| 'use strict'; | |
| const co = require('co'); | |
| const EventEmitter = require('events'); | |
| const Promise = require('bluebird'); | |
| const AWS = require('aws-sdk'); | |
| const ssm = Promise.promisifyAll(new AWS.SSM()); | |
| const DEFAULT_EXPIRY = 3 * 60 * 1000; // default expiry is 3 mins |
FWIW: I (@rondy) am not the creator of the content shared here, which is an excerpt from Edmond Lau's book. I simply copied and pasted it from another location and saved it as a personal note, before it gained popularity on news.ycombinator.com. Unfortunately, I cannot recall the exact origin of the original source, nor was I able to find the author's name, so I am can't provide the appropriate credits.
I've been using a lot of Ansible lately and while almost everything has been great, finding a clean way to implement ansible-vault wasn't immediately apparent.
What I decided on was the following: put your secret information into a vars file, reference that vars file from your task, and encrypt the whole vars file using ansible-vault encrypt.
Let's use an example: You're writing an Ansible role and want to encrypt the spoiler for the movie Aliens.
| // Drives the Bieber-graph at http://awesometown.no.de. | |
| // Run through a recent-ish version of node.js. | |
| var sys = require('sys'), | |
| http = require('http'), | |
| twitter = http.createClient(80, 'search.twitter.com'), | |
| twitterPath = "/search.json?&q=bieber", | |
| chartId = "4c7a650eba12e9c41d000005", | |
| interval = 5000, | |
| lastId = null; |
