chef - [chef] Re: RE: Best Practices for Retrieving Generated Passwords

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: RE: Best Practices for Retrieving Generated Passwords

From: Andrea Campi < >
To: " " < >
Subject: [chef] Re: RE: Best Practices for Retrieving Generated Passwords
Date: Mon, 3 Dec 2012 17:49:42 +0100

Another option I've used (if you have some means of authenticating the client, e.g. own the network and can ensure IP addresses can't possibly be spoofed):

Have the "in-house provisioning application" generate passwords and serve a JSON (or other) file.

It's a rather simple matter to replace data bags uses with a method that consumes JSON.

This usually ends up reducing duplication, and makes it easy to enforce any kind of additional constraints you may have.

I will clean up and publish my consume_json cookbook if you are interested.

Andrea

[chef] Best Practices for Retrieving Generated Passwords, Dane Elwell, 12/03/2012
- [chef] Re: Best Practices for Retrieving Generated Passwords, Jacobo García, 12/03/2012
- [chef] RE: Best Practices for Retrieving Generated Passwords, Matt Ray, 12/03/2012
  - [chef] Re: RE: Best Practices for Retrieving Generated Passwords, Andrea Campi, 12/03/2012
    - [chef] Re: Re: RE: Best Practices for Retrieving Generated Passwords, Dane Elwell, 12/03/2012
      - [chef] Re: Re: Re: RE: Best Practices for Retrieving Generated Passwords, Andrea Campi, 12/04/2012
- [chef] Re: Best Practices for Retrieving Generated Passwords, Jay Feldblum, 12/03/2012
- [chef] Re: Best Practices for Retrieving Generated Passwords, Adam Jacob, 12/03/2012
  - [chef] Re: Re: Best Practices for Retrieving Generated Passwords, Dane Elwell, 12/03/2012