How to use returned secrets

[xtream1101]

I have having a hard time figuring out how to use the returned secrets because the format is not what I would expect them to be in.

Example:

- hosts: all

  vars:
    secrets: "{{ lookup('infisical.vault.read_secrets', project_id='<>', path='/', env_slug='prod') }}"
    mysecret: "{{ lookup('infisical.vault.read_secrets', project_id='<>', path='/', secret_name='mysecret', env_slug='prod') }}"

  tasks:
    - name: debug all secrets
      debug:
        var: secrets
        # [{"key": "mysecret", "value": "****"},{"key": "another_secret","value": "****"}]

    - name: debug my secret
      debug:
        var: mysecret
        # {"key": "mysecret", "value": "****"}

They are being returned as per the readme as seen in the comments under each debug, but when looking up all secrets in a path how are you expected to use that value?

Given the examples above, I would expect the lookup to return

secrets would be {"mysecret": "****", "another_secret": "****"}. That way you could just access secrets.mysecret, and mysecret would just be the secret value returned directly

If I am mis-understanding on how to use these values that are returned please let me know too.

[etoosamoe]

Hi! I'm using it like this:

gitlab_smtp_password: >-
  {{ lookup('infisical.vault.read_secrets',
    universal_auth_client_id=infisical_client_auth_id,
    universal_auth_client_secret=infisical_client_access_token,
    project_id=infisical_infra_project_id,
    path='/',
    env_slug='infra',
    secret_name='MAILGUN_SMTP_PASSWORD',
    url=infisical_url
  ) }}

Variables like infisical_client_auth_id or infisical_url I set up in group_vars in inventory.
And then, I use secrets in Jinja templates like "{{ gitlab_smtp_password.value }}"