73 lines
2.2 KiB
YAML
73 lines
2.2 KiB
YAML
- name: Remove existing .netrc
|
|
ansible.builtin.file:
|
|
path: "/home/{{ control_user }}/.netrc"
|
|
state: absent
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Remove existing .netrc.gpg
|
|
ansible.builtin.file:
|
|
path: "/home/{{ control_user }}/.netrc.gpg"
|
|
state: absent
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
# ----------------------------------------------------------------------------------------------------
|
|
|
|
|
|
- name: Reminder to generate GPG key by hand
|
|
pause:
|
|
prompt: "Generate GPG key using gpg --gen-key"
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Set up .netrc
|
|
template:
|
|
src: "conf/.netrc.j2"
|
|
dest: "/home/{{ control_user }}/.netrc"
|
|
owner: 1000
|
|
group: 1000
|
|
mode: 0755
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Encrypt .netrc
|
|
command: gpg -e -r opnxng@tuta.io /home/{{ control_user }}/.netrc
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Clear .netrc
|
|
copy:
|
|
content: '# Clear'
|
|
dest: "/home/{{ control_user }}/.netrc"
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Remove .netrc
|
|
ansible.builtin.file:
|
|
path: "/home/{{ control_user }}/.netrc"
|
|
state: absent
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Curl git-credential-netrc
|
|
shell: curl -s 'https://raw.githubusercontent.com/git/git/master/contrib/credential/netrc/git-credential-netrc.perl' > /usr/bin/git-credential-netrc
|
|
ignore_errors: true
|
|
delegate_to: "{{ control_host }}"
|
|
become: true
|
|
|
|
- name: Set git-credential-netrc permissions
|
|
command: chmod 755 /usr/bin/git-credential-netrc
|
|
become: true
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Use git-credential-netrc
|
|
command: git config --global credential.helper "/usr/bin/git-credential-netrc -f ~/.netrc.gpg -v"
|
|
delegate_to: "{{ control_host }}"
|
|
|
|
- name: Install gnupg-agent
|
|
apt:
|
|
name:
|
|
- gnupg-agent
|
|
state: latest
|
|
install_recommends: false
|
|
delegate_to: "{{ control_host }}"
|
|
become: true
|
|
|
|
- name: Reminder to add to .profile or .bashrc
|
|
pause:
|
|
prompt: "export GPG_TTY=$(tty)"
|
|
delegate_to: "{{ control_host }}" |