Thanks, I guess this is what I am looking for and I'll wait for this patch to be merged.
It resolves another thing I was surprised about, if I encrypt whole files with ansible-vault, during the playbook run with --ask-vault-pass the files are still not parsable because they are still encrypted. I suppose this is by design but doesn't do what I wanted or expected. Michael I will go with your suggestion for now and use something external to protect the private keys. I did find the authorized keys module but the docs only mention use cases for public keys so I didn't explore it any further. Cheers On Sunday, 27 July 2014 05:07:13 UTC+1, Brian Coca wrote: > > This is the use case for which I added vault support to the file lookup > plugin > https://github.com/ansible/ansible/pull/8110 > > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/2c467626-3a93-4e8a-a101-2d90bbfb5131%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
