storage

Ansible role that provisions my storage server.

927 B•YML

validate-vault.yml

927 B • 27 lines • yaml

1---
2# Storage Role - Vault Variable Validation
3# Fail fast if critical vault secrets are missing or empty
4
5- name: Validate VPN provider configuration
6  ansible.builtin.assert:
7    that:
8      - vpn_service_provider | default('') | length > 0
9    fail_msg: |
10      Missing VPN service provider.
11      Ensure vault_storage contains: vpn_service_provider
12    success_msg: "VPN provider configuration validated"
13  when: arr_vpn_enabled
14  tags: [always, validation]
15
16- name: Validate Restic backup credentials
17  ansible.builtin.assert:
18    that:
19      - restic_backup_username | default('') | length > 0
20      - restic_backup_password | default('') | length > 0
21    fail_msg: |
22      Missing Restic backup server credentials.
23      Ensure vault_storage contains: restic_backup_username, restic_backup_password
24    success_msg: "Restic backup credentials validated"
25  when: restic_backup_server_enabled
26  tags: [always, validation]
27