ansible-vault

ansible-vault copied to clipboard

restart according to rolling upgrade instructions added

1

This will add a switch to restart a cluster according to instructions noted in [Rolling Upgrade Procedure for upgrading a single HA cluster](https://developer.hashicorp.com/vault/tutorials/standard-procedures/sop-upgrade#rolling-upgrade-procedure-for-upgrading-a-single-ha-cluster). Flow in ansible: 1. Identify if host...

smirta

Notify Restart vault handler as in the other install tasks.

smirta

hello on my cluster bind addr is not ansible_default_ipv4 I have correctly set vault_iface variable to have a correct vault_api_addr variable generated. but for vault_raft_cluster_members she always genetate default value...

vincentDcmps

An error occurs on the task: Vault main configuration

7

playbook launch: `ansible-playbook -i inventory/infrastructure/hosts playbooks/all.yml --limit vault --tags vault-community ` ``` TASK [ansible-role-vault-community : Vault main configuration] **************************************************************************************************************************************************** fatal: [vault1-infrastructure]: FAILED! => {"changed": false, "msg": "AnsibleUndefinedVariable: [\n{% for server...

vldanch

feat: add vault_license_reporting var to opt out of automated license utilization reporting

1

This adds a variable `vault_license_reporting` to allow enterprise customers to opt out of the [automated license utilization reporting](https://developer.hashicorp.com/vault/docs/enterprise/license/utilization-reporting). The default for the variable is `false`, which means that no config...

in0rdr

Fix vault_group variable

1

This fixes #329 but I'm not sure of the implications of this change.

bagratte

```yaml - name: Install Vault hosts: vault gather_facts: true any_errors_fatal: true become: true roles: - role: ansible-community.ansible-vault vault_install_hashi_repo: true vault_version: 1.13.2-1 ``` ```console $ ansible-playbook ... ... TASK [ansible-community.ansible-vault :...

bagratte

# Description Vault supports [dynamic config](https://developer.hashicorp.com/vault/docs/configuration/listener/tcp#address) for ip resolution using [go-sockaddr](https://pkg.go.dev/github.com/hashicorp/go-sockaddr/template). I'm able to using this module to set the config I need by using `vault_address: !unsafe '{{ GetPrivateIP }}'`....

codezninja

Help with transit auto-unseal example

6

Is there an example of how to apply the transit auto-unseal variables with this role? I have a cluster with 3 vault servers in HA mode. Will like to implement...

vacquah

Stop concatenating spaces in templating logic.

2

The spaces before each template block are adding together to make the final product output file indenting excessive. Opting here for final readability instead of templating readability.

deekayen