From 64e38ee702ba4b7d130e787c7a243155b7ad2e05 Mon Sep 17 00:00:00 2001
From: Frank Villaro-Dixon <frank@villaro-dixon.eu>
Date: Fri, 17 May 2024 18:58:57 +0200
Subject: [PATCH] token: explain how to generate it (#328)

Signed-off-by: Frank Villaro-Dixon <frank@villaro-dixon.eu>
---
 inventory-sample.yml | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/inventory-sample.yml b/inventory-sample.yml
index d29456501..8e9b2d0c0 100644
--- a/inventory-sample.yml
+++ b/inventory-sample.yml
@@ -14,7 +14,12 @@ k3s_cluster:
     ansible_port: 22
     ansible_user: debian
     k3s_version: v1.26.9+k3s1
-    token: "mytoken"  # Use ansible vault if you want to keep it secret
+    # The token should be a random string of reasonable length. You can generate
+    # one with the following commands:
+    # - openssl rand -base64 64
+    # - pwgen -s 64 1
+    # You can use ansible-vault to encrypt this value / keep it secret.
+    token: "changeme!"
     api_endpoint: "{{ hostvars[groups['server'][0]]['ansible_host'] | default(groups['server'][0]) }}"
     extra_server_args: ""
     extra_agent_args: ""