trey/ansible
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit

Browse Source
This commit is contained in:
Trey Blancher
2026-03-19 23:56:54 -04:00
parent f5c6d28095
commit 2523ab8a28
1 changed files with 27 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
systemd-creds.yaml Normal file
View File

@@ -0,0 +1,27 @@
- name: Establish systemd-creds for use with multiple services
hosts: arch debian
become: true
vars_prompt:
- name: passphrase
prompt: "Enter password manager passphrase"
private: true
confirm: true
- name: creds_var
prompt: "Enter the environment variable where systemd will store the credential PATH"
private: false
- name: creds_name
prompt: "Enter the credential name"
private: false
tasks:
- name: Create shared systemd runtime override directory
ansible.builtin.command:
cmd: mkdir /etc/systemd/system/shared.d
creates: /etc/systemd/system/shared.d
- name: Create override
ansible.builtin.shell:
cmd: |
printf {{ passphrase }} | (echo "[Service]"; systemd-creds encrypt --name={{ creds_name }} --pretty - -) >> /etc/systemd/system/shared.d/00-systemd-creds.conf
printf "Environment=%s=%%d/%s\n" {{ creds_var }} {{ creds_name }} >> /etc/systemd/system/shared.d/00-systemd-creds.conf
#creates: /etc/systemd/system/shared.d/00-systemd-creds.conf