-
Notifications
You must be signed in to change notification settings - Fork 63
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cannot disable certificate validation when using vault_kv2_get lookup #461
Comments
Hi @argetlam-coder , I didn't have a lot of time to dig too deeply into this yet so I'm not sure of the reason. We do have tests for that functionality that seem to be passing, see:
I'm curious if any earlier versions of the collection work for you? I don't think we've changed that code in years though. |
Hi @briantist , I will try an older version. In the meantime, I have tried the vault_kv2_get module. The module works with the following playbook:
It seems that only the pluginvault_kv2_get lookup plugin is affected by this problem. |
I have now tried different versions (2.5.0, 3.4.0, 4.2.1, 5.0.1), but the problem persists in all versions. It works in all versions when I use the module, but not when I use the lookup plugin. |
The error actually also occurs with the module. I had just accidentally configured the lookup plugin and the module differently. The cause is the I have found the error in the code and will create a pull request. |
…as set. Fix now also sets the parameter correctly in the retry request session Closes ansible-collections#461
SUMMARY
I am trying to retrieve a secret from my vault using the vault_kv2_get lookup. Since my vault uses a self-signed certificate, I need to disable certificate validation. I have set the corresponding parameter as described in the documentation but still the certificate validation is not deactivated.
ISSUE TYPE
COMPONENT NAME
vault_kv2_get lookup
ANSIBLE VERSION
COLLECTION VERSION
CONFIGURATION
STEPS TO REPRODUCE
I have tried all three variants described in the documentation (https://docs.ansible.com/ansible/latest/collections/community/hashi_vault/vault_kv2_get_lookup.html#ansible-collections-community-hashi-vault-vault-kv2-get-lookup). Neither variables nor parameters nor environment variables worked.
Here is my playbook with variables
and here is my playbook with parameters:
EXPECTED RESULTS
The secret from the vault should be displayed.
ACTUAL RESULTS
I get the following error:
The text was updated successfully, but these errors were encountered: