You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I am able to to create the gpg encrypted file, and the shell script, and it does work independently when executed, I do in fact get the password back. However, when executing with the EE as documented, the ENV is inside the EE container, but Ansible seems to simply ignore it:
ANSIBLE_VAULT_PASSWORD="$(~/bin/vault.sh )" ansible-navigator run (...)
Is the behavior that is expected such that ANSIBLE_VAULT_PASSWORD=my_plain_text_password would be inside the EE? If so, I do see that if I switch run to exec and printenv, but the playbook does not seem to use it, first task executed with something vaulted says there were not credentials available.
A vault password or secret must be specified to decrypt
The previous instructions that revolve around linking the password file or script into the project that are considered the less secure options per the docs, do work for me as documented. I just prefer the newly mentioned method above. FWIW, I am on MacOS 14.4.1, and ansible-navigator 24.2.0.
The text was updated successfully, but these errors were encountered:
ISSUE TYPE
SUMMARY
The document section in question: link
I am able to to create the gpg encrypted file, and the shell script, and it does work independently when executed, I do in fact get the password back. However, when executing with the EE as documented, the ENV is inside the EE container, but Ansible seems to simply ignore it:
ANSIBLE_VAULT_PASSWORD="$( ~/bin/vault.sh )" ansible-navigator run (...)
Is the behavior that is expected such that
ANSIBLE_VAULT_PASSWORD=my_plain_text_password
would be inside the EE? If so, I do see that if I switchrun
toexec
andprintenv
, but the playbook does not seem to use it, first task executed with something vaulted says there were not credentials available.A vault password or secret must be specified to decrypt
The previous instructions that revolve around linking the password file or script into the project that are considered the less secure options per the docs, do work for me as documented. I just prefer the newly mentioned method above. FWIW, I am on MacOS 14.4.1, and
ansible-navigator 24.2.0
.The text was updated successfully, but these errors were encountered: