From 695b05a3ef486aa766a5dc3dfc0d740259fe9406 Mon Sep 17 00:00:00 2001 From: Adar Nimrod <nimrod@shore.co.il> Date: Tue, 8 Nov 2016 13:32:03 +0200 Subject: [PATCH] - Added hook to verify vaulted files. --- ansible-vault-check | 7 +++++++ hooks.yaml | 8 +++++++- 2 files changed, 14 insertions(+), 1 deletion(-) create mode 100755 ansible-vault-check diff --git a/ansible-vault-check b/ansible-vault-check new file mode 100755 index 0000000..41aa16c --- /dev/null +++ b/ansible-vault-check @@ -0,0 +1,7 @@ +#!/bin/sh +set -eu +for filename in $@ +do + grep -q ANSIBLE_VAULT "$filename" || \ + (echo "$filename is not vaulted." && exit 1) +done diff --git a/hooks.yaml b/hooks.yaml index 3e7e89c..e42edb5 100644 --- a/hooks.yaml +++ b/hooks.yaml @@ -1,7 +1,13 @@ --- -- id: ansible-pre-commit +- id: ansible-syntax-check name: Check Ansible playbooks description: Check Ansible playbooks for syntax errors. language: script entry: ansible-syntax-check files: playbook.yml +- id: ansible-vault-check + name: Verify vaulted files + description: Verify that Ansible Vault files are vaulted. + language: script + entry: ansible-vault-check + files: vault -- GitLab