From a1d5e94a2e65fefa98fe218ddc5a4983e42a5081 Mon Sep 17 00:00:00 2001 From: Salt Date: Sun, 12 Sep 2021 15:10:22 -0500 Subject: [PATCH] Revert migration to NetBox Secrets The functionality is completely deprecated, now, and will need to be replaced with similar functionality, such as that from Hashicorp Vault. --- .gitignore | 1 - inventory/group_vars/all.yml | 66 ++++++++++++++++++++++++++++++++---- 2 files changed, 60 insertions(+), 7 deletions(-) diff --git a/.gitignore b/.gitignore index 0b5904d..759895c 100644 --- a/.gitignore +++ b/.gitignore @@ -1,3 +1,2 @@ *.swp .cache -private.pem diff --git a/inventory/group_vars/all.yml b/inventory/group_vars/all.yml index 1d1e5dd..d4666fb 100644 --- a/inventory/group_vars/all.yml +++ b/inventory/group_vars/all.yml @@ -64,16 +64,70 @@ apache_ssl_protocol: all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 ##RESERVED # For gulagbot -secret_gulagbot_db_pass: "{{ query('netbox.netbox.nb_lookup', 'secrets', api_filter='name=gulagbot_db_pass', api_endpoint='https://netbox.desu.ltd', token=netbox_token, key_file='private.pem')[0].value.plaintext }}" -secret_gulagbot_discord_token: "{{ query('netbox.netbox.nb_lookup', 'secrets', api_filter='name=gulagbot_discord_token', api_endpoint='https://netbox.desu.ltd', token=netbox_token, key_file='private.pem')[0].value.plaintext }}" +secret_gulagbot_db_pass: !vault | + $ANSIBLE_VAULT;1.1;AES256 + 63386534643137613234643962663831353461356464363732613030626364366661626134643837 + 6466653931366539656662323330333363633732613061360a306565643932613635353435663039 + 61386334626437323934366634343162643932393834313235356664623537636162376464613061 + 3966393761626133320a646465376235346239333036326530363538306238626438653232623632 + 37616561326538636534393533613037336665333865613735646532656163373233 +secret_gulagbot_discord_token: !vault | + $ANSIBLE_VAULT;1.1;AES256 + 37613664393766353738353139323365346639393538653834643633613564646537616532316336 + 6532636639333062643631316234386533613862353232390a656634383663623064326666313861 + 35373034363332363064613165313034666166666233363963646333306138346463613166396438 + 6138366330623562330a636637326335383333643230333565366263383361333936346638363163 + 63343237616363376135303938373833373531306433633536613464363664303861353630313366 + 34356463653362613561373830373235633034656566633032653931316465316438363532396363 + 333735353435383566323463303566646637 # For gitea -secret_gitea_db_pass: "{{ query('netbox.netbox.nb_lookup', 'secrets', api_filter='name=gitea_db_pass', api_endpoint='https://netbox.desu.ltd', token=netbox_token, key_file='private.pem')[0].value.plaintext }}" -gitea_secret_key: "{{ query('netbox.netbox.nb_lookup', 'secrets', api_filter='name=gitea_secret_key', api_endpoint='https://netbox.desu.ltd', token=netbox_token, key_file='private.pem')[0].value.plaintext }}" -gitea_internal_token: "{{ query('netbox.netbox.nb_lookup', 'secrets', api_filter='name=gitea_internal_token', api_endpoint='https://netbox.desu.ltd', token=netbox_token, key_file='private.pem')[0].value.plaintext }}" +secret_gitea_9iron_db_pass: !vault | + $ANSIBLE_VAULT;1.1;AES256 + 62353264353465316661353738666161313036373761666163663733656461316536636334386335 + 6161386630663739363439383237343065333239613134610a383036373735326536386464343164 + 31346337636665356630336234306534646362386663633734353166373761316139313734306630 + 3364306566323666310a323034303434613237643665643637633430353437316339356463646331 + 33353062343164396465326365653561626363343961326363633231303736316436643935646161 + 3933353234613430373930663832643934613233383635613433 +secret_gitea_db_pass: !vault | + $ANSIBLE_VAULT;1.1;AES256 + 35343032343364306363646232613831386530313430663664396432353431393039626230626137 + 6339653038633534313562333431613362313263623130300a383930626437636466623763663334 + 64646239633830656338336135313261396536303739373731633830633366313262313035626233 + 6463663332623635320a356565666638306661356365643930303664346232303165373333613235 + 62396535653338396232616531323738656636613065336337333336306437363539303766623866 + 3932386635393061643737326163643164643365303866643766 +gitea_secret_key: !vault | + $ANSIBLE_VAULT;1.1;AES256 + 34373339636233393231363531323338306330653139376661356336343133373836323065333665 + 3537613462316361646161653966643862633033646134370a643133393162313434383663643538 + 31343164666235316235393163376134636433386361353266613263363839366432356132383533 + 3434643430306234350a353037373530653865363931333237663133626537643730643634356162 + 33353632613637306336653734343332393661343539393034313437373636383732393062333530 + 3337633338323131373130376137393766363737393536386636 +gitea_internal_token: !vault | + $ANSIBLE_VAULT;1.1;AES256 + 34323237383664663266653034656437643363316538663338383262663931356665383363656466 + 3861653830626538303761303638663835316239343033370a323164303164613265363535643432 + 31393732393361666331396533333339623665623562643962323632653537666339346266393632 + 6639663137613232640a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or Nagios -secret_nagios_admin_pass: "{{ query('netbox.netbox.nb_lookup', 'secrets', api_filter='name=nagios_admin_pass', api_endpoint='https://netbox.desu.ltd', token=netbox_token, key_file='private.pem')[0].value.plaintext }}" +secret_nagios_admin_pass: !vault | + $ANSIBLE_VAULT;1.1;AES256 + 64333231393831303031616363363030613464653161313531316465346263313063626638363437 + 3965303861646232393663633066363039636637343161340a643162633133336335313632383861 + 34616338636630633539353335336631313361656633333539323130626132356263653436343363 + 3930323538613137370a373861376566376631356564623665313662636562626234643862343863 + 61326232633266633262613931303631396163326266386363366639366639613938 # For Netbox secret_netbox_user_pass: !vault |