check for HAVE_SECRETS - ansible-taler-exchange - Ansible playbook to deploy a production Taler Exchange

commit 947b8a097df3783a8563f677f483f6a7b292360b
parent 9398dd19727f5f7103e96f47bba5c705df7fdae4
Author: Florian Dold <florian@dold.me>
Date:   Mon, 24 Feb 2025 21:06:24 +0100

check for HAVE_SECRETS

Diffstat:
M inventories/host_vars/fdold-acai/test-secrets.yml  | 2 ++
M inventories/host_vars/spec/prod-secrets.yml.gpg  | 0 
M playbooks/setup.yml  | 4 ++++

3 files changed, 6 insertions(+), 0 deletions(-)
diff --git a/inventories/host_vars/fdold-acai/test-secrets.yml b/inventories/host_vars/fdold-acai/test-secrets.yml
@@ -1,4 +1,6 @@
 ---
+# We're the secrets file!
+HAVE_SECRETS: true
 # Symmetric encryption secret for KYC attribute encryption.
 EXCHANGE_ATTRIBUTE_ENCRYPTION_KEY: SECRET2
 # EBICS access details
diff --git a/inventories/host_vars/spec/prod-secrets.yml.gpg b/inventories/host_vars/spec/prod-secrets.yml.gpg
Binary files differ.
diff --git a/playbooks/setup.yml b/playbooks/setup.yml
@@ -1,6 +1,10 @@
 ---
 - name: Deploy GNU Taler
   hosts: all
+  pre_tasks:
+    - name: "Fail if secrets are not defined"
+      ansible.builtin.fail: msg="Secrets are not defined (HAVE_SECRETS not set)"
+      when: HAVE_SECRETS is undefined
   roles:
     - role: common_packages
     - role: ansible-pull

	ansible-taler-exchange Ansible playbook to deploy a production Taler Exchange
	Log \| Files \| Refs \| Submodules \| README \| LICENSE

M	inventories/host_vars/fdold-acai/test-secrets.yml	\|	2	++
M	inventories/host_vars/spec/prod-secrets.yml.gpg	\|	0
M	playbooks/setup.yml	\|	4	++++