stackhpc · MaxBed4d · Jul 22, 2024 · Nov 7, 2024 · Nov 19, 2024 · Nov 19, 2024
@@ -14,16 +14,24 @@
         path: "{{ wazuh_secrets_path | dirname }}"
         state: directory
 
+    - name: Check whether wazuh-secrets.yml exists
+      stat:
+        path: "{{ wazuh_secrets_path }}"
+      register: waz_exist_result
+
     - name: Template new secrets
       no_log: True
       template:
         src: wazuh-secrets.yml.j2
         dest: "{{ wazuh_secrets_path }}"
+      when: not waz_exist_result.stat.exists
 
     - name: In-place encrypt wazuh-secrets
+      no_log: True
       copy:
         content: "{{ lookup('ansible.builtin.file', wazuh_secrets_path) | ansible.builtin.vault(ansible_vault_password) }}"
         dest: "{{ wazuh_secrets_path }}"
         decrypt: false
       vars:
         ansible_vault_password: "{{ lookup('ansible.builtin.env', 'KAYOBE_VAULT_PASSWORD') }}"
+      when: not waz_exist_result.stat.exists