Vaults

Angelegt Mittwoch 19 Dezember 2018

How to set and use sudo password for Ansible Vault : https://www.cyberciti.biz/faq/how-to-set-and-use-sudo-password-for-ansible-vault/
Ansible SSH private key in source control? : https://stackoverflow.com/questions/29392369/ansible-ssh-private-key-in-source-control

$ ansible-vault create secret.yml : Verschlüsselten Datenfile secret.yml erzeugen.
$ ansible-vault edit secret.yml : Verschlüsselten Datenfile secret.yml editieren.
$ ansible-vault rekey secret.yml : Dem Datenfile secret.yml einen neuen Vault-Key geben.

Aufruf:
$ ansible-playbook pb-provision.yaml --extra-vars '@secret.yml' --vault-password-file vault_password

mysecret: !vault |
          $ANSIBLE_VAULT;1.1;AES256
          66386439653236336462626566653063336164663966303231363934653561363964363833313662
          6431626536303530376336343832656537303632313433360a626438346336353331
other_plain_text: othervalue