Use slurp to collect the repo_server ssh keys

Extracting the ssh public key using cat and storing the result in a fact has resulted in periodic failures in the collection of the key, and thereafter the failure to appropriately place that key into the authorised_keys file. This patch changes the collection method to use the Ansible slurp module which has been found to be more reliable. Change-Id: I68699e7b59630cc3bc6113285edcb1ab936160ce
2016-02-29 13:29:26 +00:00 · 2016-02-29 13:29:26 +00:00 · 6ea680c062
parent 4ee0d39710
commit 6ea680c062
2 changed files with 4 additions and 4 deletions
--- a/tasks/repo_key_distribute.yml
+++ b/tasks/repo_key_distribute.yml
@ -16,7 +16,7 @@
 - name: Create authorized keys file from host vars
  authorized_key:
    user: "{{ repo_service_user_name }}"
-    key: "{{ hostvars[item]['repo_pubkey'] }}"
+    key: "{{ hostvars[item]['repo_pubkey'] | b64decode }}"
  with_items: groups['repo_all']
  tags:
    - repo-key
--- a/tasks/repo_key_populate.yml
+++ b/tasks/repo_key_populate.yml
@ -14,8 +14,8 @@
 # limitations under the License.

 - name: Get public key contents and store as var
-  command: |
-    cat {{ repo_service_home_folder }}/.ssh/id_rsa.pub
+  slurp:
+    src: "{{ repo_service_home_folder }}/.ssh/id_rsa.pub"
  register: repo_pub
  changed_when: false
  tags:
@ -24,7 +24,7 @@

 - name: Register a fact for the repo user pub key
  set_fact:
-     repo_pubkey: "{{ repo_pub.stdout }}"
+     repo_pubkey: "{{ repo_pub.content }}"
  tags:
    - repo-key
    - repo-key-create