General discussion about Chef

[chef] Re: Re: Re: Distribute private ssh keys via users cookbook


Chronological Thread 
  • From: AJ Christensen < >
  • To:
  • Subject: [chef] Re: Re: Re: Distribute private ssh keys via users cookbook
  • Date: Thu, 10 Jan 2013 10:10:16 +1300
Change the code in the cookbook to load the encrypted data-bag items instead of doing a search, I guess?

--AJ


On 10 January 2013 10:08, Cassiano Leal < " target="_blank"> > wrote:
On Wednesday, January 9, 2013 at 18:59, Phil Mocek wrote:
On Wed, Jan 09, 2013 at 05:40:25PM -0200, Cassiano Leal wrote:
I saw that the users cookbook will use "ssh_private_key" and
"ssh_public_key" data bag items, but those would be unencrypted,
so not secure.

That is not the case when you use [encrypted data bags][1].
Thanks for the reference. but I can use encrypted data bags just fine.

As previously stated, what I want to do is to use the community users cookbook [0] to distribute those keys. That cookbook already has a resource provider to deploy the keys for each user, but I couldn't find a way to make it read an encrypted data bag. If it's possible, I'd like to know.


Cheers,
-- 
Cassiano Leal



Archive powered by MHonArc 2.6.16.

§