diff options
| author | Patrick Uiterwijk <puiterwijk@redhat.com> | 2017-04-09 22:50:25 +0000 |
|---|---|---|
| committer | Patrick Uiterwijk <puiterwijk@redhat.com> | 2017-04-09 22:50:25 +0000 |
| commit | 3ec28fa016c55a663625c9b198444af2771014d4 (patch) | |
| tree | 3cccb816df6ee797a2f01b00fbf27922e43680f3 | |
| parent | 7ce0b12a42c6766c746f0a90076c7b98b7848603 (diff) | |
| download | ansible-3ec28fa016c55a663625c9b198444af2771014d4.tar.gz ansible-3ec28fa016c55a663625c9b198444af2771014d4.tar.xz ansible-3ec28fa016c55a663625c9b198444af2771014d4.zip | |
Use a static dir
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
| -rw-r--r-- | roles/base/tasks/sshcerts.yml | 21 |
1 files changed, 12 insertions, 9 deletions
diff --git a/roles/base/tasks/sshcerts.yml b/roles/base/tasks/sshcerts.yml index cc28c9278..b30336f25 100644 --- a/roles/base/tasks/sshcerts.yml +++ b/roles/base/tasks/sshcerts.yml @@ -44,21 +44,24 @@ # TODO: Get expired certificates, and add them to certs_to_sign -- name: Create directory for storing pubkeys - command: "mktemp -d --suffix=sshkeysign" - delegate_to: "batcave01.phx2.fedoraproject.org" - run_once: true - register: pubkeydirout - when: env == "staging" and certs_to_sign != [] +- set_fact: + pubkeydir: "/tmp/sshkeysign" + when: env == "staging" tags: - sshd_config - config - sshd - base -- set_fact: - pubkeydir: "{{pubkeydirout.stdout}}" - when: env == "staging" and certs_to_sign != [] +- name: Create directory for storing pubkeys + file: path="{{pubkeydir}}" + owner=root + group=root + mode=0600 + state=directory + delegate_to: "batcave01.phx2.fedoraproject.org" + run_once: true + when: env == "staging" tags: - sshd_config - config |