Merge branch '1-ci-pipeline-can-t-find-vault-password-file' into 'master'

Resolve "CI pipeline can't find Vault password file..." Closes #1 See merge request !1

Merge branch '1-ci-pipeline-can-t-find-vault-password-file' into 'master'
95ade150 · Jörg Sachse · da2fafcf · cfc06ceb · 95ade150 · 95ade150
Commit 95ade150 authored 1 year ago by Jörg Sachse
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -22,10 +22,11 @@ test-job:
    - "shell"
  script:
    # make sure that Ansible Vaults are present and can be decrypted
-    - echo "${VAULT_VALIDATORS}" > ../../../lza_validators.pass
+    - echo "${VAULT_VALIDATORS}" > ../lza_validators.pass
    - export ANSIBLE_VAULT_IDENTITY_LIST="../../../lza_validators.pass"
    - rm -rf ../ansible_vaults/
-    - git clone https://gitlab+deploy-token-25:${VAULT_ACCESS_TOKEN}@git.slub-dresden.de/slub-referat-2-3/ansible_vaults.git ../ansible_vaults/; \
+    - git clone https://gitlab+deploy-token-25:${VAULT_ACCESS_TOKEN}@git.slub-dresden.de/slub-referat-2-3/ansible_vaults.git ../ansible_vaults/;
+    - for FILE in $( find / -name "lza_validators.pass" ); do ls -l $FILE; done
    # run Molecule tests
    - molecule syntax --scenario-name default
    # We cannot use `molecule lint` anymore because:

--- a/molecule/resources/playbooks/prepare.yml
+++ b/molecule/resources/playbooks/prepare.yml
@@ -95,6 +95,7 @@
          loop:
            - "/usr/share/ca-certificates/{{ ansible_hostname }}-selfsigned.crt"
            - "/etc/ssl/certs/{{ ansible_hostname }}-selfsigned.crt"
+            - "/etc/ssl/certs/server.pem"
          changed_when: false    # I don't have any idea why this isn't idempotent.
        - name: >
            configure ca-certificates.conf to include our self-signed certificate