diff --git a/group_vars/all.yml b/group_vars/all.yml
index f7f6c406..2866bc2c 100644
--- a/group_vars/all.yml
+++ b/group_vars/all.yml
@@ -68,6 +68,11 @@ op:
   shell:
     - name: OPENAI_API_KEY
       vault_path: "op://Personal/Openai/OPENAI_KEY - Project"
+# FIXME: See `system/tasks/main.yml` for how to structure this var looping.
+  # system:
+  #   hosts:
+  #     - item: op://Raft/rdp-demo-local-ingress/notesPlain
+  #       account: my.1password.com
 
 flatpak_packages:
   - md.obsidian.Obsidian
diff --git a/roles/system/tasks/main.yml b/roles/system/tasks/main.yml
index 521a5945..fdfd24d3 100644
--- a/roles/system/tasks/main.yml
+++ b/roles/system/tasks/main.yml
@@ -16,12 +16,16 @@
   become: true
   when: not ansible_host_environment_is_wsl
 
+# FIXME: Follow the SSH vault.yml structure of looping over op keys
+# and adding them to etc-hosts after the above template is laid down.
 - name: "System | Get Host from Vault"
   ansible.builtin.command:
     cmd: op --account my.1password.com read op://Raft/rdp-demo-local-ingress/notesPlain
   register: rdp_demo_local_ingress_hosts
   changed_when: false
 
+# FIXME: This needs to more dynamically apply op host entries.
+# See above `fixme:` for more info
 - name: "System | Add Vault Hosts to /etc/hosts"
   when: rdp_demo_local_ingress_hosts is defined
   ansible.builtin.lineinfile: