From 9d01d5d3cba2aeb30fa1afa1b2cc920dac77b395 Mon Sep 17 00:00:00 2001
From: "Joshua M. Boniface" <joshua@boniface.me>
Date: Fri, 1 Sep 2023 15:42:19 -0400
Subject: [PATCH] Improve libvirt key handling

---
 roles/pvc/tasks/libvirt.yml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/roles/pvc/tasks/libvirt.yml b/roles/pvc/tasks/libvirt.yml
index 8b349b0..dcf6a6a 100644
--- a/roles/pvc/tasks/libvirt.yml
+++ b/roles/pvc/tasks/libvirt.yml
@@ -20,12 +20,16 @@
     - ceph-secret.xml
   notify: restart libvirtd
 
+- name: get ceph libvirt secret key
+  command: ceph auth get-key client.libvirt
+  register: libvirt_key
+
 - name: define ceph secret
   command: virsh secret-define /etc/libvirt/ceph-secret.xml
   ignore_errors: true
 
-- name: set ceph secret value
-  command: virsh secret-set-value --secret {{ ceph_storage_secret_uuid }} --base64 {{ ceph_storage_secret_key }}
+- name: set ceph libvirt secret value
+  command: virsh secret-set-value --secret {{ ceph_storage_secret_uuid }} --base64 {{ libvirt_key.stdout }}
   ignore_errors: true
 
 - name: configure libvirt for listening