I looked into using ssh-agent first. It *might* be possible, but ssh-agent
is really not designed for this purpose. Check out the protocol
description for ssh-agent[1]: It really expects to be given asymmetric key
data, not passphrases, and it expects to perform challenges/signatures, not
to hand
Would it be possible to extend this to use the ssh-agent?
> Op 2 aug. 2014 om 19:54 heeft Michael DeHaan het
> volgende geschreven:
>
> We have in fact merged in the support for the --vault-password-file to take a
> script (marked chmod +x) that can return the vault password.
>
> I just had
We have in fact merged in the support for the --vault-password-file to take
a script (marked chmod +x) that can return the vault password.
I just hadn't noticed that we merged it, which is all good :)
And yes, you're exactly right - the two PRs are different things all
together. The perils of a
On Fri, Aug 1, 2014 at 6:37 AM, Michael DeHaan wrote:
> There's a pull request for direct GPG support in vault as well, that we
> need to evaluate
>
> https://github.com/ansible/ansible/pull/7174
>
> "Luckily, the next major release of Ansible will include the ability for
> vault_password_file to
Thanks.
Docs need to indicate when a parameter is version specific, I'll take care
of it.
On Fri, Aug 1, 2014 at 9:18 AM, Matt Martz wrote:
> The PR for using a script for the password file did include some
> documentation which is available at:
>
> http://docs.ansible.com/playbooks_vault.ht
The PR for using a script for the password file did include some
documentation which is available at:
http://docs.ansible.com/playbooks_vault.html#running-a-playbook-with-vault
It is not extensive but does give some information as to what ansible
expects.
James merged the PR a few weeks ago.
On
There's a pull request for direct GPG support in vault as well, that we
need to evaluate
https://github.com/ansible/ansible/pull/7174
"Luckily, the next major release of Ansible will include the ability for
vault_password_file to point at a script that will be run to get your
passphrase."
FYI -
Hi Ansible users,
I've been trying to use vault lately but I got tired of having to enter my
passphrase every time I ran ansible-playbook. I didn't want to put my
passphrase into a file on disk, either. Luckily, the next major release of
Ansible will include the ability for vault_password_file t
