Kolla-ansible deployments using haproxy user for monitor MariaDB without password
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kolla-ansible |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Kolla-ansible deployments using haproxy user for monitor MariaDB without password.
- This was reason maybe when native mysql-check in haproxy was used (not supporting password)
- Now there is no reason to use haproxy (monitor) user without password as haproxy is checking
backends via mariadb_
No password here :
ansible/
mariadb-
container_name: mariadb_
group: "{{ mariadb_shard }}"
enabled: "{{ enable_
image: "{{ mariadb_
volumes: "{{ mariadb_
dimensions: "{{ mariadb_
environment:
MYSQL_
MYSQL_
MYSQL_HOST: "{{ api_interface_
AVAILABLE
ansible/
- name: Creating haproxy mysql user
become: true
kolla_toolbox:
module_name: mysql_user
module_args:
login_host: "{{ api_interface_
login_port: "{{ mariadb_port }}"
login_user: "{{ database_user }}"
login_
name: "haproxy"
password: ""
host: "%"
priv: "*.*:USAGE"
listen: Bootstrap MariaDB cluster
Fixed with proxysql.