---
+ssh_root_users:
+ - equinox
+ - nicoo
+
accesspoint_wifi_channels:
2.4g:
ap0: 3
/etc/dropbear/authorized_keys:
content: |-
- {% for key in noc_ssh_keys %}
+ {% for key in ssh_keys_root %}
{{ key }}
{% endfor %}
## Root password; by default, undefined
root_password: "{{ vault_root_password }}"
## SSH keys for root, default to NOC's
-ssh_keys: "{{ noc_ssh_keys }}"
+
+ssh_users_root: "{{ user_groups.noc }}"
+## TODO: make this a filter_plugin...
+ssh_keys_root: "{{ ssh_users_root | map('extract', users) | map(attribute='ssh') | flatten | list }}"
+
+## TODO: not used at the moment?
+noc_groups:
+ - adm
+ - sudo
gpg: 0xE3468B9CE81EB4F91486
ssh:
- ssh-rsa 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 xro@realraum.at
-
-noc_groups:
- - adm
- - sudo
-
-noc_ssh_keys: "{{ user_groups.noc | map('extract', users) | map(attribute='ssh') | flatten | list }}"
---
+ssh_keys_tuergit: "{{ ssh_keys_root }}"
+
openwrt_arch: x86
openwrt_target: geode
openwrt_output_image_suffixes:
/etc/ssh/authorized_keys.d/root:
content: |-
- {% for key in noc_ssh_keys %}
+ {% for key in ssh_keys_root %}
{{ key }}
{% endfor %}
/etc/ssh/authorized_keys.d/tuergit:
content: |-
- {% for key in noc_ssh_keys %}
+ {% for key in ssh_keys_tuergit %}
{{ key }}
{% endfor %}
- name: Set authorized keys for root user
authorized_key:
user: root
- key: "{{ ssh_keys | join('\n') }}"
+ key: "{{ ssh_keys_root | join('\n') }}"
exclusive: yes
- name: disable apt suggests and recommends
user: root
manage_dir: no
path: "{{ preseed_tmpdir }}/authorized_keys"
- key: "{{ ssh_keys | join('\n') }}"
+ key: "{{ ssh_keys_root | join('\n') }}"
- name: Inject files into initramfs
shell: cpio -H newc -o | gzip -9 >> 'initrd.preseed.gz'
- import_role:
name: preseed
vars:
- ssh_keys: "{{ hostvars[hostname].ssh_keys }}"
+ ssh_keys_root: "{{ hostvars[hostname].ssh_keys_root }}"
install_interface: enp1s1
preseed_tmpdir: "{{ tmpdir.stdout }}"
projects / noc.git / commitdiff