short answer: no long answer: yes, but ... you need to provide iit decrypted for ansible to use, this can just end up 'offsetting' the secret over and over as you chain them. Normally system permissions should be enough to keep the secret safe. For those that don't find this as enough you can store the secret elsewhere and use a 'vault secrets script' to retrieve it this lets you integrate with things like an HSM or other security devices/databses.
>From docs >(https://docs.ansible.com/ansible/2.8/user_guide/playbooks_vault.html): If you are using a script instead of a flat file, ensure that it is marked as executable, and that the password is printed to standard output. If your script needs to prompt for data, prompts can be sent to standard error. -- ---------- Brian Coca -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CACVha7eUr7_VGgbEhS80a4W_Df14Fa5VqUh0UhVnGQN5oQF5DQ%40mail.gmail.com.
