Digitalboard/reference-ansible
6
1
Fork 0
Code Pull requests Activity Actions

chore: start modeling gymburgdorf demo and test bao secret lookup

Browse source 
Signed-off-by: Bert-Jan Fikse <bert-jan@whatwedo.ch>
This commit is contained in:
Bert-Jan Fikse 2026-04-10 17:23:41 +02:00
parent bcb75ed078
commit 2f9f7e61f9
Signed by: bert-jan
GPG key ID: C1E0AB516AC16D1A
8 changed files with 28 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

9
README.md
View file

@ -4,14 +4,11 @@
### Secrets
Secrets are managed using [OpenBao](https://bao.digitalboard.ch).
Download the CLI binary once (not checked in):
```bash
curl -L https://github.com/openbao/openbao/releases/latest/download/bao_linux_amd64 -o ./bao && chmod +x ./bao
```
The bao CLI needs to be installed. e.g `sudo pacman -S openbao python-hvac`
Authenticate and export token before running playbooks:
```bash
export BAO_ADDR=https://bao.digitalboard.ch
./bao login -method=oidc -path=Digitalboard
export VAULT_TOKEN=$(./bao print token)
bao login -method=oidc -path=Digitalboard
export VAULT_TOKEN=$(bao print token)
```