LecygneNoir
/
ansible-configz
mirror of https://github.com/theonlydoo/configz
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
145 Commits
1 Branch
1.8 MiB
Tree: f66203ba86
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f66203ba86'
${ noResults }
ansible-configz/roles/ssh-keys/tasks/main.yml

33 lines
937 B
Raw Normal View History

sortie du deploiement de clef ssh du role common vers un role dedie, avec utilisation de dictionnaires au lieu de liste pour utiliser la possibilite d'ansible de merger des dictionnaire. WARN : transformez votre variable admin_ssh_keys en dictionnaire ! (cd README)
6 years ago
 
  1. ---

  2. # Synchronization des clefs SSH avec option de suppression via admin_blacklist_ssh_keys

  3. # En utilisant la variable hash_behaviour = merge dans la configuration ansible,

  4. # permet de deployer differentes clefs sur differentes serveurs en mergeant les dictionnaire

  5. 

  6. - name: Check vars

  7.   fail: 

  8.     msg: "Missing variable admin_ssh_keys"

  9.   tags: ssh_keys

  10.   when: admin_ssh_keys is not defined

  11. 

  12. - name: Install libselinux-python needed for centos

  13.   tags: ssh_keys

  14.   yum: 

  15.     name: libselinux-python

  16.     state: installed

  17.   when: ansible_distribution == 'CentOS'

  18. 

  19. - name: Remove old SSH keys

  20.   tags: ssh_keys

  21.   authorized_key: 

  22.     user: root 

  23.     key: "{{ item.value }}"

  24.     state: absent

  25.   with_dict: "{{ admin_blacklist_ssh_keys }}"

  26.   when: admin_blacklist_ssh_keys is defined

  27. 

  28. - name: Deploy SSH keys

  29.   tags: ssh_keys

  30.   authorized_key: 

  31.     user: root 

  32.     key: "{{ item.value }}"

  33.     state: present

  34.   with_dict: "{{ admin_ssh_keys }}"