/
gpg.yml
64 lines (58 loc) · 1.88 KB
/
gpg.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
---
# linux_postinstall gpg
- name: "gpg: Debug"
vars:
msg: |-
ansible_os_family: {{ ansible_os_family }}
ansible_python_version: {{ ansible_python_version }}
lp_gpg_install: {{ lp_gpg_install }}
lp_gpg_packages:
{{ lp_gpg_packages|to_nice_yaml(indent=2)|indent(2) }}
lp_gpg_packages_extra:
{{ lp_gpg_packages_extra|to_nice_yaml(indent=2)|indent(2) }}
lp_gpg_conf_template: {{ lp_gpg_conf_template }}
lp_gpg_conf:
{{ lp_gpg_conf|to_yaml(indent=2)|indent(2) }}
lp_backup_conf: {{ lp_backup_conf }}
ansible.builtin.debug:
msg: "{{ '{}'.format(msg) }}"
when: lp_gpg_debug|bool
tags: lp_gpg_debug
- name: "gpg: Install packages"
ansible.builtin.import_role:
name: vbotka.linux_lib
tasks_from: install_package.yml
vars:
ll_ipkg_list: "{{ lp_gpg_packages + lp_gpg_packages_extra }}"
ll_ipkg_state: "{{ lp_package_state }}"
ll_ipkg_autoremove: "{{ lp_packages_autoremove|bool }}"
ll_ipkg_rescue_end_host: "{{ lp_packages_rescue_end_host|bool }}"
ll_debug: "{{ lp_gpg_debug|bool }}"
when: lp_gpg_install|bool
tags: lp_gpg_packages
- name: "gpg: Create directories .gnupg"
ansible.builtin.file:
state: directory
dest: "/home/{{ item }}/.gnupg"
owner: "{{ item }}"
group: "{{ item }}"
mode: '0700'
loop: "{{ lp_gpg_conf|map(attribute='owner')|unique|sort }}"
tags: lp_gpg_dir
- name: "gpg: Configure gnupg"
ansible.builtin.template:
src: "{{ lp_gpg_conf_template }}"
dest: "{{ '/home/' ~ item.owner ~ '/.gnupg/' ~ item.component ~ '.conf' }}"
owner: "{{ item.owner }}"
group: "{{ item.owner }}"
mode: '0600'
backup: "{{ lp_backup_conf }}"
register: lp_gpg_conf_reg
loop: "{{ lp_gpg_conf }}"
loop_control:
label: "{{ item.owner }} {{ item.component }}"
notify: gpgconf reload
tags: lp_gpg_conf
# TODO: import keys, template blocks
# EOF
...