Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Gossip/TLS encryption node attributes still requires consul data_bag, encrypt item, secret #151
Setting the following consul attributes fails.
Data Bag Items must contain a Hash or Mash!
No secret specified and no secret found at /etc/chef/encrypted_data_bag_secret
I had to create a "consul" databag with a "encrypt" item.
Also had to provide the secret file. Which is kinda weird. The reason for using attributes is so i don't have to create a databag. However, it seems one is required regardless. People might think that this type of data should be encrypted in a databag. However, if i am using chef-solo from a packer template to create a image then I can provide all this data from environment variables to packer.
I'm doing almost the same thing, and didn't have to create any data bags. The only difference is instead of setting the values of "ca_file", "cert_file" and "key_file" attributes to filesystem paths, I have set them to the contents of those files (as a string).