cd ansible && ansible-playbook deploy-mumble.yml
cd ansible && ansible-playbook deploy-dokuwiki.yml
cd ansible && ansible-playbook deploy-etherpad.yml
For restoring Etherpad data from a SQL DB dump, you can use docker exec command with -i flag:
docker exec -i Container_Name \
sh -c 'exec mysql -uetherpad_user -D etherpad -p"Password"' < db.sql
- Get an SSH fingerprint from a local
known_hosts
file for a given hostname and IP:
ssh-keygen -q -f ~/.ssh/known_hosts -F hostname/IP -F $(dig +short A hostname)
- Upon verifying add the SSH fingeprints one per line (or seraparated by comma
if is same host, see
ansible/ssh/known_hosts
).
We are using a multi-key encryption via GPG. The ansible-vault decryption is
handled automatically in Ansible with the use of open_vault.sh
script which
decrypts the vault password and feeds it to the Ansible role.
In order to add/remove the recipients of the GPG encrypted vault file
vault_pass.gpg
add/remove the --recipient email
parameter with the
appropriate GPG emails.
You may use the following commands to re-encrypt the encrypted vault password with the desired recipients GPG emails:
mv vault_pass.gpg vault_pass_old.gpg && gpg --batch --decrypt \
vault_pass_old.gpg | gpg --batch --encrypt --recipient \
[email protected] --recipient [email protected] \
--always-trust --verbose --output vault_pass.gpg && rm vault_pass_old.gpg