Differences

This shows you the differences between two versions of the page.

--- mozilla_sops [2026/02/13 13:21]
val
+++ mozilla_sops [2026/02/14 17:18] (current)
val
@@ Line 28: / Line 28: @@
 ~/openvpn1# sops decrypt openvpn1/files/server.key -i
-~/openvpn1|gowebd-k8s# cat .sops.yaml
+# cat .sops.yaml
 </code><code>
 creation_rules:
   - path_regex: inventory.yaml
-    encrypted_regex: ansible_ssh_user|^ansible.*pass
+    encrypted_regex: ^ansible.*pass
     hc_vault_transit_uri: "http://server.corpX.un:8200/v1/transit/keys/ansible-openvpn1"
   - path_regex: openvpn1/files/server.key
     hc_vault_transit_uri: "http://server.corpX.un:8200/v1/transit/keys/ansible-openvpn1"
-#  - path_regex: webd-chart/values.yaml
-#    encrypted_regex: SECRET
-#    hc_vault_transit_uri: "http://server.corpX.un:8200/v1/transit/keys/webd-k8s"
 #  - path_regex: keycloak-db-secret.yaml
 #    hc_vault_transit_uri: "http://server.corpX.un:8200/v1/transit/keys/my-pgcluster"
+#  - path_regex: values.yaml
+#    encrypted_regex: adminPassword|password
+#    hc_vault_transit_uri: "http://server.corpX.un:8200/v1/transit/keys/my-keycloak"
 </code><code>
 ~/openvpn1# sops encrypt inventory.yaml
@@ Line 53: / Line 53: @@
 ~/openvpn1# sops exec-file inventory.yaml 'echo {}; cat {}'
-</code><code>
-kube1:~/gowebd-k8s# sops -e -i webd-chart/values.yaml
-kube1:~/gowebd-k8s# sops edit webd-chart/values.yaml
+~/openvpn1# ###sops -d -i inventory.yaml
 </code>

Методические материалы Лохтурова Вячеслава