Transparently Encrypt Select Files within a Git Repository

Aaron_Bull_Schaefer · February 14, 2014, 3:44pm

Since the discussion for a built-in "vault" feature seems to have died
down, I started looking into alternatives for managing sensitive
information (like passwords and private keys) for use with my Ansible
playbooks. I found a couple of projects to store encrypted files in a
Git repository directly (encrypt on commit, decrypt on checkout), but
I wasn't happy with the implementation of those projects.

I thought the idea was sound, so I ended up writing transcrypt [1] to
be a bit more usable and safe compared to the alternatives. I thought
other people on this list might find it useful.

[1] https://github.com/elasticdog/transcrypt

sivel · February 14, 2014, 5:23pm

Although the discussion has died down, work towards making it a reality has not.

vault is projected for inclusion in the 1.5 release (afaik), which we should see within a month or so.

Michael_DeHaan1 · February 14, 2014, 6:00pm

vault is in active development now, we should be able to share something on the githubs early next week.

Topic		Views
vault and git do not mix Ansible Project	9	February 10, 2017
Ooops ! I just pushed my unencrypted vault/secets file to the Git repo... Ansible Developer	2	January 22, 2015
Vault support for binary files Ansible Developer	5	August 28, 2015
Is there a module that can encrypt a file with vault in tasks? Ansible Project	2	October 19, 2022
git diff vault files Ansible Project	4	December 15, 2014

Transparently Encrypt Select Files within a Git Repository

Related topics