From 0cd61e9ff967396c2989a2bf23e22a7977c75df6 Mon Sep 17 00:00:00 2001 From: binary Date: Wed, 20 Jan 2021 09:47:17 +0100 Subject: Force syncrhonization of ssh keys --- playbooks/st0dev0.rgoncalves.se.yml | 1 + roles/sshd/tasks/main.yml | 8 ++++++++ 2 files changed, 9 insertions(+) diff --git a/playbooks/st0dev0.rgoncalves.se.yml b/playbooks/st0dev0.rgoncalves.se.yml index b47312a..fbee649 100644 --- a/playbooks/st0dev0.rgoncalves.se.yml +++ b/playbooks/st0dev0.rgoncalves.se.yml @@ -10,3 +10,4 @@ - { role: cgit } - { role: jenkins } - { role: httpd } + - { role: sshd } diff --git a/roles/sshd/tasks/main.yml b/roles/sshd/tasks/main.yml index 8c032ee..db46aad 100644 --- a/roles/sshd/tasks/main.yml +++ b/roles/sshd/tasks/main.yml @@ -33,6 +33,14 @@ ignore_errors: true loop: "{{ keys.files }}" +- name: chown ssh file to correct user + file: + path: "/home/{{ item.path | dirname | basename }}/.ssh/authorized_keys" + owner: "{{ item.path | dirname | basename }}" + mode: 0600 + ignore_errors: true + loop: "{{ keys.files }}" + - name: restart sshd service: name: sshd -- cgit v1.2.3