If ES auth disabled ensure user/pass are blank

2026-04-22 12:41:55 +02:00 · 2021-06-16 09:59:57 -04:00
parent 989f9dce42
commit 09fbb045a1
24 changed files with 173 additions and 54 deletions
--- a/salt/curator/files/curator.yml
+++ b/salt/curator/files/curator.yml
@@ -3,8 +3,13 @@
 {% elif grains['role'] in ['so-eval', 'so-managersearch', 'so-standalone'] %}
  {%- set elasticsearch = salt['pillar.get']('manager:mainip', '') -%}
 {%- endif %}
-{%- set ES_USER = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:user', '') %}
-{%- set ES_PASS = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:pass', '') %}
+{%- if salt['pillar.get']('elasticsearch:auth:enabled') is sameas true %}
+{%-   set ES_USER = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:user', '') %}
+{%-   set ES_PASS = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:pass', '') %}
+{%- else %}
+{%-   set ES_USER = '' %}
+{%-   set ES_PASS = '' %}
+{%- endif %}

 ---
 # Remember, leave a key empty if there is no value.  None will be a string,