Can't run bootstrap_ansible with encrypted user_secrets.yml (prompting for password)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack-Ansible |
Expired
|
Undecided
|
Unassigned |
Bug Description
bootstrap_ansible eventually calls openstack-ansible, which collects the 'user_*' files from /etc/openstack_
Here's the tail-end of bootstrap-ansible's run:
+ pushd tests
/home/osa/
+ ansible-playbook get-ansible-
Variable files: "-e @/etc/openstack
ERROR! Decryption failed on /etc/openstack_
++ exit_fail 284 0
Two things come to mind:
1. Perhaps bootstrap_ansible shouldn't actually need to access (ie: decrypt) user_secrets.yml; I suppose the least access to these secrets the better. The same might also apply to specific playbooks such as setup_hosts.yml
2. (a contradiction of #1): perhaps the easiest way around this would be for the generated wrapper /usr/local/
What do people think?
Changed in openstack-ansible: | |
status: | Invalid → New |
openstack-ansible <playbook> --ask-vault-pass works for me, could you detail what's wrong?