Secret Management with Vault
The problem: Where do you store your config/deployment management script? I’ve done 2 ways: Put along with application/repo. Put all the config/deployment script in one repo separately from apps. Each approach has its own Pros and Cons and I prefer the first approach which IMO is simpler but creates some duplication which is okay… I have some shared secrets that I encrypt with Ansible Vault but when I had to copy and pasted this secret on a few repos I started to look for better way to do this. ...