Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

encrypted /files support (ansible-vault, files/copy modules) #6596

Closed
zytek opened this issue Mar 20, 2014 · 12 comments
Closed

encrypted /files support (ansible-vault, files/copy modules) #6596

zytek opened this issue Mar 20, 2014 · 12 comments

Comments

@zytek
Copy link
Contributor

@zytek zytek commented Mar 20, 2014

Issue Type:

Feature Idea

Ansible Version:

N/A

Environment:

N/A

Summary:

add "encrypted=Boolean" parameter to copy/files modules so when True, files would be decrypted using ansible-vault prior to copying.

Steps To Reproduce:

N/A

Expected Results:

N/A

Actual Results:

N/A

@mpdehaan
Copy link
Contributor

@mpdehaan mpdehaan commented Mar 20, 2014

Since they will be unencrypted on the remote anyway I don't think we're going to do this.

@mpdehaan mpdehaan closed this Mar 20, 2014
@zytek
Copy link
Contributor Author

@zytek zytek commented Mar 20, 2014

@mpdehaan

It's unfortunate.

Our use case is that our remote servers are "secure" vel "trusted", but we would like to store our ansible roles on github/bitbucket which aren't trusted.

@ruudk
Copy link

@ruudk ruudk commented Apr 14, 2014

I really want to do this to. I want to store an encrypted template on Github and have it auto decrypted on copying to the server.

@renaudguerin
Copy link

@renaudguerin renaudguerin commented May 20, 2014

Add another vote, I wondered for a while why this wasn't working !

I finally managed to work around this by templating my config file and moving the secrets in it into variables, but I can see situations where this would be a bit ugly (server certificates in variables, really ?) or not possible at all.

@pkoro
Copy link

@pkoro pkoro commented May 29, 2014

+1 for such a feature. It would help in handling sensitive files (i.e. certificate files) as mentioned previously also on this thread.

@ryanolson
Copy link

@ryanolson ryanolson commented Jun 2, 2014

+1

@zecrazytux
Copy link
Contributor

@zecrazytux zecrazytux commented Jul 2, 2014

+1.

@maheshbr
Copy link

@maheshbr maheshbr commented Jul 15, 2014

+1

@wyrdangel
Copy link

@wyrdangel wyrdangel commented Aug 4, 2014

+1 I too would like to be able to put things in our company github repo for a particular project without exposing it completely or having to do annoying and hacky-feeling workarounds in order to do so.

@raboof
Copy link

@raboof raboof commented Aug 6, 2014

Can this be achieved with #8110 ?

@wyrdangel
Copy link

@wyrdangel wyrdangel commented Aug 6, 2014

Yes I think so. Bocca pointed me at this a couple days ago as well..so thank you both!

@ansible ansible locked and limited conversation to collaborators Nov 4, 2014
@mpdehaan
Copy link
Contributor

@mpdehaan mpdehaan commented Nov 4, 2014

Please see the above comment.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
10 participants
You can’t perform that action at this time.