Commit 222db81f authored by Guido Gunther's avatar Guido Gunther
Browse files

Allow to preprocess keys into keyrings

so apt can use them during chroot setup.
parent f1ab3c91
......@@ -33,6 +33,12 @@
certbot_create_method: standalone
certbot_create_standalone_stop_services:
- nginx
- role: gbp_keyrings
gbp_pbuilder_keyrings:
- key: /DATA/aptly/public/ci-repo.key
keyring: ci-repo
tags:
- gbp_keyrings
- role: gbp
gbp_cowbuilder_targets:
- dist: sid
......
- name: Ensure gpg is installed
apt:
name: gpg
state: latest
- set_fact:
pbuilder_keyring_dir: /etc/pbuilder/keyrings
- name: Ensure keyring directory
file:
name: /etc/pbuilder/keyrings
state: directory
- name: Create a GPG keyring from a key
shell: >
gpg --no-options \
--no-default-keyring \
--no-auto-check-trustdb \
--trustdb-name ./trustdb.gpg \
--no-keyring \
--import-options import-export \
--import \
< {{ item.key }} \
> {{ pbuilder_keyring_dir}}/{{ item.keyring }}.gpg
args:
creates: "{{ pbuilder_keyring_dir}}/{{ item.keyring }}.gpg"
with_items:
"{{ gbp_pbuilder_keyrings }}"
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment