26 lines
675 B
Plaintext
26 lines
675 B
Plaintext
# Vault encrypted variables directory
|
|
#
|
|
# This directory contains ENCRYPTED credentials and API keys using Ansible Vault.
|
|
#
|
|
# SECURITY POLICY:
|
|
# - ✅ DO commit: Encrypted .yml files (e.g., all.yml, production.yml)
|
|
# These are safe because they are encrypted and cannot be decrypted without the vault password.
|
|
# - ❌ DON'T commit: Plaintext passwords or unencrypted files
|
|
# Keep these patterns blocked in .gitignore
|
|
# - ❌ DON'T commit: .vault_pass, password files, or temporary backups
|
|
|
|
# Ignore plaintext password/backup files
|
|
*.orig
|
|
*.bak
|
|
*.tmp
|
|
.vault_pass
|
|
password
|
|
vault_password
|
|
vault_password.txt
|
|
|
|
# Ignore editor temporary files
|
|
*~
|
|
*.swp
|
|
*.swo
|
|
.DS_Store
|