ansible / ansible.builtin / v2.4.3.0-1 / lookup / password retrieve or generate a random password, stored in a file | "added in version" 1.1 of ansible.builtin" Authors: Daniel Hokka Zakrisson <daniel@hozac.com>, Javier Candeira <javier@candeira.com>, Maykel Moya <mmoya@speedyrails.com>ansible.builtin.password (v2.4.3.0-1) — lookup
pip
Install with pip install ansible==2.4.3.0.post1
generates a random plaintext password and stores it in a file at a given filepath.
If the file exists previously, it will retrieve its contents, behaving just like with_file.
Usage of variables like C("{{ inventory_hostname }}") in the filepath can be used to set up random passwords per host, which simplifies password management in C("host_vars") variables.
A special case is using /dev/null as a path. The password lookup will generate a new random password each time, but will not write it to /dev/null. This can be used when you need a password without storing it on the controller.
chars: description: - Define comma separeted list of names that compose a custom character set in the generated passwords. - 'By default generated passwords contain a random mix of upper and lowercase ASCII letters, the numbers 0-9 and punctuation (". , : - _").' - They can be either parts of Python's string module attributes (ascii_letters,digits, etc) or are used literally ( :, -). - To enter comma use two commas ',,' somewhere - preferably at the end. Quotes and double quotes are not supported. type: string version_added: '1.4' version_added_collection: ansible.builtin _terms: description: - path to the file that stores/will store the passwords required: true length: default: 20 description: The length of the generated password. type: integer encrypt: default: true description: - Whether the user requests that this password is returned encrypted or in plain text. - Note that the password is always stored as plain text. - Encrypt also forces saving the salt value for idempotence. type: boolean
_raw: description: - a password