Sensitive key data now hidden in output log

Fixes: #6529

Signed-off-by: Neelaksh Singh <neelaksh48@gmail.com>
(cherry picked from commit d18a986)

roles/ceph-client/tasks/create_users_keys.yml

@@ -28,6 +28,7 @@
     - cephx | bool
     - keys | length > 0
     - inventory_hostname == groups.get('_filtered_clients') | first
+  no_log: true
 
 - name: slurp client cephx key(s)
   slurp:
@@ -39,6 +40,7 @@
     - cephx | bool
     - keys | length > 0
     - inventory_hostname == groups.get('_filtered_clients') | first
+  no_log: true
 
 - name: pool related tasks
   when:
@@ -79,3 +81,5 @@
     group: "{{ ceph_uid }}"
   with_items: "{{ hostvars[groups['_filtered_clients'][0]]['slurp_client_keys']['results'] }}"
   when: not item.get('skipped', False)
+  no_log: true
+

roles/ceph-client/tasks/pre_requisite.yml

@@ -22,4 +22,5 @@
       with_items: "{{ _client_keys.results }}"
       when:
         - item.item.copy_key | bool
+      no_log: true
   when: cephx | bool

roles/ceph-crash/tasks/main.yml

@@ -50,6 +50,7 @@
         owner: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
         group: "{{ ceph_uid if containerized_deployment else 'ceph' }}"
         mode: "{{ ceph_keyring_permissions }}"
+      no_log: true
 
 - name: start ceph-crash daemon
   when: containerized_deployment | bool

roles/ceph-iscsi-gw/tasks/common.yml

@@ -21,6 +21,7 @@
   when:
     - cephx | bool
     - item.item.copy_key | bool
+  no_log: true
 
 - name: add mgr ip address to trusted list with dashboard - ipv4
   set_fact:

roles/ceph-mds/tasks/common.yml

@@ -33,3 +33,5 @@
   when:
     - cephx | bool
     - item.item.copy_key | bool
+  no_log: true
+

roles/ceph-mgr/tasks/common.yml

@@ -74,6 +74,7 @@
         - cephx | bool
         - item is not skipped
         - item.item.copy_key | bool
+      no_log: true
 
 - name: set mgr key permissions
   file:

roles/ceph-nfs/tasks/main.yml

@@ -75,6 +75,7 @@
       when:
         - not item.0.get('skipped', False)
         - item.0.item.name == 'client.' + ceph_nfs_ceph_user or item.0.item.name == rgw_client_name
+      no_log: true
 
 - name: include start_nfs.yml
   import_tasks: start_nfs.yml

roles/ceph-nfs/tasks/pre_requisite_container.yml

@@ -32,6 +32,7 @@
       when:
         - cephx | bool
         - item.item.copy_key | bool
+      no_log: true
   when: groups.get(mon_group_name, []) | length > 0
 
 - name: dbus related tasks
@@ -52,4 +53,4 @@
 
     - name: reload dbus configuration
       command: "killall -SIGHUP dbus-daemon"
-  when: ceph_nfs_dynamic_exports | bool
+  when: ceph_nfs_dynamic_exports | bool

roles/ceph-nfs/tasks/pre_requisite_non_container.yml

@@ -70,6 +70,7 @@
       when:
         - cephx | bool
         - item.item.copy_key | bool
+      no_log: true
 
     - name: nfs object gateway related tasks
       when: nfs_obj_gw | bool

roles/ceph-osd/tasks/common.yml

@@ -35,3 +35,5 @@
     - cephx | bool
     - item is not skipped
     - item.item.copy_key | bool
+  no_log: true
+

roles/ceph-osd/tasks/openstack_config.yml

@@ -54,6 +54,7 @@
         - "{{ _osp_keys.results }}"
         - "{{ groups[mon_group_name] }}"
       delegate_to: "{{ item.1 }}"
+      no_log: true
   when:
     - cephx | bool
     - openstack_config | bool

roles/ceph-rbd-mirror/tasks/common.yml

@@ -22,6 +22,7 @@
   when:
     - cephx | bool
     - item.item.copy_key | bool
+  no_log: true
 
 - name: create rbd-mirror keyring
   command: >

roles/ceph-rgw/tasks/common.yml

@@ -32,6 +32,7 @@
     - cephx | bool
     - item is not skipped
     - item.item.copy_key | bool
+  no_log: true
 
 - name: copy SSL certificate & key data to certificate path
   copy: