projects/arvandor
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
arvandor/ansible/vault/README.md
Damien Coles 0c77379ab3 public-ready-init
2026-01-26 00:44:31 -05:00

1.0 KiB
Raw Blame History

Ansible Vault Secrets

This directory stores encrypted secrets used by playbooks.

Setup

  1. Create a password file (excluded from git):

    echo "your-vault-password" > ansible_vault_pass
chmod 600 ansible_vault_pass

  2. Create the secrets file:

    ansible-vault create secrets.yml --vault-password-file ansible_vault_pass

  3. Add your secrets (example structure):

    # Valkey admin password (used by valkey.yml)
valkey_admin_password: "your-strong-password"

# Vault admin database password (used by data-service.yml)
vault_admin_password: "your-vault-admin-password"

Usage

Reference in playbooks:

vars_files:
  - ../vault/secrets.yml

Run playbooks with vault password:

ansible-playbook -i inventory.ini playbooks/valkey.yml --vault-password-file vault/ansible_vault_pass

Or set the environment variable:

export ANSIBLE_VAULT_PASSWORD_FILE=vault/ansible_vault_pass
ansible-playbook -i inventory.ini playbooks/valkey.yml