- Summon and the Summon-Conjur provider are installed to retrieve credentials.
retrieve_conjur_variable
lookup plugin is now backwards-compatible with Conjur 4. Set the enviroment variableCONJUR_VERSION=4
on the host machine to enable Conjur 4 support.
- Changed role name from
ansible-role-conjur
toconfigure-conjur-identity
- Added lookup plugin for retrieving Conjur secrets with Ansible host machine identity
- Added module for retrieving Conjur secrets with Ansible remote machine identity
- Added Molecule tests for role, lookup plugin & module
- Role, lookup plugin & module work with HTTP & HTTPS (with self-signed & CA certificates)
/etc/conjur.identity
is no longer symlinked from/dev/shm
. This is too opinionated.
- Variable "conjur_host_factory_token" is no longer required when nodes are already conjurized
- Running the role on a node with Conjur identity no longer requests a new API key
- Adds support for Conjur SSH configuration (via Chef)
- Initial release