Releases: ansible-community/ansible-vault
Releases · ansible-community/ansible-vault
Monthly snapshot for 2022.03.01
vault api health check via the actual vault api address
Monthly snapshot for 2022.02.01
vault api health check via the actual vault api address
Monthly snapshot for 2022.01.01
vault api health check via the actual vault api address
Monthly snapshot for 2021.12.01
Add vault_harden_file_perms to set chmod 0550 on config/plugins path The [Production Hardening](https://learn.hashicorp.com/tutorials/vault/production-hardening) have a bullet point "Allow minimal write privileges". It states: "its executable binary or any Vault configuration files". Prior to this change, the config and plugins path had chmod 0750, so Vault could actually write config files and change plugins. This commit adds a new parameter named vault_harden_file_perms (turned off by default). When enabled, it changes the chmod of config and plugins path to 0550 to effectively disallow Vault from writing into these dirs. Signed-off-by: Albin Kerouanton <albinker@gmail.com>
Monthly snapshot for 2021.11.01
[E602] Don't compare to empty string
Monthly snapshot for 2021.10.01
remote_install: only install OS packages if non-empty
Monthly snapshot for 2021.09.01
remote_install: only install OS packages if non-empty
Monthly snapshot for 2021.08.01
Fix log rotate Log rotate doesnt currently work, once logs have rotated it still points to the old file handler. This will ensure the logs function correctly once it has rotated.
Monthly snapshot for 2021.07.01
Add possibility to customize wait time after the first Vault start Waiting 30 seconds for each playbook run shouldn't be a default value as it's only impacting a few users. It very time consuming especially for playbook runs with `serial` and multiple nodes clusters (5 nodes: 2mn30s wait time)
Monthly snapshot for 2021.06.01
add become true for task 'Enable logrotate for vault'