This "just" tool is just awesome, maybe you could elaborate on this in a future episode

This is like a podcast, but with the visual element. Nice work

Just stumbled upon this video after searching for Ansible Molecule topics but saw this and started watching. As soon as I heard your voice I knew it was you. Great video and thanks for the great podcasts, Self-Hosted is one of my favs!

More of this kind of videos please! The is the best introduction to Ansible and Ansible-Vault I've found, by far. And finally by someone who clearly knows how those tools should be used.

Nice to see a face with the voice I know do well 😊 Nice entertaining video. Can’t wait for more

Just getting into Ansible. Originally found out about this when I was in the search of automation&monitoring of certificate&key distribution via SCP. Stumbled upon Ansible, fell down the rabbit hole of actually setting this up securely. As soon as I get this thing rolling, I can say goodbye to my cronjobs and badly crafted service tasks!

really great, don't hesitate to share this kind of content, it's extremely interesting

This is a great video. Thank you

That´s realy awesome! Very helpful video, thanks a lot.

Alex thank you for video. Please keep it going :)

Great video, appreciated!

Great video! I'll definitely check out ansible vault in the future :-)

Great stuff. Very much appreciated. If you wanted to, you could do several more videos explaining various parts of this for folks like me who have less experience with portions of this. I’ve never heard you mention some of them on self-hosted. Like Just. Pretty amazing.

Thanks for this, made me think of a word oft used, what is it - ah yes, awesome. Also, your building infra here with Ansible, as well it is intended but in my little head I had a thought. It could also be other things, like a code checkout. So this could also be a 'just' ( I like that pattern your using ) checkout some git repository or other and create within it a bunch of files not controlled at all by git, such as `.env` files and the like, making a complete separation between publicly controlled application files and the credential files that are used to make them work. The Ansible vault could even be held in a separate, privately hosted Git, whilst the public opensource git code remains, well public. But I get what your saying about the encryption of ansible vault and potential for various agencies out there with their ability to maybe at some time be able to read them. But like the Borg, we can also 'rotate shields' ( change passwords regularly ) 😃

A full ansible tutorial would be great!

Great video!

awesome video! recently started using just, its amazing!

Great video, this could be big! I see a whole how to build (your) perfect media server series ;-) this way!

It's weird seeing your face. Thanks for the video, subscribed.

what theme are you using in vscode? and great video! great content and it looks amazing in 4k

🔥

I prefer inline vault vscode plugin... The files remain human readable with context. Also love the hash merging option in Ansible so that you can define and override complex variable objects vs ugly flat variables. I use YAML inventory and store most of my non-default host/group vars there as it's much easier to manage in one central place.

Ah the justfile is not in the git repo. Wanted to see your examples there.

Hi Alex did you hear about containerd and nerdctl? Nerdctl is docker compose compatible but it talks to containerd directly without relaying on docker and the docker daemon

Good video. What vs code theme is that?

Alex! What's your stance on docker-compose over the community.docker Ansible modules? If you're in the ecosystem, why the extra steps?

Great video - re:Ansible stuff, I heard the words you were saying, but since I got stuck in Chapter 2 of Jeff Geerling's book when he started using Vagrant & VirtualBox, all I could do is nod and say "Get me summa that" ¯\_(ツ)_/¯ It'd be great if you could translate his book into Debian and Proxmox, while keeping the Vagrant dialect ;) Cheers!

i like this video. i have a question. despite using the ansible-vault, isn't it an insecure way to write the decrypted secrets directly into the generated docker-compose file ? when a attacker exploits a machine and takes over. its easy to obtaine the secrets, docker inspect etc.

You didn't actually explain the bit where you gave the vault password when you ran the playbooks, or I missed it