chef - [chef] Re: Re: Re: Re: Re: Chef Vault without knife.

First login ?
Lost password ?

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: Re: Re: Re: Re: Chef Vault without knife.

From: Tensibai Zhaoying < >
To:
Subject: [chef] Re: Re: Re: Re: Re: Chef Vault without knife.
Date: Sat, 06 Jun 2015 21:37:27 +0200

You should read the titles of the paragraphs before stepping to conclusions.

You're talking about the example on how to impersonate as another node.

The paragraph "Usage in Recipe" -> "example" is the one I copied in my previous answer (from memory, so there's a little difference).

You should really give it a try and state your problem completely. This list has many people not working for chef, and even if we're happy to help, question without a sign of effort in self-research like this are not likely to get helpful answers.

This will be my last message on this thread as I've tried to give you clues and you're still coming back with statements not showing any interest in learning.

I try to stay helpfull and friendly but this came to a point where I don't wish to waste time anymore. I hope you'll understand for future communications.

Le 6 juin 2015 16:43, Douglas Garstang < > a écrit :

The documentation for chef vault at https://github.com/Nordstrom/chef-vault seems to suggest that you need to pass client_key_path, which has the private key to decrypt the vault item, when loading the item from chef vault. Since the file also needs to go into the cookbook and therefore also revision control, I'm not understanding the benefit of chef vault. What am I missing?

Kevin, this is for for HTTP certs, so I gotta have the private key on the box.

Doug.

On Fri, Jun 5, 2015 at 2:19 PM, Tensibai Zhaoying <tensibai@iabis.net> wrote:
And what is the problem having a vault which store the key and getting it in the recipe just following the Chef-vault README ?

Chef_gem "chef-vault"
Require 'chef-vault'
Cert=ChefVault::Item.load('vault','item')['cert entry']

Try to expose where you're stuck if you want help, we can't do divination tricks to guess...

Le 5 juin 2015 21:47, Douglas Garstang <doug.garstang@gmail.com> a écrit :
I'm trying to find a generic, scalable way, to install an SSL private key onto an EC2 instance.

Doug.

On Fri, Jun 5, 2015 at 12:20 PM, Tensibai Zhaoying <tensibai@iabis.net> wrote:
Is it possible to have a more detailed explanation on what your problem is ?

As is I can't tell what you try to do...

Le 5 juin 2015 19:31, Douglas Garstang <doug.garstang@gmail.com> a écrit :
Is it possible to use chef-vault without having to use the knife command? My systems come up, and run the chef-client automaticaly.

Thanks,
Doug

--
Regards,

Douglas Garstang
http://www.linkedin.com/in/garstang
Email: doug.garstang@gmail.com
Cell: +1-805-340-5627

--
Regards,

Douglas Garstang
http://www.linkedin.com/in/garstang
Email: doug.garstang@gmail.com
Cell: +1-805-340-5627

[chef] Chef Vault without knife., Douglas Garstang, 06/05/2015
- [chef] Re: Chef Vault without knife., Tensibai Zhaoying, 06/05/2015
  - [chef] Re: Re: Chef Vault without knife., Douglas Garstang, 06/05/2015
    - [chef] Re: Re: Re: Chef Vault without knife., Tensibai Zhaoying, 06/05/2015
      - [chef] Re: Re: Re: Re: Chef Vault without knife., Douglas Garstang, 06/06/2015
        
        [chef] Chef Vault without knife., Mark Ayers, 06/06/2015
        
        [chef] Re: Chef Vault without knife., Douglas Garstang, 06/09/2015
        
        [chef] Re: Re: Re: Re: Re: Chef Vault without knife., Tensibai Zhaoying, 06/06/2015