Force syncrhonization of ssh keys

author: binary <me@rgoncalves.se> 2021-01-20 09:47:17 +0100
committer: binary <me@rgoncalves.se> 2021-01-20 09:47:17 +0100
commit: 0cd61e9ff967396c2989a2bf23e22a7977c75df6 (patch)
tree: 2edb9f662e80ad79800c1a6e1aab0d8105910b5f
parent: 28cab93735128358542fe9374930f448636aa557 (diff)
download: infrastructure-0cd61e9ff967396c2989a2bf23e22a7977c75df6.tar.gz
2 files changed, 9 insertions, 0 deletions
diff --git a/playbooks/st0dev0.rgoncalves.se.yml b/playbooks/st0dev0.rgoncalves.se.yml
index b47312a..fbee649 100644
--- a/playbooks/st0dev0.rgoncalves.se.yml
+++ b/playbooks/st0dev0.rgoncalves.se.yml
@@ -10,3 +10,4 @@
     - { role: cgit }
     - { role: jenkins }
     - { role: httpd }
+    - { role: sshd }
diff --git a/roles/sshd/tasks/main.yml b/roles/sshd/tasks/main.yml
index 8c032ee..db46aad 100644
--- a/roles/sshd/tasks/main.yml
+++ b/roles/sshd/tasks/main.yml
@@ -33,6 +33,14 @@
   ignore_errors: true
   loop: "{{ keys.files }}"
 
+- name: chown ssh file to correct user
+  file:
+    path: "/home/{{ item.path | dirname | basename }}/.ssh/authorized_keys"
+    owner: "{{ item.path | dirname | basename }}"
+    mode: 0600
+  ignore_errors: true
+  loop: "{{ keys.files }}"
+
 - name: restart sshd
   service:
     name: sshd
author	binary <me@rgoncalves.se>	2021-01-20 09:47:17 +0100
committer	binary <me@rgoncalves.se>	2021-01-20 09:47:17 +0100
commit	0cd61e9ff967396c2989a2bf23e22a7977c75df6 (patch)
tree	2edb9f662e80ad79800c1a6e1aab0d8105910b5f
parent	28cab93735128358542fe9374930f448636aa557 (diff)
download	infrastructure-0cd61e9ff967396c2989a2bf23e22a7977c75df6.tar.gz