Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(WIP) Add jenkins public key to hosts with Ansible #20

Open
wants to merge 4 commits into
base: master
Choose a base branch
from
Open

(WIP) Add jenkins public key to hosts with Ansible #20

wants to merge 4 commits into from

Conversation

deepshikhaaa
Copy link
Member

@deepshikhaaa deepshikhaaa commented Sep 6, 2017
edited

Added id_rsa.pub in files folder and task(jenkins_credential.yml) in task folder.
I have not included this task in main.yml yet.
@nigelbabu @mscherer Please review it so that I can add it in main.yml

nigelbabu
nigelbabu suggested changes Sep 7, 2017
View reviewed changes
Copy link

@nigelbabu nigelbabu left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@mscherer I created an SSH key on Jenkins server and gave Deepshikha the public key for it. This seemed to be the best way to go about it.

roles/jenkins_builder/files/id_rsa.pub Outdated
@@ -0,0 +1 @@
ssh-rsa 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 Shared Jenkins Key
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you call this file jenkins_key.pub?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You've got both files now. Can you git rm roles/jenkins_builder/files/id_rsa.pub

mscherer
mscherer requested changes Sep 7, 2017
View reviewed changes
roles/jenkins_builder/tasks/jenkins_credential.yml Outdated
---
- name: Placing ssh public key for Jenkins_int_rht
authorized_key:
user: root
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why root, shouldn't jenkins connect as the jenkins user ?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm guessing we need a become? Don't think we have the right keys to connect as root user directly

@mscherer
Copy link
Contributor

mscherer commented Sep 7, 2017

Creating a ssh key manually is the easiest, but I would prefer to have that part automated as well. But let's not ask for the moon yet :)

nigelbabu
nigelbabu reviewed Sep 8, 2017
View reviewed changes
roles/jenkins_builder/tasks/jenkins_credential.yml
---
- name: Placing ssh public key for Jenkins_int_rht
authorized_key:
user: jenkins
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@mscherer Wouldn't this fail because we don't have the ansible master key in the jenkins user?

Copy link
Contributor

@mscherer mscherer Sep 13, 2017
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No, it just edit a different file as root if we give a "user" parameters.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mscherer mscherer mscherer requested changes

@nigelbabu nigelbabu nigelbabu requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@deepshikhaaa @mscherer @nigelbabu