Try SpotterGet secrets from Delinea DevOps Secrets Vault
| "added in version" 1.0.0 of delinea.core"
Authors: Delinea (!UNKNOWN) (https://delinea.com/)
Install with ansible-galaxy collection install delinea.core:==1.1.0
collections:
- name: delinea.core
version: 1.1.0Uses the Delinea DevOps Secrets Vault Python SDK to get Secrets from a DSV I(tenant) using a I(client_id) and I(client_secret).
- hosts: localhost
vars:
secret: "{{ lookup('delinea.core.dsv', '/test/secret') }}"
tasks:
- ansible.builtin.debug:
msg: 'the password is {{ secret["data"]["password"] }}'
tld:
default: com
description: The top-level domain of the tenant; the second format parameter in the
default I(url_template).
env:
- name: DSV_TLD
ini:
- key: tld
section: dsv_lookup
required: false
_terms:
description: The path to the secret, e.g. C(/staging/servers/web1).
required: true
tenant:
description: The first format parameter in the default I(url_template).
env:
- name: DSV_TENANT
ini:
- key: tenant
section: dsv_lookup
required: true
data_key:
description: Specific field in secret data to return. If empty then entire secret
object is returned. If defined, but not found then an error is returned.
env:
- name: DSV_DATA_KEY
ini:
- key: data_key
section: dsv_lookup
required: false
client_id:
description: The client_id with which to request the Access Grant.
env:
- name: DSV_CLIENT_ID
ini:
- key: client_id
section: dsv_lookup
required: true
url_template:
default: https://{}.secretsvaultcloud.{}/v1
description: The path to prepend to the base URL to form a valid REST API request.
env:
- name: DSV_URL_TEMPLATE
ini:
- key: url_template
section: dsv_lookup
required: false
client_secret:
description: The client secret associated with the specific I(client_id).
env:
- name: DSV_CLIENT_SECRET
ini:
- key: client_secret
section: dsv_lookup
required: true
_list:
description:
- One or more JSON responses to C(GET /secrets/{path}).
- See U(https://dsv.secretsvaultcloud.com/api/index.html#operation/getSecret).
elements: dict
type: list