wbyc/terraform-certificate-automation
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
terraform-certificate-autom.../ansible/roles/vault_agent/defaults/main.yml
Patrick de Ruiter 22d78bf85c
All checks were successful
Code Quality & Security Scan / TFLint (push) Successful in 24s
Details
Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 30s
Details
Code Quality & Security Scan / Checkov Security Scan (push) Successful in 44s
Details
Code Quality & Security Scan / Terraform Validate (push) Successful in 43s
Details
Code Quality & Security Scan / SonarQube Trigger (push) Successful in 47s
Details
Add ansible directory with vault_agent role and playbooks 
- Remove ansible/ from .gitignore
- Add vault_agent role (copied from terraform-vsphere-infra)
- Add vault_agent-playbook.yml for deployment
- Include ansible collections (cloud.terraform, ansible.posix, etc.)
- Archive consul_template role as consul_template-legacy

The ansible directory contains the vault-agent deployment automation
that replaces the legacy consul-template approach.
2025-11-10 12:33:38 +01:00

21 lines
461 B
YAML
Raw Permalink Blame History

---
# Default variables for vault_agent role
# Vault Agent version
vault_agent_version: "1.15.4"
# Vault connection settings
# vault_address: Set in group_vars or inventory
vault_tls_skip_verify: true
# Directories
vault_agent_config_dir: "/etc/vault-agent"
vault_agent_data_dir: "/opt/vault-agent"
# Service settings
vault_agent_user: "root"
vault_agent_group: "root"
# Certificate paths
ssl_certs_dir: "/etc/ssl/certs"
ssl_private_dir: "/etc/ssl/private"
Reference in New Issue View Git Blame Copy Permalink