Ansible - Lookup Plugin
2 votes
First off, I apologize if this is in the wrong location! I've been reviewing the Ansible module and I think it's great, but I would also love a lookup plugin for fetching credentials so that I wouldn't have to necessarily fetch credentials in a task in a playbook.
Here is another product that does this:
https://galaxy.ansible.com/ui/repo/published/delinea/ss/docs/tss/
The advantage of this is I could have the lookups directly in inventory and group variables and then could expose the vault ID, URL, API key, etc via variables. The Delinea example is a little messy and I'm sure there's a better way to do it.
All Comments (5)
Hi Chris,
This is indeed a very valid use case. We'll note that as a potential feature for an upcoming update.
Did you have success using the DVLS Ansible module to improve secret handling in your Ansible playbooks already, or are you still at the tinkering stage?
Simon Chalifoux
Thank you so much for the consideration! I'm still in the tinkering stage, but I actually planned on spending a lot more time with it in the coming weeks, so I'm more than happy to share any additional feedback I may have.
Hi @csudderth! I'm glad you gave a shot to our ansible-module! My team is reponsible for its development. Any feedback is welcomed and I will make sure we discuss it with my team this week. We will keep you in the loop for that feature request.
Richer Larivière
Hi @csudderth! I'm glad you gave a shot to our ansible-module! My team is reponsible for its development. Any feedback is welcomed and I will make sure we discuss it with my team this week. We will keep you in the loop for that feature request.
@Richer Larivière
I have been using the new lookup plugin for a couple of weeks now with great success. Thank you for implementing this feature request and doing it so quickly!
And for anyone reading...this was implemented in v1.3.0 a few weeks ago.
https://github.com/Devolutions/ansible-dvls/releases/tag/v1.3.0