From 37000ddda20003b9dc26ab43816c1ccc382f529d Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Mon, 5 Dec 2016 17:53:13 +0000
Subject: [PATCH] set check_mode: no on all the tasks that register variables
 to get the ipa playbooks working with check mode

---
 roles/keytab/service/tasks/main.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/roles/keytab/service/tasks/main.yml b/roles/keytab/service/tasks/main.yml
index edff034041..b824775335 100644
--- a/roles/keytab/service/tasks/main.yml
+++ b/roles/keytab/service/tasks/main.yml
@@ -2,6 +2,7 @@
 - name: Determine whether we need to get keytab
   stat: path={{kt_location}}
   register: keytab_status
+  check_mode: no
   tags:
   - keytab
   - config
@@ -20,6 +21,7 @@
   delegate_to: "{{ ipa_server }}"
   command: ipa host-add {{host}}
   register: host_add_result
+  check_mode: no
   changed_when: "'Added host' in host_add_result.stdout"
   failed_when: "not ('Added host' in host_add_result.stdout or 'already exists' in host_add_result.stderr)"
   tags:
@@ -32,6 +34,7 @@
   delegate_to: "{{ ipa_server }}"
   command: ipa service-add {{service}}/{{host}}
   register: service_add_result
+  check_mode: no
   changed_when: "'Added service' in service_add_result.stdout"
   failed_when: "not ('Added service' in service_add_result.stdout or 'already exists' in service_add_result.stderr)"
   tags:
@@ -44,6 +47,7 @@
   delegate_to: "{{ ipa_server }}"
   command: ipa service-allow-retrieve-keytab {{service}}/{{host}} --hosts={{inventory_hostname}}
   register: service_perm_add_result
+  check_mode: no
   changed_when: "'members added 1' in service_perm_add_result.stdout"
   failed_when: "not ('members added' in service_perm_add_result.stdout)"
   tags:
@@ -56,6 +60,7 @@
   delegate_to: "{{ ipa_server }}"
   command: ipa service-allow-retrieve-keytab {{service}}/{{host}} --users=admin
   register: service_perm_add_result
+  check_mode: no
   changed_when: "'members added 1' in service_perm_add_result.stdout"
   failed_when: "not ('members added' in service_perm_add_result.stdout)"
   tags:
@@ -68,6 +73,8 @@
   delegate_to: "{{ ipa_server }}"
   command: ipa-getkeytab --retrieve --server {{ipa_server}} --keytab /tmp/{{service}}_{{host}}.kt --principal {{service}}/{{host}}
   register: retrieve_result
+  check_mode: no
+  changed_when: "1 != 1"
   failed_when: "not ('Keytab successfully retrieved' in retrieve_result.stderr or 'krbPrincipalKey not found' in retrieve_result.stderr)"
   tags:
   - keytab
@@ -97,6 +104,7 @@
   delegate_to: "{{ ipa_server }}"
   command: base64 /tmp/{{service}}_{{host}}.kt
   register: keytab
+  check_mode: no
   tags:
   - keytab
   - config