4n3BFJcH

1production:
2    secret_key_base: 800afb35d5086b2c60ebd35c01b2bd2b522c2492
3    db_username: ...
4    db_password: ...
5	
6{{ role }}:
7    secret_key_base: {{ secret_key }}
8    db_username: {{ db_user }}
9    db_password: {{ db_pass }}
10	
11{{ role }}:
12    secret_key_base: ||secret_key_base||
13    db_username: {{ db_user }}
14    db_password: {{ db_pass }}
15	
16/srv/salt/rails/secrets.yml:
17  cmd.run:
18# Fill in the secret key base (used for cookies).  We can't use
19# jinja2 for this, since jinja would complain about the other
20# variables that it doesn't know how to replace.  We want our
21# output to be a jinja template.
22- name: |
23    cat /srv/salt/rails/secrets.yml.in | 
24      sed -e 's/||secret_key_base||/{{ salt['random.get_str'](length=80) }}/;' | 
25      cat > /srv/salt/rails/secrets.yml
26    chmod 400 /srv/salt/rails/secrets.yml
27- creates: /srv/salt/rails/secrets.yml
28- runas: root
29
30/var/railroad/{{host_role}}/shared/config/secrets.yml:
31  file.managed:
32- source: salt://rails/secrets.yml
33- mode: 400
34- user: railroad-{{host_role}}
35- group: railroad-{{host_role}}
36- template: jinja
37- defaults:
38    role: host_role
39    db_username: m_u
40    db_password: m_p