aboutsummaryrefslogblamecommitdiffstats
path: root/roles/wireguard/tasks/keys.yml
blob: 128d94344ec46434e086798f90e0b63dbc347ce2 (plain) (tree)
1
2
                           
                          














                                                            
- name: generate hosts keys
  ansible.builtin.shell: |
    set -o pipefail
    ls "{{ wireguard_local_dir }}/{{ item }}.keys" && exit 0
    umask 077
    wg genkey | \
    tee "{{ item }}.keys" | \
    wg pubkey >> "{{ item }}.keys"
    exit 2
  args:
    chdir: "{{ wireguard_local_dir }}"
  loop: "{{ groups.all }}"
  run_once: true
  delegate_to: localhost
  register: result
  changed_when: result.rc == 2
  failed_when: result.rc not in [0, 2]
remember that computers suck.