From f2573c9e6baac3b4c56642db1cda7058555f1fe6 Mon Sep 17 00:00:00 2001
From: Radu Toader <radu.m.toader@gmail.com>
Date: Tue, 29 Oct 2019 09:56:00 +0200
Subject: [PATCH] nfs: support specific keys for rgw nfs user

This brings the possibility to modify the rgw nfs user to use specific
keys when those are defined.

Signed-off-by: Radu Toader <radu.m.toader@gmail.com>
---
 roles/ceph-nfs/tasks/create_rgw_nfs_user.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/roles/ceph-nfs/tasks/create_rgw_nfs_user.yml b/roles/ceph-nfs/tasks/create_rgw_nfs_user.yml
index 5acacb08e..19c85f3e7 100644
--- a/roles/ceph-nfs/tasks/create_rgw_nfs_user.yml
+++ b/roles/ceph-nfs/tasks/create_rgw_nfs_user.yml
@@ -23,6 +23,16 @@
     - nfs_obj_gw | bool
     - rgwuser_exists.get('rc', 1) != 0
 
+
+- name: modify rgw nfs user to use specific keys when those are defined
+  command: "{{ container_exec_cmd_nfs | default('') }} radosgw-admin --cluster {{ cluster }} user modify --uid={{ ceph_nfs_rgw_user }} --access-key={{ ceph_nfs_rgw_access_key }} --secret-key={{ ceph_nfs_rgw_secret_key }}"
+  delegate_to: "{{ groups[mon_group_name][0] }}"
+  when:
+    - nfs_obj_gw | bool
+    - ceph_nfs_rgw_access_key is defined
+    - ceph_nfs_rgw_secret_key is defined
+
+
 - name: set_fact ceph_nfs_rgw_access_key
   set_fact:
     ceph_nfs_rgw_access_key: "{{ (rgwuser.stdout | from_json)['keys'][0]['access_key'] if rgwuser_exists.get('rc', 1) != 0 else (rgwuser_exists.stdout | from_json)['keys'][0]['access_key'] }}"