mystamps icon indicating copy to clipboard operation
mystamps copied to clipboard
verified publisher icon php-coder

Publish playbook for production

Open php-coder opened this issue 6 years ago • 5 comments

Let's commit infra/vagrant/provisioning/prod.* files to Git and use https://git-secret.io or https://github.com/AGWA/git-crypt in order to encrypt sensitive data.

Idea from @asm0dey

php-coder avatar Sep 29 '19 17:09 php-coder

vars section should be replaced by vars_files. The external file can be encrypted then.

php-coder avatar Oct 17 '19 20:10 php-coder

Could be related: https://www.toptechskills.com/ansible-tutorials-courses/ansible-include-import-variables-tutorial-examples/

php-coder avatar Oct 17 '19 20:10 php-coder

The external file can be encrypted then.

Perhaps, we can try ansible-vault: #435

php-coder avatar Oct 17 '19 21:10 php-coder

  • don't forget to scan it with ansible-lint (see #479)

php-coder avatar Oct 20 '19 12:10 php-coder

Need to find a way to commit prod.inventory file as well.

php-coder avatar Nov 24 '19 17:11 php-coder