monakhos/ansible/roles/ssh/tasks/main.yaml

- name: Setup ssh dir
  file:
    path: "{{ home }}/.ssh"
    state: directory
    recurse: true
    owner: "{{ user }}"

- name: Copy pre-generated ssh keys
  when: "not target_is_real"
  block:
    - copy:
        src: ./vm_files/remote_key
        dest: "{{ home }}/.ssh/{{ device_name }}_generic_ed25519"
        mode: u=rw,g=,o=
    - copy:
        src: ./vm_files/remote_key.pub
        dest: "{{ home }}/.ssh/{{ device_name }}_generic_ed25519.pub"
        mode: u=rw,g=,o=

- name: Config git
  template:
    src: ssh_config
    dest: "{{ home }}/.ssh/config"
    owner: "{{ user }}"
    mode: u=rw,g=,o=

- delegate_to: localhost
  ansible.builtin.tempfile:
    state: directory
    suffix: ssh_known_hosts
  register: tempdir_known_hosts

- name: Load known hosts from profiles
  delegate_to: localhost
  template:
    # load from controller host, from the work profile repository
    src: "{{ profiles_paths[item.name] }}/configs/ssh/known_hosts"
    dest: "{{ tempdir_known_hosts.path }}/{{ item.name }}"
  with_items: "{{ enabled_profiles }}"

# - name: Execute a command
#   ansible.builtin.command: "sleep infinity"

- name: Concat known hosts
  template:
    src: ssh/known_hosts
    dest: "{{ home }}/.ssh/known_hosts"
  vars:
    origin_dir: "{{ tempdir_known_hosts.path }}"

- name: Ensure ssh config profiles dir exists
  file:
    path: "{{ home }}/.ssh/profiles"
    state: directory

- name: Load ssh config of profiles
  template:
    src: "{{ profiles_paths[item.name] }}/configs/ssh/config"
    dest: "{{ home }}/.ssh/profiles/{{ item.name }}"
    mode: u=rw,g=,o=
  with_items: "{{ enabled_profiles }}"
fix: organization customize 2024-07-10 11:06:57 +02:00			`- name: Setup ssh dir`
			`file:`
			`path: "{{ home }}/.ssh"`
			`state: directory`
			`recurse: true`
			`owner: "{{ user }}"`

			`- name: Copy pre-generated ssh keys`
			`when: "not target_is_real"`
			`block:`
			`- copy:`
refactor(packages): directly pipe python script into ansible 2024-07-11 12:05:59 +02:00			`src: ./vm_files/remote_key`
			`dest: "{{ home }}/.ssh/{{ device_name }}_generic_ed25519"`
			`mode: u=rw,g=,o=`
fix: organization customize 2024-07-10 11:06:57 +02:00			`- copy:`
refactor(packages): directly pipe python script into ansible 2024-07-11 12:05:59 +02:00			`src: ./vm_files/remote_key.pub`
			`dest: "{{ home }}/.ssh/{{ device_name }}_generic_ed25519.pub"`
			`mode: u=rw,g=,o=`
fix: organization customize 2024-07-10 11:06:57 +02:00
			`- name: Config git`
			`template:`
			`src: ssh_config`
			`dest: "{{ home }}/.ssh/config"`
			`owner: "{{ user }}"`
			`mode: u=rw,g=,o=`

WIP 2025-09-22 14:20:35 +02:00			`- delegate_to: localhost`
feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`ansible.builtin.tempfile:`
			`state: directory`
			`suffix: ssh_known_hosts`
			`register: tempdir_known_hosts`

			`- name: Load known hosts from profiles`
WIP 2025-09-22 14:20:35 +02:00			`delegate_to: localhost`
feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`template:`
WIP 2025-09-22 14:20:35 +02:00			`# load from controller host, from the work profile repository`
			`src: "{{ profiles_paths[item.name] }}/configs/ssh/known_hosts"`
feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`dest: "{{ tempdir_known_hosts.path }}/{{ item.name }}"`
			`with_items: "{{ enabled_profiles }}"`

WIP 2025-09-22 14:20:35 +02:00			`# - name: Execute a command`
			`# ansible.builtin.command: "sleep infinity"`

feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`- name: Concat known hosts`
fix: organization customize 2024-07-10 11:06:57 +02:00			`template:`
feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`src: ssh/known_hosts`
fix: organization customize 2024-07-10 11:06:57 +02:00			`dest: "{{ home }}/.ssh/known_hosts"`
feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`vars:`
WIP 2025-09-22 14:20:35 +02:00			`origin_dir: "{{ tempdir_known_hosts.path }}"`
fix: organization customize 2024-07-10 11:06:57 +02:00
fix: ensure ssh profile dir is created 2024-08-01 11:29:39 +02:00			`- name: Ensure ssh config profiles dir exists`
			`file:`
			`path: "{{ home }}/.ssh/profiles"`
			`state: directory`

feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`- name: Load ssh config of profiles`
			`template:`
WIP 2025-09-22 14:20:35 +02:00			`src: "{{ profiles_paths[item.name] }}/configs/ssh/config"`
feat(ssh): known hosts from profile refactored to use enabled_profiles var 2024-07-16 20:37:20 +02:00			`dest: "{{ home }}/.ssh/profiles/{{ item.name }}"`
			`mode: u=rw,g=,o=`
			`with_items: "{{ enabled_profiles }}"`