21 lines
594 B
YAML
21 lines
594 B
YAML
---
|
|
- name: Check for new SSH keys in repository
|
|
ansible.builtin.set_fact:
|
|
ssh_keys_to_add: "{{ admin_ssh_keys | default([]) }}"
|
|
|
|
- name: Get current authorized keys
|
|
ansible.builtin.slurp:
|
|
src: /home/ansible/.ssh/authorized_keys
|
|
register: current_keys
|
|
ignore_errors: yes
|
|
|
|
- name: Add new SSH keys if found
|
|
ansible.posix.authorized_key:
|
|
user: ansible
|
|
state: present
|
|
key: "{{ item.key }}"
|
|
comment: "{{ item.name }}"
|
|
loop: "{{ ssh_keys_to_add }}"
|
|
when:
|
|
- ssh_keys_to_add | length > 0
|
|
- item.key not in (current_keys.content | b64decode | default('')) |