From 07d1d844e3c2d39d9f8f0f9d1bcabf52e951d24d Mon Sep 17 00:00:00 2001
From: LinuxSquare <linuxscripting.sh@gmail.com>
Date: Sun, 1 Dec 2024 21:30:07 +0100
Subject: [PATCH] Don't log sensitive data

---
 mysql/secure.ansible.yml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/mysql/secure.ansible.yml b/mysql/secure.ansible.yml
index 2c19a30..d72942f 100644
--- a/mysql/secure.ansible.yml
+++ b/mysql/secure.ansible.yml
@@ -4,25 +4,28 @@
       stat:
         path: /var/lib/mysql/.secured
       register: MYSQL_SECURED_RESULT
-      ignore_errors: true
     - name: Set the root password
       mysql_user: login_user=root login_password="" user=root password="{{mysql_root_password}}" host="{{item}}"
       with_items:
         - 127.0.0.1
         - ::1
         - localhost
+      no_log: true
       when: not MYSQL_SECURED_RESULT.stat.exists
     - name: Delete anonymous MySQL user
       mysql_user: login_user=root login_password="{{mysql_root_password}}" name="" host="{{item}}" state=absent
       with_items:
         - localhost
         - "{{ansible_nodename}}"
+      no_log: true
       when: not MYSQL_SECURED_RESULT.stat.exists
     - name: Delete Hostname based MySQL user
       mysql_user: login_user=root login_password="{{mysql_root_password}}" user=root host="{{ansible_nodename}}" state=absent
+      no_log: true
       when: not MYSQL_SECURED_RESULT.stat.exists
     - name: Remove MySQL test database
       mysql_db: login_user=root login_password="{{mysql_root_password}}" name=test state=absent
+      no_log: true
       when: not MYSQL_SECURED_RESULT.stat.exists
     - name: Create .secured lock file
       file: