mirror of
https://gitlab.archlinux.org/archlinux/infrastructure.git
synced 2024-05-10 01:26:26 +02:00
playbooks/fetch-borg-keys.yml: Encrypt keys with GPG
Signed-off-by: Florian Pritz <bluewind@xinu.at>
This commit is contained in:
parent
c14181a069
commit
ea7a38feb4
|
@ -10,3 +10,14 @@ root_ssh_keys:
|
|||
- grazzolini.pub
|
||||
- foutrelis.pub
|
||||
- jelle.pub
|
||||
|
||||
root_gpgkeys:
|
||||
- CFA6AF15E5C74149FC1D8C086D1655C14CE1C13E # bluewind
|
||||
- F3691687D867B81B51CE07D9BBE43771487328A9 # bpiotrowski
|
||||
- 8FC15A064950A99DD1BD14DD39E4B877E62EB915 # svenstaro
|
||||
- B81B051F2D7FC867AAFF35A58DBD63B82072D77A # seblu
|
||||
- 40776A5221EF5AD468A4906D42A1DB15EC133BAD # angvp
|
||||
- 8218F88849AAC522E94CF470A5E9288C4FA415FA # heftig
|
||||
- ECCAC84C1BA08A6CC8E63FBBF22FB1D78A77AEAB # grazzolini
|
||||
- 86CFFCA918CF3AF47147588051E8B148A9999C34 # foutrelis
|
||||
- E499C79F53C96A54E572FEE1C06086337C50773E # jelle
|
||||
|
|
|
@ -13,4 +13,8 @@
|
|||
register: borg_key
|
||||
|
||||
- name: save borg key
|
||||
local_action: copy content={{ borg_key.stdout }} dest="{{playbook_dir}}/../borg-keys/{{inventory_hostname}}"
|
||||
shell: gpg --batch --armor --encrypt --output - >"{{playbook_dir}}/../borg-keys/{{inventory_hostname}}.gpg" {% for userid in root_gpgkeys %}--recipient {{userid}} {% endfor %}
|
||||
args:
|
||||
stdin: "{{borg_key.stdout}}"
|
||||
chdir: "{{playbook_dir}}/.."
|
||||
delegate_to: localhost
|
||||
|
|
Loading…
Reference in New Issue