You could load in encrypted vars via a lookup to something like pass (
passwordstore.org).
- name: Debug
debug: msg={{lookup('pipe', 'pass some/password/i/need') }}
This way you can store your passwords as gpg-encrypted files, and even
version them along with your plays.
On Mon, Feb 16, 2015 at 5:58 PM, Brian Coca <[email protected]> wrote:
> not currently, vault only supports full file encryption (you do't need
> to encrypt all your vars, just the secrets).
>
> --
> Brian Coca
>
> --
> You received this message because you are subscribed to the Google Groups
> "Ansible Project" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to [email protected].
> To post to this group, send email to [email protected].
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/ansible-project/CAJ5XC8%3DfpkD-9ZBy0o4b4XE_bwUgdDeV1%3DKd7th6dpgtOKW1%2Bw%40mail.gmail.com
> .
> For more options, visit https://groups.google.com/d/optout.
>
--
Mark Janssen -- maniac(at)maniac.nl
Unix / Linux Open-Source and Internet Consultant
Maniac.nl Sig-IO.nl Vps.Stoned-IT.com
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/CAKs9msjXA1xramizpSayptUNWGiJcwwqO%2BfGs_3B2Rd9sWEKCg%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
