Sha256: 4ce0cd6582f5ca9e7413824d093928caea61900479b4119d79748239b4993347
Contents?: true
Size: 1.18 KB
Versions: 1
Compression:
Stored size: 1.18 KB
Contents
## Overview
Wraps `ChefVault::Item.load` with a new method `ChefVaultRetry::Item.load` that will periodically retry to decrypt the secret if an exception is raised. This is primarily intended to ease the bootstrapping of new systems by keeping chef-client runs from failing.
## Use
Replace the following code in your recipes:
```
chef_gem 'chef-vault' do
compile_time true if respond_to?(:compile_time)
end
require 'chef-vault'
item = ChefVault::Item.load('passwords', 'root')
item['password']
```
with this instead:
```
chef_gem 'chef-vault-retry' do
compile_time true if respond_to?(:compile_time)
end
require 'chef-vault-retry'
item = ChefVaultRetry::Item.load('passwords', 'root')
item['password']
```
The same ChefVault::Item.load method will be called, but if a secret decryption exception is raised:
1. A message will output about the failure
* e.g. `SecretDecryption exception raised; please refresh vault item (passwords/root)`
2. Recipe execution will pause for 30 seconds
3. The process will repeat
* It will repeat this 40 times by default (~20 minutes). The number of retries can be customized by passing a Fixnum as the `retries` argument of `ChefVaultRetry::Item.load`
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| chef-vault-retry-0.1.0 | README.md |