - service-principal
-
     - name: create service principal
-      command: samba-tool spn add "nfs/{{ ansible_fqdn }}" nfs-user
+      command: samba-tool spn add "nfs/{{ ansible_fqdn }}" "{{ ansible_hostname | upper }}$"
       delegate_to: "{{ hostvars[groups['ad-server'][0]]['ansible_host'] }}"
       tags:
         - nfs-server
-- 
GitLab