From 5c60d0c38601601b48549412cbc8c9cf2723a6f0 Mon Sep 17 00:00:00 2001
From: Arne Oslebo <arne.oslebo@uninett.no>
Date: Tue, 19 Jan 2021 15:47:11 +0100
Subject: [PATCH] add misp token to nifi
---
roles/misp/tasks/config.yml | 6 ++++++
roles/nifi/templates/flow.xml.j2 | 2 +-
utils/flow2template.py | 2 +-
3 files changed, 8 insertions(+), 2 deletions(-)
diff --git a/roles/misp/tasks/config.yml b/roles/misp/tasks/config.yml
index bce8637..a23c5e8 100644
--- a/roles/misp/tasks/config.yml
+++ b/roles/misp/tasks/config.yml
@@ -33,6 +33,12 @@
misp_api_key: "{{ get_output.stdout }}"
when: '"initialised" in init_output.stdout'
+- name: Store API key
+ copy:
+ content: "{{misp_api_key}}"
+ dest: "{{playbook_dir}}/secrets/tokens/misp"
+ delegate_to: 127.0.0.1
+
- name: add users
uri:
url: "https://{{soctoolsproxy}}:6443/admin/users/add/1"
diff --git a/roles/nifi/templates/flow.xml.j2 b/roles/nifi/templates/flow.xml.j2
index 1a0096b..01b9231 100644
--- a/roles/nifi/templates/flow.xml.j2
+++ b/roles/nifi/templates/flow.xml.j2
@@ -12909,7 +12909,7 @@
<name>Timestamp Format</name>
</property>
</controllerService>
- <variable name="misp_token" value="{{ misp_token }}" />
+ <variable name="misp_token" value="{{lookup('file','{{playbook_dir}}/secrets/tokens/misp')}}" />
<variable name="maxmind_key" value="{{ maxmind_key }}" />
<variable name="misp_ip_first_interval" value="60d" />
<variable name="elastic_username" value="{{ elastic_username }}" />
diff --git a/utils/flow2template.py b/utils/flow2template.py
index 4fafbda..b201832 100755
--- a/utils/flow2template.py
+++ b/utils/flow2template.py
@@ -13,7 +13,7 @@ et = xml.etree.ElementTree.parse(f)
for v in et.findall(".//variable"):
a=v.attrib
if a['name']=="misp_token":
- a['value']="{{ misp_token }}"
+ a['value']="{{lookup('file','{{playbook_dir}}/secrets/tokens/misp')}}"
elif a['name']=="misp_url":
a['value']="{{ misp_url }}"
elif a['name']=="maxmind_key":
--
GitLab