OpenPunk/openpunk-ansible
1
0
Fork 0
mirror of https://github.com/CPunch/openpunk-ansible.git synced 2024-11-25 08:20:15 +00:00
Code Issues Packages Projects Releases Wiki Activity

minor refactoring

Browse Source
This commit is contained in:
CPunch 2022-08-02 13:49:02 -05:00
parent efe494f255
commit 2f83076df6
3 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
run.yml
View File

@ -12,7 +12,7 @@
tasks: tasks:
- import_tasks: tasks/essential.yml - import_tasks: tasks/essential.yml
- import_tasks: tasks/firewall.yml - import_tasks: tasks/firewall.yml
- import_tasks: tasks/blog-setup.yml - import_tasks: tasks/blog.yml
- import_tasks: tasks/gitea.yml - import_tasks: tasks/gitea.yml
- import_tasks: tasks/tor.yml - import_tasks: tasks/tor.yml
- import_tasks: tasks/nginx.yml - import_tasks: tasks/nginx.yml

0
tasks/blog-setup.yml → tasks/blog.yml
View File

6
tasks/git.yml
View File

@ -6,6 +6,9 @@
owner: root owner: root
mode: u=rw,g=,o= mode: u=rw,g=,o=
# make sure our vps trusts the github.com key signature. we pipe the output
# of ssh-keyscan into .ssh/known_hosts
- name: Scan for SSH host keys - name: Scan for SSH host keys
command: ssh-keyscan github.com 2>/dev/null command: ssh-keyscan github.com 2>/dev/null
register: ssh_scan register: ssh_scan
@ -18,6 +21,9 @@
mode: u=rw,g=,o= mode: u=rw,g=,o=
force: no # if we already have a known_hosts file, ignore! force: no # if we already have a known_hosts file, ignore!
# this keypair is trusted under my github account, so it allows my vps to make pushes
# to the main branch of my openpunk repository. (for my deadswitch: see static/blog/imdead.sh)
- name: Install ssh priv key - name: Install ssh priv key
copy: copy:
src: secrets/id_ed25519 src: secrets/id_ed25519