Ansible-vault
Ansible provides a utility named Ansible-vault, which as the name suggests, lets you manage data securely. The Ansible-vault utility can either let you create an encrypted file by launching an editor interface, or encrypt an existing file. In either case, it will ask for a vault password, which is then used to encrypt the data with the AES cipher. The encrypted contents can be stored in a version control system without being compromised. Since the AES is based on shared secret, the same password needs to be provided for decryption too. To provide the password, there are two options, while launching Ansible, run the --ask-vault-pass option to prompt for the password, and the --vault-password-file option to provide the path to the file that contains the password.
Advanced Encryption Standard
Advanced Encryption Standard (AES) is an encryption standard based on the Rijndael symmetric block cipher, named after, and developed by, two Belgian cryptographers—Vincent Rijmen...
