stackoom
  简体   繁体   中英

Ansible check if file is encrypted by ansible-vault

 原文  2017-11-05 00:46:37       encryption/ ansible/ ansible-vault

Question

I need to encrypt a file using ansible-vault . I would like to perform the encryption only if the file is not already encrypted by ansible vault. I am trying to use this task in my Ansible playbook:

- local_action: command
    ansible-vault encrypt path/to/file
  when: <when file is not already encrypted by ansible-vault>

Is there a logic to use in the conditional statement that will check if a file is already encrypted by ansible-vault ?

1 answers

solution1
 2 ACCPTED  2017-11-05 01:11:10

There is likely a myriad of ways to do it, all having little to do with Ansible and Ansible Vault itself. Here's one:

- local_action: shell
    head -1 {{ file }} | grep -v -q \$ANSIBLE_VAULT && ansible-vault encrypt {{ file }}

You'll also need --vault-password-file otherwise Ansible will stop processing and wait on prompt.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Using encrypted variable with Ansible-Vault for network automation How to post encrypted file using ansible vault? Ansible create encrypted file to an existing vault use ansible-vault to encrypt multiple files at once WinRM password as encrypted string in ansible host file? Ansible Vault - .json not unencrypted Ansible: How to encrypt some variables in an inventory file in a separate vault file? Decrypting ansible vault files before rsyncing Ansible use encrypted variables in other variables Check encrypted file for empty content
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM