you can use vars_prompt or a store the credentials in a vault and then pass those as arguments to the script.
On Tue, Jun 30, 2015 at 10:57 AM, Boris Mühmer <[email protected]> wrote: > I am pretty new to Ansible and this group, so just a quick "Hello" to > everyone! > For my 1st questions I already got quick answers using IRC, but now I think > a mail would be better. > > The problem I have is the following: during the setup of virtual hosts I > generate new users, with SSH key-pairs, and I checkout git repositories from > our gitlab server. > For the git checkout we use deploy only keys. So I need to add the generated > public SSH key from the special virtual host user to the project in gitlab. > I just wrote a little python script - as a proof of concept - to add a > public SSH key to a project, so no bid deal at all. > > But I have to specify either some credentials or a token for an > administrative gitlab user, and I am stuck how to do this. > > I came up with two strategies: > 1) Copy the python script, that installs the key in the project to the > server, and pass the "secret" token using an environment variable to the > script. > 2) Copy the public SSH key to the system, that excutes the playbook, and run > the python script. > > What I don't like about the 1st approach is, that I have to install a python > library ("pyapi-gitlab"), which isn't really needed on the target server. > Also I am not sure if my ideas are good practice. > > So, do You have any suggestions (or pointers to best practices) what I > should do? > > Thanks in advance! > > > Regards, > Boris > > > > -- > You received this message because you are subscribed to the Google Groups > "Ansible Project" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/ansible-project/12e1d539-1c0c-4a73-b9a1-3fdb3cdbf009%40googlegroups.com. > For more options, visit https://groups.google.com/d/optout. -- Brian Coca -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAJ5XC8nSEP-pZE6roQ99JvXscvDkW1RMBn3P3pU8dB3hUwuXZA%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
