Very good idea. thank you very much.
Its possible to read salt environments: salt.modules.environ
The discussion has a slightly different target but there are some important notes: Storing secure information
- like, how to store them - using encrypted with the system /etc/foreman/encryption_key.rb
- use Encryptable module we have in core