I don't think there's a generally correct answer for this question (please refrain from attempting to convince me or others otherwise), rather I'm curious about your own hunch.
Trying to automatically/programmatically replicate #DockerCompose stacks on the same host. E.g. I have an application that requires multiple containers, and I want to replicate the WHOLE application with its own volumes, networks, subdomain, etc. Any pointers on how to do that? #Ansible? Please don't say #Kubernetes.
Does anyone have a simple idea of using a gopass output as an #ansible vault instead of just as the password TO a vault.
So i'd like to put all variable settings e.g. a yaml into my gopass and include it instead of putting vaults into git repos.
I fail to find a (compatible) way of including variables from script output, or using an external vault application in ansible.
I already use a gopass script to fetch the vaults password, but i feel its a bit clumpsy to maintain a vault in the ansible git, and maintain the vault password in the gopass git.
"The Ansible Basics course is a new, free series [text and video] for those who want to learn the foundations of automation, configuration management and infrastructure as code. The structure of the course is simple, starting with the installation of Ansible, through its configuration, to some examples of the usage"
I've updated my ansible-dev-pc¹ repository to support the recently released Ubuntu 24.04 (hence my discussion on getting .NET to behave). This supports Desktop Ubuntu 22.04/24.04, Pop!_OS 22.04, and Ubuntu 22.04/24.04 in WSL 2.
I'm still waiting for Pop!_OS 24.04 to be released so I can verify it there as well.
Segfault when running the #Ansible apt module to remove wifi and Bluetooth related packages on my raspberry pi. But no problem using the equivalent apt commands. That's weird.
Anyway, this raspberry pi ("pilote") needs to be upgraded (Debian 10 to 12). A perfect time to install it from scratch and use Ansible.
As promised in my talk at #SCaLE, I've done a big refacto of this repository to publish it on github. Soon™ 🤞🏻
I posted a web log thing!
It's niche and stupid. If you use JFrog Artifactory and a Red Hat-based Linux and want user-specific credentials for use with dnf, I know how to do that and you can too:
Why must the #UX of any kind of #cryptography related tooling on our systems suck so much?
Today's task - manage CA certificates on our clusters' base-systems using #Ansible.
The canonical way on #RHEL systems seems to be, to use #p11kit's "trust" CLI.
"--help" says to use "trust list" - that sounds easy. I'll just compare those certificate serials against my desired state and then import the delta into the trust store…
But: the unique identifier of "trust list"'s output is a PKCS11 URI!
There's an interesting discussion happening in the #Ansible forum that we'd like you all to participate in, regarding the future of the Ansible community package (aka what you get if you pip install ansible).