28 lines
630 B
YAML
28 lines
630 B
YAML
|
---
|
||
|
# vim: set expandtab tabstop=2 shiftwidth=2:
|
||
|
- name: create sshca-user
|
||
|
user:
|
||
|
name: '{{ssh_ca_user}}'
|
||
|
comment: SSH-CA
|
||
|
shell: /bin/sh
|
||
|
createhome: yes
|
||
|
home: '{{ssh_ca_home}}'
|
||
|
move_home: no
|
||
|
skeleton: no
|
||
|
- name: install ssh-ca
|
||
|
copy:
|
||
|
src: ssh-ca.rb
|
||
|
dest: '{{ssh_ca_home}}/ssh-ca'
|
||
|
- name: base-dir
|
||
|
file:
|
||
|
path: '{{ssh_ca_base_dir}}'
|
||
|
owner: '{{ssh_ca_user}}'
|
||
|
mode: 0700
|
||
|
- name: CA
|
||
|
openssh_keypair:
|
||
|
path: '{{ssh_ca_base_dir}}/ca'
|
||
|
type: ed25519
|
||
|
owner: '{{ssh_ca_user}}'
|
||
|
comment: '{{ssh_ca_name|mandatory}}'
|
||
|
force: '{{ssh_ca_force_regeneration|default(false)}}'
|