refactor(prompts): remove vars_prompt, require users defined in inventory

2026-03-20 15:06:32 +01:00
parent 2d602646c8
commit 3e85a44d8e
2 changed files with 20 additions and 80 deletions
--- a/main.yml
+++ b/main.yml
@@ -14,82 +14,7 @@
  strategy: free # noqa: run-once[play]
  gather_facts: false
  become: true
-  vars_prompt:
-    - name: user_name
-      prompt: |
-        What is your username?
-      default: ""
-      private: false
-
-    - name: user_public_key
-      prompt: |
-        What is your ssh key?
-      default: ""
-      private: false
-
-    - name: user_password
-      prompt: |
-        What is your password?
-      default: ""
-      confirm: true
-
-    - name: root_password
-      prompt: |
-        What is your root password?
-      default: ""
-      confirm: true
  pre_tasks:
-    - name: Apply prompted authentication values to system input
-      no_log: true
-      vars:
-        system_input: "{{ system | default({}) }}"
-        system_users_input: "{{ system_input.users | default({}) }}"
-        _first_entry: "{{ system_users_input | dict2items | first | default({'key': '', 'value': {}}) }}"
-        _first_name: "{{ _first_entry.key }}"
-        _first_attrs: "{{ _first_entry.value if _first_entry.value is mapping else {} }}"
-        system_root_input: "{{ (system_input.root | default({})) if (system_input.root is mapping) else {} }}"
-        prompt_user_name: "{{ user_name | default(system_user_name | default(''), true) | string }}"
-        prompt_user_key: "{{ user_public_key | default(user_key | default(system_user_key | default(''), true), true) | string | trim }}"
-        prompt_user_password: "{{ user_password | default(system_user_password | default(''), true) | string }}"
-        prompt_root_password: "{{ root_password | default(system_root_password | default(''), true) | string }}"
-        resolved_name: "{{ _first_name if (_first_name | length > 0) else prompt_user_name }}"
-        resolved_attrs:
-          keys: >-
-            {{
-              _first_attrs['keys']
-              if (_first_attrs['keys'] is defined
-                  and _first_attrs['keys'] is iterable
-                  and _first_attrs['keys'] is not string
-                  and _first_attrs['keys'] | length > 0)
-              else (
-                [prompt_user_key]
-                if (prompt_user_key | length > 0)
-                else []
-              )
-            }}
-          password: >-
-            {{
-              _first_attrs.password | string
-              if (_first_attrs.password | default('') | string | length) > 0
-              else prompt_user_password
-            }}
-      ansible.builtin.set_fact:
-        system: >-
-          {{
-            system_input
-            | combine(
-                {
-                  'users': system_users_input | combine({resolved_name: (_first_attrs | combine(resolved_attrs, recursive=True))}),
-                  'root': {
-                    'password': (
-                      (system_root_input.password | default('') | string | length) > 0
-                    ) | ternary(system_root_input.password | string, prompt_root_password)
-                  }
-                },
-                recursive=True
-              )
-          }}
-
    - name: Load global defaults
      ansible.builtin.import_role:
        name: global_defaults