Wouldn't it be more secure to use Vault here?

Cheers,
Maciej Lasyk

GPG key ID: 4FED49C5

On Wed, Jan 28, 2015 at 4:57 PM, Miroslav Suchý <msuchy@redhat.com> wrote:
I have this ansible snippet:
  - name: Create users
    keystone_user:
      login_user="admin" login_password="{{ ADMIN_PASS }}" login_tenant_name="admin"
      user="{{ item.name }}"
      email="{{ item.email }}"
      tenant="{{ item.tenant }}"
      password="{{ item.password }}"
      state=present
    with_items:
      - { name: kevin, email: 'kevin@fedoraproject.org', tenant: infrastructure, password: "{{kevin_password}}" }
      - { name: laxathom, email: 'laxathom@fedoraproject.org', tenant: infrastructure, password: "{{laxathom_password}}" }


But when I run it it produce:
TASK: [Create users] **********************************************************
changed: [fed-cloud09.cloud.fedoraproject.org] => (item={'password': u'XXXX', 'name': 'kevin', 'tenant':
'infrastructure', 'email': 'kevin@fedoraproject.org'})

changed: [fed-cloud09.cloud.fedoraproject.org] => (item={'password': u'XXXX', 'name': 'laxathom', 'tenant':
'infrastructure', 'email': 'laxathom@fedoraproject.org'})



Is there way to mask the output (using -name or something) so the password is not print to console?
--
Miroslav Suchy, RHCE, RHCDS
Red Hat, Senior Software Engineer, #brno, #devexp, #fedora-buildsys
_______________________________________________
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure