Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/znerol/ansible-collection-become-password
Ansible vars plugin which looks up become password using a user specified command
https://github.com/znerol/ansible-collection-become-password
Last synced: 25 days ago
JSON representation
Ansible vars plugin which looks up become password using a user specified command
- Host: GitHub
- URL: https://github.com/znerol/ansible-collection-become-password
- Owner: znerol
- Created: 2021-04-23T16:56:38.000Z (over 3 years ago)
- Default Branch: main
- Last Pushed: 2021-04-29T10:18:51.000Z (over 3 years ago)
- Last Synced: 2024-04-16T00:33:49.091Z (7 months ago)
- Language: Python
- Size: 8.79 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
Awesome Lists containing this project
README
# Ansible Collection - znerol.become\_password
Provides an ansible vars plugin which looks up become password using a user
specified command.
## Requirements
* Ansible>=2.10
## Installation
Global installation (recommended):
```bash
ansible-galaxy collection install znerol.become_password
```
Using a `requirements.yml` file:
```yaml
collections:
- name: znerol.become_password
```
## Configuration
Enable the plugin in `ansible.cfg`:
```ini
[defaults]
vars_plugins_enabled=host_group_vars,znerol.become_password.command
```
The lookup command is specified in `ansible.cfg` as well:
```ini
[znerol.become_password.command]
host_command=/home/me/bin/lookup_sudo_host_password.sh
group_command=/home/me/bin/lookup_sudo_group_password.sh
stage=inventory
```
Note that the command specified using `host_command` or `group_command` ini
settings is invoked without a shell. Hence, it is treated as a path (either
absolute or relative).
The first argument to the command is the inventory hostname or group name.
Both `host_command` and `group_command` are optional settings. It is
recommended to specify only one of them.
## Example password lookup script
```
#!/bin/sh
#
# Script template to lookup passwords from some password manager. Uncomment
# whatever works best on your controller machine.
set -eu
INVENTORY_HOSTNAME="${1}"
# # Pass - the standard unix password manager
# # https://www.passwordstore.org/
# #
# # Debian/Ubuntu:
# #
# # apt install pass
# #
# # Docs:
# #
# # man pass
# #
# PASSWORD_STORE_DIR=/home/me/private/my-org-password-store
# /usr/bin/pass "some/subpath/${INVENTORY_HOSTNAME}/become-password"
```
## License
* [GPL-3 or later](https://www.gnu.org/licenses/gpl-3.0.en.html)