Secret Management with Ansible Vault and docker-compose

This is like a podcast, but with the visual element. Nice work

bradleystannard

This "just" tool is just awesome, maybe you could elaborate on this in a future episode

joelhatsch

Just stumbled upon this video after searching for Ansible Molecule topics but saw this and started watching. As soon as I heard your voice I knew it was you. Great video and thanks for the great podcasts, Self-Hosted is one of my favs!

ericHoogeveen

More of this kind of videos please! The is the best introduction to Ansible and Ansible-Vault I've found, by far. And finally by someone who clearly knows how those tools should be used.

guillaumeand

Nice to see a face with the voice I know do well 😊
Nice entertaining video. Can’t wait for more

marcobreedeveld

Just getting into Ansible. Originally found out about this when I was in the search of automation&monitoring of certificate&key distribution via SCP. Stumbled upon Ansible, fell down the rabbit hole of actually setting this up securely. As soon as I get this thing rolling, I can say goodbye to my cronjobs and badly crafted service tasks!

ixutiini

really great, don't hesitate to share this kind of content, it's extremely interesting

Julien-hgjh

Thanks for this, made me think of a word oft used, what is it - ah yes, awesome.

Also, your building infra here with Ansible, as well it is intended but in my little head I had a thought. It could also be other things, like a code checkout. So this could also be a 'just' ( I like that pattern your using ) checkout some git repository or other and create within it a bunch of files not controlled at all by git, such as `.env` files and the like, making a complete separation between publicly controlled application files and the credential files that are used to make them work. The Ansible vault could even be held in a separate, privately hosted Git, whilst the public opensource git code remains, well public.

But I get what your saying about the encryption of ansible vault and potential for various agencies out there with their ability to maybe at some time be able to read them. But like the Borg, we can also 'rotate shields' ( change passwords regularly ) 😃

JonBrookes

A full ansible tutorial would be great!

christophernethercott

Great stuff. Very much appreciated. If you wanted to, you could do several more videos explaining various parts of this for folks like me who have less experience with portions of this. I’ve never heard you mention some of them on self-hosted. Like Just. Pretty amazing.

kmcdowell

Great video! I'll definitely check out ansible vault in the future :-)

techwithmarco

Alex thank you for video. Please keep it going :)

leszekrozkiewicz

Great video, this could be big! I see a whole how to build (your) perfect media server series ;-) this way!

diederikm

That´s realy awesome! Very helpful video, thanks a lot.

Glatze

It's weird seeing your face. Thanks for the video, subscribed.

johngleeson

I prefer inline vault vscode plugin... The files remain human readable with context.

Also love the hash merging option in Ansible so that you can define and override complex variable objects vs ugly flat variables.

I use YAML inventory and store most of my non-default host/group vars there as it's much easier to manage in one central place.

-GBD-

awesome video! recently started using just, its amazing!

maiercheckthis

what theme are you using in vscode? and great video! great content and it looks amazing in 4k

GarettDunn

Great video - re:Ansible stuff, I heard the words you were saying, but since I got stuck in Chapter 2 of Jeff Geerling's book when he started using Vagrant & VirtualBox, all I could do is nod and say "Get me summa that" ¯\_(ツ)_/¯
It'd be great if you could translate his book into Debian and Proxmox, while keeping the Vagrant dialect ;)
Cheers!

cxklann

Ah the justfile is not in the git repo. Wanted to see your examples there.

Lantrix