- Bitwarden 1 16 6 Cm -
- Bitwarden 1 16 6 Cm X
- Bitwarden 1 16 6 Cmd
- Bitwarden 1 16 6 Cm 2
- Bitwarden 1 16 6 Cm 1
Active1 year, 8 months ago
I have successfully set up a
vault_password_file
that contains a script to read the password from Bitwarden.Stuffit deluxe 16 0 5 – file compression tool. I want to do the same for the 'become password' but don't see where and how that would be possible.
The ansible.cfg is: Tomates time management 8 1.
- Thetis Fido U2F Security Key with Type C Adapter Two-Factor Authentication Extra Protection and Compatible with Windows/Linux/Mac OS, Gmail, Facebook, Dropbox, SalesForce, GitHub and More: Amazon.ca: Electronics.
- Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing. The solution can be.
Ansible-vault-pass is the following, though the details don't matter, this works:
I have a similar script to look up and return the become password, but cannot find how to hook that into the config to be used instead of prompting the user.
Chocolatey is software management automation for Windows that wraps installers, executables, zips, and scripts into compiled packages. Chocolatey integrates w/SCCM, Puppet, Chef, etc. Chocolatey is trusted by businesses to manage software deployments.
I am aware of setting this in
group_vars/all/clear.yml
, e.g. as follows:And then storing the password in the vault. Problem with that approach is that the vault is shared amongst sysadmins that can run ansible on the server fleet. But I don't want any such syadmin to be able to read the sudo password of their colleagues. Hence the approach with Bitwarden/script.
berkesberkes25.6k23 gold badges108 silver badges190 bronze badges
The problem with these kinds of questions is that there are several answers, and the 'right' one depends on your workflow and tolerance for customization. That said, here are a few I know of:
- Using a dynamic inventory script to populate the
ansible_become_pass
var based on whatever logic you wish - Copy a bitwarden lookup plugin into
lookup_plugins
and then setansible_become_pass: '{{ lookup('bitwarden', 'whatever', field='password') }}'
- Copy the become plugin into
become_plugins
and modify it to return the pass fromget_option('become_pass')
using a mechanism of your choice - Using a custom
ansible-playbook-with-bitwarden
shell script that will populate$ANSIBLE_BECOME_PASS
before launchingansible-playbook
25.5k4 gold badges44 silver badges47 bronze badges
Not the answer you're looking for? Browse other questions tagged ansibleansible-vault or ask your own question.
Active3 years ago
I am a Java developer. We use Weblogic to host our applications. I have been told to look into replacing weblogic with an opensource alternative. We are planning use with SpringBoot. We are also looking at Docker/Cloud Foundry. However Docker/Cloud Foundry is new territory for me.
- Can someone please tell me the difference between Cloud Foundry and Docker?
- If we use Docker but not Cloud foundry, what are we missing out on?
- If we use Cloud Foundry but not Docker, what are we missing out on?
Thank you for your help.
A B1,8882 gold badges20 silver badges22 bronze badges
JamesJames
3Docker is a technology for creating and running Linux 'containers.' In some sense, you can think of these as lightweight VMs. A docker container for SpringBoot app will consist of a docker image, which will basically contain a filesystem with all the things needed to run your app (JVM, your source code, etc.), and docker container metadata, which tells the docker daemon how to run the app inside the image (e.g. what environment variables to set, what ports to expose, what commands to run, etc.). The docker daemon will use Linux features such as cgroups and kernel namespaces to run the container in isolation from other processes running on the host machine. Docker is somewhat low-level, in that you need to specify everything that goes into the image, and it runs arbitrary things, namely whatever you put into your image and tell it to run. The docker container that you get is very portable, so you can build, test, and run your docker container locally for development, and then ship that container to a production host that also has a docker daemon running on it, and be quite confident that you're getting the exact same thing.
Cloud Foundry works at a higher layer of abstraction, with applications being a first class concept. Cloud Foundry uses containerization technology similar to docker to build portable images and then run them, but it's an implementation detail and you don't need to specify all the details. In newer versions of Cloud Foundry, docker images will also be supported so you can specify the details if you want, but it also has a 'buildpack' workflow, where it will automatically detect a Java application when you push your app and will know to include all the things necessary for the Java runtime when it builds the image.
With Cloud Foundry, since applications and application management are first class concepts, and since it operates at a higher level, you get all sorts of things for free. For instance, you can easily scale your app horizontally (add instances), e.g.
cf scale my_app -i 5
or vertically, cf scale my_app -m 2G
Short menu: powerful url shortener 2 2 1. (to set the allocated memory for each instance). You get streaming application logs: cf logs my_app
. Cloud Foundry gives you a lot of fault tolerance for free, so if one of your application instances crashes, or the process running the application containers itself crashes (the thing that's similar to the docker daemon), or if the host VM that's running the container-running process dies, or the hardware cluster where that VM resides dies, Cloud Foundry will automatically bring your instances back up.Bitwarden 1 16 6 Cm -
The docker daemon is a single process you can run on any Linux machine. So if you're doing something small and simple, and you need to do most of the setup yourself, it can be easier to get up and running both locally and in development using docker. With docker it's also easier to have access and share the docker image you create, so once you've created an image, you can put it in a docker repository, and then you can run it on any other docker daemon. With Cloud Foundry, the built image is generally an implementation detail and you don't really have access to it, so for instance you couldn't extract that image and run it on another Cloud Foundry installation.
Bitwarden 1 16 6 Cm X
There are various projects out there intended to make Cloud Foundry more accessible and easier to set up, while still giving you many of the benefits of a PaaS. Some of these projects also aim to allow you to combine using docker and the benefits of docker while also getting a lot of the PaaS benefits you get from Cloud Foundry.
See Lattice and Cloud Foundry on BOSH-Lite.
There are also several hosted Cloud Foundry services.
See Pivotal Web Services and IBM BlueMix
There are also a lot of non-CF projects intended to put a platform layer around the core docker technology, in both run-your-own and hosted-service varieties.
See Google's Kubernetes project and Amazon Container Service
Full disclosure: I'm a software engineer working on Cloud Foundry at Pivotal
Amit Kumar GuptaAmit Kumar GuptaBitwarden 1 16 6 Cmd
14.7k6 gold badges41 silver badges57 bronze badges