- Full
ANSIBLE_ASK_VAULT_PASS=True ansible-pull --url https://github.com/slydor/ansible.git --ask-become-pass
- Just node
ansible-pull --url https://github.com/slydor/ansible.git --tags node
- Example with ssh on specific branch
dev
ANSIBLE_ASK_VAULT_PASS=True ansible-pull --url https://github.com/slydor/ansible.git --tags ssh --checkout dev
- Setup FLS git config
ANSIBLE_ASK_VAULT_PASS=True ansible-pull --url https://github.com/slydor/ansible.git --tags git-fls
- core requires --ask-become-pass
- ssh
- shell
- git
- git-personal
- git-fls
- docker requires --ask-become-pass
- deno
- node requires --ask-become-pass
- rust
- java
- python requires --ask-become-pass
- vscode requires --ask-become-pass
- brave requires --ask-become-pass
- dev requires --ask-become-pass
- Have Docker
- Clone
- Use VS Code with extension
Dev Containers
- In container, use:
ansible-playbook -t ssh local.yml --ask-vault-pass
- Clone/fork whatever
- Create own SSH keys using your favorite key gen tool
- Use ansible to encrypt both
id_rsa
andid_rsa.pub
file. I.e. using this devcontainer, because it contains ansible:
ansible-vault encrypt .ssh/id_rsa*
- Commit the vaulted files in the .ssh directory. Yes, it is fine to commit your private key this way. Vault uses AES256.
- Create vars for git configuration. They are ansible var files in this layout:
<key1>:<value1>\n<key2>:<value2>
. In this specific part they containuser_name
anduser_email
. Then vault it like it's hot.
printf 'user_name:"slydor"\nuser_email:"slydor@example.com"\n' > vars/personal-git.yml && ansible-vault encrypt vars/personal-git.yml