85c7ff6989
Run the first task in the block, with become_user since the zuul user may not access a generic use .ssh folder. Depends-on: https://review.openstack.org/550091 Change-Id: I4ce120412079fe92502eee5310a03664aa55d5ce
26 lines
669 B
YAML
26 lines
669 B
YAML
---
|
|
# Use a block to add become to a set of tasks
|
|
- block:
|
|
# Add the authorization first, to take advantage of manage_dir
|
|
- name: Authorize build key
|
|
authorized_key:
|
|
user: "{{ copy_sshkey_target_user }}"
|
|
manage_dir: yes
|
|
key: "{{ lookup('file', zuul_temp_ssh_key ~ '.pub') }}"
|
|
|
|
- name: Install the build private key
|
|
copy:
|
|
src: "{{ zuul_temp_ssh_key }}"
|
|
dest: "~/.ssh/id_rsa"
|
|
mode: 0600
|
|
force: no
|
|
|
|
- name: Install the build public key
|
|
copy:
|
|
src: "{{ zuul_temp_ssh_key }}.pub"
|
|
dest: "~/.ssh/id_rsa.pub"
|
|
mode: 0644
|
|
force: no
|
|
become: true
|
|
become_user: "{{ copy_sshkey_target_user }}"
|