Place borg host vaults under host_vars/localhost/

Kind of sensitive information that doesn't need to be available to all hosts.

Place borg host vaults under host_vars/localhost/
03600a8c · Evangelos Foutras · dc0f4655 · 03600a8c · 03600a8c · 03600a8c
Verified Commit 03600a8c authored 3 years ago by Evangelos Foutras
--- a/docs/otp.md
+++ b/docs/otp.md
@@ -56,7 +56,7 @@ Run

    pass otp insert -i rsync.net -a archlinux Rsync.net/archlinux-master-token -s

-When asked for a secret, provide the `2FA token seed` from `group_vars/all/vault_rsync.net.yml`.
+When asked for a secret, provide the `2FA token seed` from `host_vars/localhost/vault_rsync.net.yml`.
 You can then run

    pass otp code Rsync.net/archlinux-master-token

--- a/group_vars/all/vault_hetzner_storagebox.yml
+++ b/group_vars/all/vault_hetzner_storagebox.yml
--- a/group_vars/all/vault_hetzner_webservice.yml
+++ b/group_vars/all/vault_hetzner_webservice.yml
--- a/group_vars/all/vault_rsync.net.yml
+++ b/group_vars/all/vault_rsync.net.yml
--- a/roles/borg_client/defaults/main.yml
+++ b/roles/borg_client/defaults/main.yml
@@ -4,7 +4,7 @@ backup_hosts:
    dir: "~/repo"
    suffix: ""
    borg_cmd: "borg"
-  - host: "ssh://{{ rsync_net_username }}@zh1905.rsync.net:22"
+  - host: "ssh://zh1905@zh1905.rsync.net:22"
    dir: "~/backup/{{ inventory_hostname }}"
    suffix: "-offsite"
    borg_cmd: "borg --remote-path=borg1"