mirror/ infrastructure
1
1
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/infrastructure.git synced 2024-05-10 01:26:26 +02:00
Code Issues

playbooks/fetch-borg-keys.yml: Encrypt keys with GPG 

Signed-off-by: Florian Pritz <bluewind@xinu.at>
This commit is contained in:
Florian Pritz 2018-01-10 21:02:25 +01:00
parent c14181a069
commit ea7a38feb4
No known key found for this signature in database
GPG Key ID: 6D1655C14CE1C13E
2 changed files with 16 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
group_vars/all/root_pubkeys.yml
View File

@ -10,3 +10,14 @@ root_ssh_keys:
- grazzolini.pub
- foutrelis.pub
- jelle.pub
root_gpgkeys:
- CFA6AF15E5C74149FC1D8C086D1655C14CE1C13E # bluewind
- F3691687D867B81B51CE07D9BBE43771487328A9 # bpiotrowski
- 8FC15A064950A99DD1BD14DD39E4B877E62EB915 # svenstaro
- B81B051F2D7FC867AAFF35A58DBD63B82072D77A # seblu
- 40776A5221EF5AD468A4906D42A1DB15EC133BAD # angvp
- 8218F88849AAC522E94CF470A5E9288C4FA415FA # heftig
- ECCAC84C1BA08A6CC8E63FBBF22FB1D78A77AEAB # grazzolini
- 86CFFCA918CF3AF47147588051E8B148A9999C34 # foutrelis
- E499C79F53C96A54E572FEE1C06086337C50773E # jelle

6
playbooks/fetch-borg-keys.yml
View File

@ -13,4 +13,8 @@
register: borg_key
- name: save borg key
local_action: copy content={{ borg_key.stdout }} dest="{{playbook_dir}}/../borg-keys/{{inventory_hostname}}"
shell: gpg --batch --armor --encrypt --output - >"{{playbook_dir}}/../borg-keys/{{inventory_hostname}}.gpg" {% for userid in root_gpgkeys %}--recipient {{userid}} {% endfor %}
args:
stdin: "{{borg_key.stdout}}"
chdir: "{{playbook_dir}}/.."
delegate_to: localhost