ReleaseEngineering/PuppetAgain/Secrets: Difference between revisions

Jump to navigation Jump to search

ReleaseEngineering/PuppetAgain/Secrets (view source)

Revision as of 19:34, 25 August 2015

202 bytes added ,  25 August 2015
tips for 1st time user
No edit summary
(tips for 1st time user)
Line 35: Line 35:
     --output examples --password -l 'foo'
     --output examples --password -l 'foo'


where 'foo' is the name of the variable to set.  Then copy/paste whichever result format you prefer into `/etc/hiera/secrets.eyaml` or into your own `/etc/hiera/environments/<username>_secrets.eyaml`.  Double-check your work before saving -- if this file can't be parsed as valid yaml, all puppet runs will fail.
where 'foo' is the name of the variable to set.  The output will go to stdout, in 2 formats (all one line, multiline). Copy/paste whichever result format you prefer into `/etc/hiera/secrets.eyaml` or into your own `/etc/hiera/environments/<username>_secrets.eyaml`.  Double-check your work before saving -- if this file can't be parsed as valid yaml, all puppet runs will fail. A python one line syntax checker is:
 
  python -c "import yaml; f=open('secrets.eyaml','r'); yaml.load(f)" && echo "pass" || echo "FAIL"


To encrypt a new *file* (e.g. a private key) rather than a password, pipe the contents of the file to the above command, and replace --password with --stdin, e.g.
To encrypt a new *file* (e.g. a private key) rather than a password, pipe the contents of the file to the above command, and replace --password with --stdin, e.g.
Hwine
Confirmed users
1,364

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1091947"

Navigation menu