22 lines
834 B
YAML
22 lines
834 B
YAML
- name: Get vault token from master vault
|
|
set_fact:
|
|
vault_token: "{{ lookup('community.hashi_vault.hashi_vault', 'auth/token/lookup-self url={{ vault_addr }} auth_method=token').id }}"
|
|
delegate_to: "bridge.eco.tsi-dev.otc-service.com"
|
|
when:
|
|
- "vault_addr is defined and vault_addr | length > 0"
|
|
- "transit_token is defined and transit_token | length > 0"
|
|
|
|
- name: Renew transit token
|
|
ansible.builtin.uri:
|
|
url: "{{ vault_addr }}/v1/auth/token/renew"
|
|
headers:
|
|
X-Vault-Token: "{{ vault_token }}"
|
|
method: "POST"
|
|
body_format: "json"
|
|
body:
|
|
token: "{{ transit_token }}"
|
|
status_code: [200, 201, 202, 204]
|
|
delegate_to: "bridge.eco.tsi-dev.otc-service.com"
|
|
when:
|
|
- "vault_addr is defined and vault_addr | length > 0"
|
|
- "transit_token is defined and transit_token | length > 0" |