remove unnecessary secret_* everywhere

roles/backup/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 backup_vpn_net: "10.8.0.0/24"
 backup_vpn_bridge: "10.8.0.2"
 backup_host: "192.168.0.10"

roles/blog/defaults/main.yml

@@ -1,8 +1,3 @@
-# pass
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 fathom_admin_username: "{{ admin_email }}"
 fathom_admin_password: "{{ lookup('password', secret + '/' + 'fathom_admin_password length=32') }}"
 

roles/common/defaults/main.yml

@@ -5,11 +5,6 @@ server_hostname: "{{ server_fqdn }}"
 friendly_networks:
   - ""
 
-# pass
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 db_admin_username: 'postgres'
 db_admin_password: "{{ lookup('password', secret + '/' + 'db_admin_password length=32') }}"
 

roles/gitea/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 gitea_subdomain: "git"
 gitea_domain: "{{ gitea_subdomain }}.{{ domain }}"
 

roles/iot/defaults/main.yml

@@ -6,10 +6,6 @@ grafana_internal_port: '2942'
 mqtt_admin_version: '1.0.0'
 mqtt_admin_release: "https://github.com/hobbyquaker/mqtt-admin/releases/download/v{{ mqtt_admin_version }}/mqtt-admin_{{ mqtt_admin_version }}.zip"
 
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 grafana_main_user: "{{ main_user_name }}"
 grafana_main_user_password: "{{ lookup('password', secret + '/' + 'grafana_main_user_password length=20 chars=hexdigits') }}"
 

roles/ircbouncer/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 irc_admin_username: "{{ main_user_name }}"
 irc_admin_password: "{{ lookup('password', secret + '/' + 'irc_admin_password length=32') }}"
 

roles/mailserver/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 # must match values in roles/common
 db_admin_username: 'postgres'
 db_admin_password: "{{ lookup('password', secret + '/' + 'db_admin_password length=32') }}"

roles/mastodon/defaults/main.yml

@@ -5,10 +5,6 @@ ruby_version: 2.6.0
 rbenv_version: v1.1.1
 ruby_build_version: v20181225
 
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 mastodon_db_username: mastodonuser
 mastodon_db_password: "{{ lookup('password', secret + '/' + 'mastodon_db_password length=32') }}"
 mastodon_db_database: mastodon

roles/matrix/defaults/main.yml

@@ -4,10 +4,6 @@ matrix_domain: "{{ matrix_subdomain }}.{{ domain }}"
 riot_version: "1.0.3"
 riot_release: "https://github.com/vector-im/riot-web/releases/download/v{{ riot_version }}/riot-v{{ riot_version }}.tar.gz"
 
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 synapse_admin: "{{ admin_email }}"
 synapse_registration_secret: "{{ lookup('password', secret + '/' + 'synapse_registration_secret length=32 chars=ascii_letters,digits') }}"
 synapse_pw_pepper: "{{ lookup('password', secret + '/' + 'synapse_pw_pepper length=32 chars=ascii_letters,digits') }}"

roles/monitoring/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 # must match values in roles/common
 monit_admin_username: "{{ main_user_name }}"
 monit_admin_password: "{{ lookup('password', secret + '/' + 'monit_admin_password length=16 chars=hexdigits') }}"

roles/news/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 selfoss_subdomain: "news"
 selfoss_domain: "{{ selfoss_subdomain }}.{{ domain }}"
 

roles/nextcloud/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 nextcloud_subdomain: "cloud"
 nextcloud_domain: "{{ nextcloud_subdomain }}.{{ domain }}"
 

roles/sslletsencrypt/defaults/main.yml

@@ -4,11 +4,6 @@ main_user_shell: "/bin/bash"
 friendly_networks:
   - ""
 
-# pass
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 db_admin_username: 'postgres'
 db_admin_password: "{{ lookup('password', secret + '/' + 'db_admin_password length=32') }}"
 

roles/sslselfsigned/defaults/main.yml

@@ -4,11 +4,6 @@ main_user_shell: "/bin/bash"
 friendly_networks:
   - ""
 
-# pass
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 db_admin_username: 'postgres'
 db_admin_password: "{{ lookup('password', secret + '/' + 'db_admin_password length=32') }}"
 

roles/webmail/defaults/main.yml

@@ -2,7 +2,3 @@
 webmail_subdomain: "mail"
 webmail_domain: "{{ webmail_subdomain }}.{{ domain }}"
 webmail_language: "en_US"
-
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'

roles/xmpp/defaults/main.yml

@@ -1,7 +1,3 @@
-secret_root: '{{ inventory_dir | realpath }}'
-secret_name: 'secret'
-secret: '{{ secret_root + "/" + secret_name }}'
-
 prosody_admin: "{{ admin_email }}"
 prosody_accounts:
   - name: "{{ main_user_name }}"