Y
Hacker News
new
|
ask
|
show
|
jobs
by
vasco
3806 days ago
We're using Ansible which means we use ansible-vault to store secrets. We store the encrypted files in S3 and decrypt them on deploy as needed.
1 comments
kkamperschroer
3806 days ago
So if you potentially need to roll a secret you would just run your deployment playbook limited to the secrets task?
link