zuul/zuul-jobs
Code Issues Proposed changes

Use tempfile for ssh private key

Browse Source 
We do this for our GPG keys, lets also do it for SSH keys.

Change-Id: I0ec4b6a0bbadc4ab01e5e3e4987da3a40b7a1237
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
This commit is contained in:
Paul Belanger 2017-08-25 13:25:23 -04:00
parent fd162957d3
commit df50917f66
No known key found for this signature in database
GPG Key ID: 611A80832067AF38
1 changed files with 8 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
roles/add-fileserver/tasks/main.yaml
View File

@ -1,14 +1,19 @@
- name: Create SSH private key tempfile
tempfile:
state: file
register: ssh_private_key_tmp
- name: Create SSH private key from secret - name: Create SSH private key from secret
copy: copy:
content: "{{ fileserver.ssh_private_key }}" content: "{{ fileserver.ssh_private_key }}"
dest: ~/.ssh/fileserver_id_rsa dest: "{{ ssh_private_key_tmp.path }}"
mode: 0600 mode: 0600
- name: Add fileserver ssh key - name: Add fileserver ssh key
command: ssh-add ~/.ssh/fileserver_id_rsa command: "ssh-add {{ ssh_private_key_tmp.path }}"
- name: Remove SSH private key from disk - name: Remove SSH private key from disk
command: shred ~/.ssh/fileserver_id_rsa command: "shred {{ ssh_private_key_tmp.path }}"
- name: Add fileserver to inventory - name: Add fileserver to inventory
add_host: add_host: