Refactor SSH configuration and add SSH_AUTH_SOCK to ansible-apply.yaml
This commit is contained in:
@@ -54,6 +54,7 @@ jobs:
|
||||
- name: Start SSH Agent
|
||||
env:
|
||||
VAULT_MASTER_PASSWORD: ${{ secrets.VAULT_MASTER_PASSWORD }}
|
||||
SSH_AUTH_SOCK: /tmp/ssh_agent.sock
|
||||
run: |
|
||||
ssh-agent -a $SSH_AUTH_SOCK > /dev/null
|
||||
SSH_PASSWORD="$(sectool vault get SSH_PASSWORD)"
|
||||
@@ -65,6 +66,7 @@ jobs:
|
||||
env:
|
||||
TRUSTED_HOSTS: ${{ secrets.TRUSTED_HOSTS }}
|
||||
ANSIBLE_USER: ${{ secrets.ANSIBLE_USER }}
|
||||
SSH_AUTH_SOCK: /tmp/ssh_agent.sock
|
||||
run: |
|
||||
for HOST in $TRUSTED_HOSTS; do
|
||||
ssh -vvvv $ANSIBLE_USER@$HOST echo "SSH connection to $HOST successful"
|
||||
@@ -74,6 +76,7 @@ jobs:
|
||||
env:
|
||||
VAULT_MASTER_PASSWORD: ${{ secrets.VAULT_MASTER_PASSWORD }}
|
||||
ANSIBLE_USER: ${{ secrets.ANSIBLE_USER }}
|
||||
SSH_AUTH_SOCK: /tmp/ssh_agent.sock
|
||||
run: |
|
||||
cd ansible
|
||||
sectool exec ansible-playbook -u $ANSIBLE_USER -i inventory/hosts playbook_microk8s.yml
|
||||
|
||||
Reference in New Issue
Block a user