wbyc/terraform-certificate-automation
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
terraform-certificate-autom.../ansible/roles/vault_agent/templates/vault-agent.service.j2
Patrick de Ruiter 22d78bf85c
All checks were successful
Code Quality & Security Scan / TFLint (push) Successful in 24s
Details
Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 30s
Details
Code Quality & Security Scan / Checkov Security Scan (push) Successful in 44s
Details
Code Quality & Security Scan / Terraform Validate (push) Successful in 43s
Details
Code Quality & Security Scan / SonarQube Trigger (push) Successful in 47s
Details
Add ansible directory with vault_agent role and playbooks 
- Remove ansible/ from .gitignore
- Add vault_agent role (copied from terraform-vsphere-infra)
- Add vault_agent-playbook.yml for deployment
- Include ansible collections (cloud.terraform, ansible.posix, etc.)
- Archive consul_template role as consul_template-legacy

The ansible directory contains the vault-agent deployment automation
that replaces the legacy consul-template approach.
2025-11-10 12:33:38 +01:00

18 lines
445 B
Django/Jinja
Raw Blame History

[Unit]
Description=HashiCorp Vault Agent
Documentation=https://www.vaultproject.io/docs/agent
Requires=network-online.target
After=network-online.target
[Service]
Type=simple
User={{ vault_agent_user }}
Group={{ vault_agent_group }}
ExecStart=/usr/local/bin/vault agent -config={{ vault_agent_config_dir }}/config.hcl
ExecReload=/bin/kill -HUP $MAINPID
KillMode=process
Restart=on-failure
LimitNOFILE=65536
[Install]
WantedBy=multi-user.target
Reference in New Issue View Git Blame Copy Permalink