Skip to content
Roots
  • Home page
Trellis
v1.23.0

Passwords

There are a few places you'll want to set/change passwords:

group_vars/<environment>/vault.yml

  • vault_mysql_root_password
  • vault_users.*.password
  • vault_wordpress_sites.*.env.db_password

group_vars/development/vault.yml

  • vault_wordpress_sites.admin_password

group_vars/all/vault.yml

  • vault_mail_password

For staging/production environments, it's best to randomly generate longer passwords using something like random.org.

You may be concerned about setting plaintext passwords in a Git repository, and you should be. We strongly recommend you encrypt these passwords before committing them to your repo. Trellis is structured to make it easy to enable Ansible Vault to encrypt select files. Alternatively, you could try an option such as git-crypt.

Note

Any type of server configs such as this playbook should always be in a private Git repository.

Contributors

Last updated

Help us improve this page.

Support Roots

Help us continue to build and maintain our open source projects. We’re a small team of independent developers and every little bit helps.

Sponsor Roots on GitHub

Getting Started

The Basics

Security

Digging Deeper

Troubleshooting

Extensions

Guides