/ home / azure / azure.azcollection / 2.3.0 / lookup / azure_keyvault_secret

azure.azcollection.azure_keyvault_secret (2.3.0) — lookup

Read secret from Azure Key Vault.

| "added in version" 1.12.0 of azure.azcollection"

Authors: Hai Cao (@tk5eq) <t-haicao@microsoft.com>, Marcin Slowikowski (@msl0)

Install collection

Install with ansible-galaxy collection install azure.azcollection:==2.3.0

Add to requirements.yml

  collections:
    - name: azure.azcollection
      version: 2.3.0

Description

This lookup returns the content of secret saved in Azure Key Vault.

When ansible host is MSI enabled Azure VM, user don't need provide any credential to access to Azure Key Vault.

Requirements

requests
azure

Inputs

    
_terms:
    description: Secret name, version can be included like secret_name/secret_version.
    required: true

secret:
    description: Secret of the service principal.

use_msi:
    description: MSI token autodiscover, default is true.

client_id:
    description: Client id of service principal that has access to the Azure Key Vault

tenant_id:
    description: Tenant id of service principal.

vault_url:
    description: Url of Azure Key Vault.
    required: true

Outputs

_raw:
  description: secret content string