mxmehl/ansible-vault-tools
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add file encryption/decryption

Browse Source
This commit is contained in:
Max Mehl
2023-07-11 12:44:03 +02:00
parent ef7c346605
commit 1843f43e55
1 changed files with 19 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
ansible-vault-tools.sh
View File

@@ -6,13 +6,13 @@
CMD=$1 CMD=$1
# Encrypt # Encrypt string
if [[ $CMD == "encrypt" ]]; then if [[ $CMD == "encrypt-string" ]]; then
pass=$2 pass=$2
vaultpw=$(echo -n "$pass" | ansible-vault encrypt_string 2> /dev/null) vaultpw=$(echo -n "$pass" | ansible-vault encrypt_string 2> /dev/null)
# Decrypt # Decrypt string
elif [[ $CMD == "decrypt" ]]; then elif [[ $CMD == "decrypt-string" ]]; then
host=$2 host=$2
var=$3 var=$3
@@ -22,12 +22,25 @@ elif [[ $CMD == "decrypt" ]]; then
# Parse JSON to just get the "msg" # Parse JSON to just get the "msg"
vaultpw=$(jq -r ".plays[].tasks[].hosts[].msg" <<< "$vaultpw") vaultpw=$(jq -r ".plays[].tasks[].hosts[].msg" <<< "$vaultpw")
# Encrypt file
elif [[ $CMD == "encrypt-file" ]]; then
file=$2
ansible-vault encrypt "$file"
# Decrypt file
elif [[ $CMD == "decrypt-file" ]]; then
file=$2
ansible-vault decrypt "$file"
else else
echo "Invalid command" echo "Invalid command"
echo "" echo ""
echo "Usage:" echo "Usage:"
echo "ansible-vault-tools encrypt <password>" echo "ansible-vault-tools encrypt-string <password>"
echo "ansible-vault-tools decrypt <host> <variable>" echo "ansible-vault-tools decrypt-string <host> <variable>"
echo ""
echo "ansible-vault-tools encrypt-file <file-path>"
echo "ansible-vault-tools decrypt-file <file-path>"
exit 1 exit 1
fi fi