jpp/ansible-roles
1
0
Fork 0
mirror of https://git.lapiole.org/dani/ansible-roles.git synced 2025-04-10 15:23:27 +02:00
Code Issues Packages Projects Releases Wiki Activity
ansible-roles/roles/rpm_build_server/tasks/conf.yml
Daniel Berteaud 6430e931d0 Update to 2021-12-31 14:05
2021-12-31 14:05:49 +01:00

59 lines
1.7 KiB
YAML
Raw Blame History

---
- name: Deploy mock config
template: src=mock/{{ item }}.j2 dest=/etc/mock/{{ item }}
loop:
- site-defaults.cfg
- el7-x86_64.cfg
- el8-x86_64.cfg
tags: rpm
- name: Deploy rpmmacros
template: src=rpmmacros.j2 dest={{ rpm_root_dir }}/.rpmmacros owner={{ rpm_user }} mode=600
tags: rpm
- name: Deploy main configuration
template: src=config.yml.j2 dest={{ rpm_root_dir }}/etc/config.yml
notify: restart build-watcher
tags: rpm
- name: Check if gpg key exists
shell: gpg --list-options show-only-fpr-mbox --list-secret-keys | grep -q "{{ rpm_gpg_email }}"
failed_when: False
changed_when: False
register: rpm_gpg_key_exists
become_user: "{{ rpm_user }}"
tags: rpm
- name: Flush handlers to set permissions on directories
meta: flush_handlers
tags: rpm
- when: rpm_gpg_key_exists.rc != 0
block:
- name: Generate main key
shell: |
gpg --batch \
--passphrase '{{ rpm_gpg_pass is defined | ternary(rpm_gpg_pass, '') }}' \
--pinentry-mode loopback \
--quick-gen-key "{{ rpm_gpg_name }} <{{ rpm_gpg_email }}>" rsa3072 default never
- name: Get key ID
shell: gpg --list-options show-only-fpr-mbox --list-secret-keys | grep {{ rpm_gpg_email }} | awk '{ print $1 }'
register: rpm_gpg_key_id
changed_when: False
- name: Add sub key
shell: |
gpg --batch \
--passphrase '{{ rpm_gpg_pass is defined | ternary(rpm_gpg_pass, '') }}' \
--pinentry-mode loopback \
--quick-add-key {{ rpm_gpg_key_id.stdout }} rsa3072 default never \
- name: Export public key
shell: gpg --export -a "rpms@lapiole.org" > {{ rpm_root_dir }}/repo/RPM-GPG-KEY
become_user: "{{ rpm_user }}"
tags: rpm
Reference in New Issue View Git Blame Copy Permalink