refactored-octo-garbanzo

No secrets at all.

Initialize the repo with the key on first checkout:

git-crypt unlock /path/to/keyfile

Thanks a lot to git-crypt.

{
  "variable": {
    "passphrase": {
      "default": "A passphrase"
    },
    "repo_keyfile": {
      "default": "A key location"
    }
  }
}

It'll then be better parsable on the commandline e.g.

jq -r '"passphrase=\"" + .variable.passphrase.default + "\"" ' < secrets.tf.json

Name		Name	Last commit message	Last commit date
Latest commit History 24 Commits
html		html
.gitattributes		.gitattributes
.gitignore		.gitignore
README.md		README.md
docker.sh		docker.sh
ecs.task.state.change.json		ecs.task.state.change.json
exp-instance.tf		exp-instance.tf
nginx.conf		nginx.conf
secrets.tf		secrets.tf
security-group.tf		security-group.tf
variables.tfvars		variables.tfvars
xvfb.service		xvfb.service

Provide feedback