facts from rds module obsfucated?

Archives Ansible Project
1

Folks,

I am creating an rds postgres instance on aws and need to get the endpoint. The creation goes fine, but when trying to get the endpoint it obsfucates the start of it with ******. The relevant creation code is:

  • name: create rds
    rds:
    region: “{{ region }}”
    command: create
    instance_name: “blastar-{{ environ }}”
    db_engine: postgres
    size: 20
    instance_type: db.t2.medium
    username: “{{ dbuser }}”
    password: “{{ dbpass }}”
    tags: { type: postgres, env: “{{ environ }}” }
    subnet: db_subnets_blastar
    vpc_security_groups: “{{ db_sec_group }}”
    register: rds
  • set_fact: “postgres_end={{ rds.instance.endpoint }}”
  • name: rds vars
    debug: var=rds

And what I get back is:

TASK [rds vars] ****************************************************************

ok: [127.0.0.1] => {

“changed”: false,

“rds”: {

“_ansible_no_log”: false,

“changed”: false,

“instance”: {

“availability_zone”: “us-west-2c”,

“backup_retention”: 1,

“create_time”: 1446570076.047,

“endpoint”: “********-staging.cpodljjqrhou.us-west-2.rds.amazonaws.com”,

“id”: “********-staging”,

“instance_type”: “db.t2.medium”,

“iops”: null,

“maintenance_window”: “mon:10:50-mon:11:20”,

“multi_zone”: false,

“port”: 5432,

“replication_source”: null,

“status”: “available”,

“username”: “VALUE_SPECIFIED_IN_NO_LOG_PARAMETER”,

“vpc_security_groups”: “sg-dcd2abr3”

},

“invocation”: {

“module_args”: {

“_ansible_no_log”: false,

“command”: “create”,

“db_engine”: “postgres”,

“instance_name”: “blastar-staging”,

“instance_type”: “db.t2.medium”,

“password”: “notmypass”,

“region”: “us-west-2”,

“size”: 20,

“subnet”: “db_subnets_blastar”,

“tags”: {

“env”: “staging”,

“type”: “postgres”

},

“username”: “blastar”,

“vpc_security_groups”: “sg-dcd2abr3”

},

“module_name”: “rds”

}

}

}

TASK [endpoint] ****************************************************************

ok: [127.0.0.1] => {

“changed”: false,

“msg”: “********-staging.cpodljjqrhou.us-west-2.rds.amazonaws.com”

}

All those *** things are in the actual output, not obsfucation I have done and I am stumped where they are coming from. Using the aws cli doesn’t produce them, I can’t find a setting in ansible.cfg that would produce them, and I am not using no log parameters (although I tried setting it to False).

If anyone can point me in the right general direction it would be spiffy. I haven’t had any luck searching on this.

-john

2

Okay, I have figured out what is happening, although still not why precisely. In my first post I changed some details cause pointless paranoia and the instance name didn’t actually start with blastar, it started with authtool. Apparently on my local machine, haven’t tested on others yet, starting an rds name with authtool- produces **** obsfucation in the resulting register command. And -vvvvv on the playbook shows that is what appears to be coming from the wire as well. Any other name to start the id works fine.

Since it isn’t that big a deal to change my ids, this probably solves the problem for me, but I would still love to know why this happens in the first place if anyone happens to know off the top of their head.

j