www/content/blog/ansible/ansible-vault-example.md at 60d3abc6ecdc21b4ab921d34a55b4af48690f55a

adyxax/www

Julien Dessaux 60d3abc6ec Rewrote the whole website to get rid on a heavy theme

2021-03-11 18:53:14 +01:00

1,013 B

Raw Blame History

title	linkTitle	date	description
Ansible vault example	Ansible vault example	2018-02-21	Ansible vault example

Here is how to edit a vault protected file : {{< highlight sh >}} ansible-vault edit hostvars/blah.yml {{< / highlight >}}

Here is how to put a multiline entry like a private key in vault (for a simple value, just don't use a |):

{{< highlight yaml >}} ssl_key : | ----- BEGIN PRIVATE KEY ----- blahblahblah blahblahblah ----- END PRIVATE KEY ----- {{< /highlight >}}

And here is how to use it in a task : {{< highlight yaml >}}

copy: path: /etc/ssl/private.key mode: 0400 content: '{{ ssl_key }}' {{< / highlight >}}

To run a playbook, you will need to pass the --ask-vault argument or to export a ANSIBLE_VAULT_PASSWORD_FILE=/home/julien/.vault_pass.txt variable (the file needs to contain a single line with your vault password here).

Ressources

how to break long lines in ansible : https://watson-wilson.ca/blog/2018/07/11/ansible-tips/

1,013 B Raw Blame History

Ressources

1,013 B

Raw Blame History