infra
/
ansible
4
5
Fork 5
Code Issues 6 Pull Requests Activity

root-keys: new role to set ssh authorized keys for the root user

This commit is contained in:
Markus 2018-09-17 22:03:35 +02:00
parent 0a2f85459d
commit 1a511a9faf
5 changed files with 30 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
group_vars/all/vars.yml
View File

@ -65,6 +65,12 @@ racktables_dbpass: "{{ vault_racktables_dbpass }}"
radius_secret: "{{ vault_radius_secret }}"
root_keys:
- "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC1McRltT0B2bAN1pVDQ+ApJL/rhnvu9gAyGamXwGAgt3V5Q/+VT+KY+0x2T5kgPsuBOio/SDKPY6zoadomU+l3QXtfiE797j7rOjHrIUJor6fMubpVg8jU9E9pytN/vgYSVy286hLmTnHNjTZYlwhMCFA2xAJfyutypY0igAlUh6NNL3PK0LRESd12ttavDX65R2zZpJqBTcKZEXt8y1D+YArxmAa09cS9X4SH8z5h1HWHJ3G60U2nIrdPegADnUXitL5Fup5xok89B4zpILRXz9PmnLXHCTXLu4DamIFPbObnXyjT9gsSMAkOUc6m8TzVgek/7ImL/hQiZU2woQ9p moepman"
- "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJBmZnJLG1WRppbLtOAJw3E4LgLRK0NirfCgpovhhU6h moepman"
- "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIETMJ1JTX+xKC7ML8Or+8wunwy1rjIkp7MfeZLzLIyvP tomoto"
- "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINPlktM2x11cNBMKurf57MLE1XcOm2sGQXguc0tl1vYd rudi@helheim"
snmp_allowed:
- 172.23.2.5
- 172.23.2.6

5
host_vars/beryllium.binary-kitchen.net Normal file
View File

@ -0,0 +1,5 @@
---
root_keys_host:
- "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAB+wC+Lik9TNbRo40+e2BmJzJY8EuwRiJzKKvGCHlMmagOmZVf+zUmjc1uMvrgoA4UPJyKlkW1HqRhKLmsoccD2wg1JLlnjx6KBhiPGjPt833eWv0CyfJVqoHVPUs14BwCRGzuFZPXh8LC1XWiDlo23RC0RgPpk+wcOzf79ZivYSL4UNMcBIMIKmPlRwBLRUUXjYU2jgv1mWvIQVdKRbwmLk7FajREANKiLj+Tk+D4VmkDq6gUqXZHYbyUauwrtpYSv2JM6YQYhWz+eNXIID1NmlopAf66RwFxAaane6qMUMSCQw3HUBL2BjFGgmmdJPvsEfrj+S1CYh61iC1NHmPhP6DDnQO7aiP6dWLnRXLg4qcUaN0XGNZmhScls/jNbN4U+w6gIlR12KyoCJOK4pXiifBiuqmFGucyETex1jdKoaLPeB8Smu4HkFksmRgTZHbiYVvkgI/iW9KjBBzxCc8cwehabUpQ0DVN4chpFiFNHb3SfCh6W/3IKFcu4ou4lbvVowq+v/M7aDhjSqGEBMS/HRMQ8KteNTngFBcpTzMPBz1RQIOqlWUGp8yqu1SwZ/ZG1nMyUehchfkw/n+ML676UYMCZX2m7hqWXVccCnJLzFApv+0Lzqf3TNSbeLS1N/MDdjg+uejtj1889/leIF1/CnaHIs7WJN1qmdeVGw== anti@binary.kitchen"
- "ssh-rsa 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 pajewski@MacBook-Pro.local"

5
host_vars/nitrogen.binary-kitchen.net Normal file
View File

@ -0,0 +1,5 @@
---
root_keys_host:
- "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJu4xYKnnAhXf2Fe+cI+U4EVkePw3cbPbSR4iPhY2fQf xaver@xm.1drop.de"
- "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGC1Cn/tEqpZKEgLzT3bGrhYibQy0bc21rtoDqm4+elZ xaver@home"

4
roles/root-keys/tasks/main.yml Normal file
View File

@ -0,0 +1,4 @@
---
- name: Set authorized keys
template: src=authorized_keys.j2 dest=/root/.ssh/authorized_keys

10
roles/root-keys/templates/authorized_keys.j2 Normal file
View File

@ -0,0 +1,10 @@
{% if root_keys %}
{% for key in root_keys %}
{{ key }}
{% endfor %}
{% endif %}
{% if root_keys_host is defined %}
{% for key in root_keys_host %}
{{ key }}
{% endfor %}
{% endif %}