vleeuwenmenno/dotfiles
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
dotfiles/config/ansible
History
Menno van Leeuwen b511bafe27
Some checks failed
Nix Format Check / check-format (push) Failing after 37s
Details
feat: refactor Hoarder service configuration to use .env file for environment variables
2025-03-11 20:45:45 +01:00
..
group_vars
Add Ansible configuration and remove NixOS
2025-01-20 09:18:58 +01:00
handlers
feat: restructure Ansible playbook and add SSH service handlers
2025-03-11 16:02:49 +01:00
plugins/lookup
feat: enhance 1Password lookup module to handle empty output and improve logging
2025-03-11 20:22:17 +01:00
tasks
feat: refactor Hoarder service configuration to use .env file for environment variables
2025-03-11 20:45:45 +01:00
templates
feat: add SSH login information and dotfiles status check to hello.py; include OpenSSH server tasks in Ansible configuration
2025-03-10 19:05:18 +01:00
tests
test: add Ansible playbook for testing 1Password lookup functionality
2025-03-11 20:41:05 +01:00
ansible.cfg
feat: update Ansible configuration and add 1Password lookup plugin for secret management
2025-03-11 15:54:31 +01:00
inventory.ini
feat: rename dotfiles-test to mennos-cloud-server in Ansible inventory and configurations
2025-03-11 14:04:28 +01:00
playbook.yml
feat: restructure Ansible playbook and add SSH service handlers
2025-03-11 16:02:49 +01:00
README.md
feat: enhance 1Password lookup functionality with vault ID support and concealment option
2025-03-11 15:58:27 +01:00
requirements.yml
refactor: add pre-tasks for installing Ansible collections and improve final setup messages
2025-01-22 16:22:15 +01:00

README.md

Ansible Configuration

1Password Integration

This Ansible configuration includes a custom lookup plugin for fetching secrets from 1Password. The 1Password CLI must be installed and authenticated on the machine running Ansible.

Usage

# Simple password lookup
password: "{{ lookup('onepassword', 'item-name') }}"

# Fetch specific field
api_key: "{{ lookup('onepassword', 'item-name', field='api_key') }}"

# Fetch from specific vault (using vault ID)
database_password: "{{ lookup('onepassword', 'database', field='password', vault='j7nmhqlsjmp2r6umly5t75hzb4') }}"

# Fetch a field without revealing it (for non-password fields)
note: "{{ lookup('onepassword', 'item-name', field='notes', reveal=false) }}"

Prerequisites

  1. Install 1Password CLI
  2. Sign in to 1Password using op signin
  3. Service account should be properly configured

Finding Vault IDs

To find your vault ID:

op vault list

For more information, see the 1Password CLI documentation.