diff --git a/roles/bootstrap/vars/main/general.yml b/roles/bootstrap/vars/main/general.yml
new file mode 100644
index 0000000..13d0393
--- /dev/null
+++ b/roles/bootstrap/vars/main/general.yml
@@ -0,0 +1,12 @@
+#SPDX-License-Identifier: MIT-0
+---
+# vars file for bootstrap
+admins: ~
+guests: ~
+users: ~
+roots: ~
+enrollment_key: "{{ crowdsec_key }}"
+gcfs_password: "{{ gocrypt_password }}"
+gpg_sign_id: ~
+official_name: ~
+official_email: ~
diff --git a/roles/bootstrap/vars/options/certbot.yml b/roles/bootstrap/vars/options/certbot.yml
new file mode 100644
index 0000000..17a530f
--- /dev/null
+++ b/roles/bootstrap/vars/options/certbot.yml
@@ -0,0 +1,3 @@
+---
+dns_secret: "{{ porkbun_api_secret }}"
+dns_key: "{{ porkbun_api_key  }}"
\ No newline at end of file
diff --git a/roles/bootstrap/vars/options/crowdsec.yml b/roles/bootstrap/vars/options/crowdsec.yml
new file mode 100644
index 0000000..90372ec
--- /dev/null
+++ b/roles/bootstrap/vars/options/crowdsec.yml
@@ -0,0 +1,2 @@
+---
+enrollment_key: "{{ crowdsec_key }}"
\ No newline at end of file
diff --git a/roles/bootstrap/vars/options/git.yml b/roles/bootstrap/vars/options/git.yml
new file mode 100644
index 0000000..dc37218
--- /dev/null
+++ b/roles/bootstrap/vars/options/git.yml
@@ -0,0 +1,4 @@
+---
+gpg_sign_id: ~
+official_name: ~
+official_email: ~
\ No newline at end of file
diff --git a/roles/bootstrap/vars/options/gpg.yml b/roles/bootstrap/vars/options/gpg.yml
new file mode 100644
index 0000000..de243c2
--- /dev/null
+++ b/roles/bootstrap/vars/options/gpg.yml
@@ -0,0 +1,2 @@
+---
+gcfs_password: "{{ gocrypt_password }}"
\ No newline at end of file
diff --git a/roles/bootstrap/vars/options/proftpd.yml b/roles/bootstrap/vars/options/proftpd.yml
new file mode 100644
index 0000000..850cdea
--- /dev/null
+++ b/roles/bootstrap/vars/options/proftpd.yml
@@ -0,0 +1,16 @@
+---
+welcome_msg_path: /etc/proftpd/welcome.msg
+goodbye_msg_path: /etc/proftpd/bye.msg
+transfer_msg_path: /etc/proftpd/transfer.msg
+default_umask: "0022 0022"
+users_allowed: cybersmuggler webmaster
+servername: ftp.sukaato.moe
+admin_email: admin@sukaato.moe
+serveralias: sukaato
+ftp_protocols: ftps
+ftp_port: 990
+sec_cert_path: /etc/srv/domain.cert.pem
+sca_cert_path: /etc/srv/domain.cert.pem
+key_cert_path: /etc/srv/private.key.pem
+ftp_auth_user_path: /etc/proftpd/ftp.passwd
+ftp_auth_group_path: /etc/proftpd/ftpd.group
\ No newline at end of file
diff --git a/roles/bootstrap/vars/options/ssh.yml b/roles/bootstrap/vars/options/ssh.yml
new file mode 100644
index 0000000..5546866
--- /dev/null
+++ b/roles/bootstrap/vars/options/ssh.yml
@@ -0,0 +1,5 @@
+---
+pubkeys: "{{ user_pubkeys }}"
+primary_root_acct: "{{ root_auths[0] }}"
+nonlogin_method: delog
+roots: "{{ root_auths }}"
\ No newline at end of file