av/pet-project-server
1
0
Fork 0
Code Pull Requests Activity

Authelia: protect secret files

Browse Source 
Word "secrets" activate pre-commit hook
This commit is contained in:
Anton Vakhrushev
2025-08-03 11:11:50 +03:00
parent 38e2294a65
commit 85627f8931
3 changed files with 4 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

0
files/authelia/configuration.yml.j2 → files/authelia/configuration.secrets.yml.j2
View File

0
files/authelia/users.yml → files/authelia/users.secrets.yml
View File

10
playbook-authelia.yml
View File

@@ -30,19 +30,17 @@
loop: loop:
- "{{ config_dir }}" - "{{ config_dir }}"
- name: "Copy configuration files" - name: "Copy users file"
ansible.builtin.copy: ansible.builtin.copy:
src: "files/{{ app_name }}/{{ item }}" src: "files/{{ app_name }}/users.secrets.yml"
dest: "{{ (config_dir, item) | path_join }}" dest: "{{ (config_dir, 'users.yml') | path_join }}"
owner: "{{ app_user }}" owner: "{{ app_user }}"
group: "{{ app_user }}" group: "{{ app_user }}"
mode: "0600" mode: "0600"
loop:
- "users.yml"
- name: "Copy configuration files (templates)" - name: "Copy configuration files (templates)"
ansible.builtin.template: ansible.builtin.template:
src: "files/{{ app_name }}/configuration.yml.j2" src: "files/{{ app_name }}/configuration.secrets.yml.j2"
dest: "{{ (config_dir, 'configuration.yml') | path_join }}" dest: "{{ (config_dir, 'configuration.yml') | path_join }}"
owner: "{{ app_user }}" owner: "{{ app_user }}"
group: "{{ app_user }}" group: "{{ app_user }}"