This is a simple change to change the reader config on ids.server. If the DB authenticator is present (instead of the simple authenticator), it will use a DB user as the reader for the IDS. I've added db_user_username and db_user_password variables (values are extracted from the vault by default) so this can be configured as needed. In the vault, I've added the piOne DB user to the vault.
I've tested this change by commenting out the authn_simple role from hosts_all.yml (so the DB authenticator was used) and running that on GitHub Actions. I SSH'd into the runner after the Playbook had finished and could see the reader config was for the db/piOne user.
This PR will close #34.
This is a simple change to change the reader config on ids.server. If the DB authenticator is present (instead of the simple authenticator), it will use a DB user as the reader for the IDS. I've added
db_user_usernameanddb_user_passwordvariables (values are extracted from the vault by default) so this can be configured as needed. In the vault, I've added the piOne DB user to the vault.I've tested this change by commenting out the
authn_simplerole fromhosts_all.yml(so the DB authenticator was used) and running that on GitHub Actions. I SSH'd into the runner after the Playbook had finished and could see the reader config was for the db/piOne user.