https://github.com/informaticsmatters/squonk-ansible
Ansible playbooks and roles to deploy Squonk (to Kubernetes)
https://github.com/informaticsmatters/squonk-ansible
Last synced: 26 days ago
JSON representation
Ansible playbooks and roles to deploy Squonk (to Kubernetes)
- Host: GitHub
- URL: https://github.com/informaticsmatters/squonk-ansible
- Owner: InformaticsMatters
- License: apache-2.0
- Created: 2020-01-14T14:41:17.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2024-10-30T07:19:02.000Z (over 1 year ago)
- Last Synced: 2025-01-25T18:43:21.034Z (over 1 year ago)
- Language: Jinja
- Size: 695 KB
- Stars: 0
- Watchers: 3
- Forks: 0
- Open Issues: 2
-
Metadata Files:
- Readme: README-VAULT.md
- License: LICENSE
Awesome Lists containing this project
README
# Encryption of sensitive data (Ansible Vault)
To run the playbooks you will need the [Ansible Vault] Password,
which can be found in **KeePass** (Under **Squonk Ansible > Ansible Vault Password**).
You can either put the password in the `vault-pass.txt` file in the project
root (protested from commit by `.gitignore`) or present it on the
command-line when you run the playbooks.
## Encrypted variables (parameters)
Parameters are stored in vault-encrypted files and these can be used by Ansible
directly. You can expect a vault file for each deployment, identified
at run-time by the variable `sq_parameter_vault`. Vault files can be edited
in-situ while preserving the encrypted state of the file.
Armed with the repo's vault password you can edit any encrypted
parameter file with: -
$ IM_VAULT=im-demo
$ ansible-vault edit roles/squonk/vars/${IM_VAULT}-parameters.vault
---
[Ansible Vault]: https://docs.ansible.com/ansible/latest/user_guide/vault.html