Hello,
I did write the user/password to use for the get_url command in a file encrypt with vault this way:
urlname: user1
urlpass: pass1
in my playbook I use these variables:
get_url:
url: “https:…”
url_username: “{{ urlname }}”
url_password: “{{ urlpass }}”
If I run in verbose the playbook this way, the user/password are displayed in clear mode:
ansible-playbook -vvvvv -i host.ini test.yml -l connect --ask-vault-pass
…
ok: [localhost] => {“changed”: false, “checksum_dest”: “7c2f282bfb7078a26ac228c0cb44dcd36a54c475”, “checksum_src”: “7c2f282bfb7078a26ac228c0cb44dcd36a54c475”, “dest”: “/ftest/file.zip”, “gid”: 1001, “group”: “ftest”, “invocation”: {“module_args”: {“backup”: false, “checksum”: “”, “content”: null, “delimiter”: null, “dest”: “/ftest”, “directory_mode”: null, “follow”: false, “force”: false, “force_basic_auth”: false, “group”: null, “headers”: null, “http_agent”: “ansible-httpget”, “mode”: 438, “owner”: null, “path”: “/ftest/file.zip”, “regexp”: null, “remote_src”: null, “selevel”: null, “serole”: null, “setype”: null, “seuser”: null, “sha256sum”: “”, “src”: null, “timeout”: 180, “tmp_dest”: “”, “url”: “https://www.test.com/file.zip”, “url_password”: “pass1”, “url_username”: “user1”, “use_proxy”: true, “validate_certs”: true}, “module_name”: “get_url”}, “md5sum”: "d
Is there a way to crypt these values in verbose mode ?
Regards