alexgeek/community.sops

Simple and flexible tool for managing secrets

Community Sops Collection

The community.sops collection allows integrating mozilla/sops in Ansible.

mozilla/sops is a tool for encryption and decryption of files using secure keys (GPG, KMS). It can be leveraged in Ansible to provide an easy to use and flexible to manage way to manage ecrypted secrets' files.

Tested with Ansible

• devel
• latest 2.9 release
• latest 2.10 release

External requirements

You will need to install sops manually before using plugins provided by this collection.

Included content

This collection provides:

• a lookup plugin that allows looking up a sops-encrypted file content
• a vars plugin that allows loading Ansible vars from a sops-encrypted file

Using this collection

See Ansible Using collections for more details.

Contributing to this collection

See CONTRIBUTING.md

Release notes

See CHANGELOG.rst.

Roadmap

Ansible Collections are required to adhere to Semantic Versioning. More details on versioning can be found in the Ansible docs.

TODO

• add a role providing sops installation (with version pinning)
• a full test suite
• testing on multiple Ansible versions

More information

• Ansible Collection overview
• Ansible User guide
• Ansible Developer guide
• Ansible Community code of conduct

Licensing

GNU General Public License v3.0 or later.

See COPYING to see the full text.