Merge pull request #9 from altlinuxteam/kerberos5-idempotency

Make Kerberos 5 role idempotent
2019-07-17 17:05:48 +04:00 · 2019-07-17 17:05:48 +04:00 · 1208e753f8
commit 1208e753f8
parent a4d31494a5 feccab9e96
1 changed files with 6 additions and 0 deletions
--- a/roles/kerberos5/tasks/master.yml
+++ b/roles/kerberos5/tasks/master.yml
@ -22,10 +22,16 @@
    group: root
    mode: 0644

+- name: Check local Kerberos 5 database existence
+  stat:
+    path: '{{ kdc_var_path }}/principal'
+  register: stat_kdc_db
+
 # We need to initialize principal database on the new system in order
 # 'krb5kdc` to work.
 - name: Initialize Kerberos 5 local database
  shell: "kdb5_util create -P '{{ krb5_admin_pass }}' -r {{ krb5_realm | upper }} -s"
+  when: stat_kdc_db.stat.exists == False

 # We must configure Kerberos 5 realm properly for krb5kdc
 - name: Configure krb5kdc