Your Name
02c2f4ee2d
Replaces the deploy.sh env-var hand-off (which only worked locally and would have made Semaphore write placeholder keys, regressing direct_*) with the standard in-playbook Infisical pull used by dawarich/mcp/cloudflared: - site.yml pre_tasks: login via the shared 828d2cc8 machine identity, read /meridian as_dict, set_fact litellm_master_key + the openai/gemini keys. - vars/vault.yml: shared ansible-vault client secret (copied from sibling repo). - requirements.yml: + infisical.vault. - deploy.sh: drop the infisical-CLI pulls; add --ask-vault-pass. Same secret path for Semaphore and local — no per-template env wiring. Deploy prereqs: attach the ansible-vault password to Semaphore template 27, and ensure the 828d2cc8 identity can read /meridian (env prod). Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
11 lines
743 B
YAML
11 lines
743 B
YAML
$ANSIBLE_VAULT;1.1;AES256
|
|
66366365356236623964366166336662353433626337323337343365316662636332356636336534
|
|
6364616163666431333863613639353837623165636264390a363030376536373966316230356335
|
|
30623466653337326133666539343966656362613964353763636539623634396364633137323733
|
|
3636613464393534660a313334393333343835616235613833346663373537363738383064363437
|
|
34373430306665376639633032373961653134303233613164633738356166376234663039303138
|
|
65313065383061636263393262353139646239383638303036313662373663316132333666366537
|
|
65333866356235373830323734623730356138653338663538616666643230303835653461343236
|
|
31616161333461356665316238363133316134376665353437386564313939356137313331613333
|
|
35653238383931376131323834383633313930396533323032363863666138383332
|