Wouldn't it be more secure to use Vault here?
Cheers,
Maciej Lasyk
GPG key ID: 4FED49C5
Maciej Lasyk
GPG key ID: 4FED49C5
GPG public key: http://maciek.lasyk.info/gpg_maciej_lasyk.asc
On Wed, Jan 28, 2015 at 4:57 PM, Miroslav Suchý <msuchy@xxxxxxxxxx> wrote:
I have this ansible snippet:
- name: Create users
keystone_user:
login_user="admin" login_password="{{ ADMIN_PASS }}" login_tenant_name="admin"
user="{{ item.name }}"
email="{{ item.email }}"
tenant="{{ item.tenant }}"
password="{{ item.password }}"
state=present
with_items:
- { name: kevin, email: 'kevin@xxxxxxxxxxxxxxxxx', tenant: infrastructure, password: "{{kevin_password}}" }
- { name: laxathom, email: 'laxathom@xxxxxxxxxxxxxxxxx', tenant: infrastructure, password: "{{laxathom_password}}" }
But when I run it it produce:
TASK: [Create users] **********************************************************
changed: [fed-cloud09.cloud.fedoraproject.org] => (item={'password': u'XXXX', 'name': 'kevin', 'tenant':
'infrastructure', 'email': 'kevin@xxxxxxxxxxxxxxxxx'})
changed: [fed-cloud09.cloud.fedoraproject.org] => (item={'password': u'XXXX', 'name': 'laxathom', 'tenant':
'infrastructure', 'email': 'laxathom@xxxxxxxxxxxxxxxxx'})
Is there way to mask the output (using -name or something) so the password is not print to console?
--
Miroslav Suchy, RHCE, RHCDS
Red Hat, Senior Software Engineer, #brno, #devexp, #fedora-buildsys
_______________________________________________
infrastructure mailing list
infrastructure@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/infrastructure
_______________________________________________ infrastructure mailing list infrastructure@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/infrastructure
