From 54fd61c887f266f8e2e6b1419a86fc6681116069 Mon Sep 17 00:00:00 2001 From: EuAndreh Date: Wed, 5 Jun 2019 16:38:53 -0300 Subject: Use Ansible instead of Bash for provisioning The deployment is not quite working, and I'm unable to test right now: DigitalOcean is returning 503 for my requests. As of this commit, I can run =ansible-playbook provider.yml= more than once and it will actually be idempotent. Notes: - SSH fingerprint are now taken from the public key file instead of manually supplying it in the terraform template using the =digitalocean_ssh_key= resource; - use Ansible instead of ad-hoc Bash scripts for provisioning the Droplets created by Terraform; - use the =filename.env.extension= to create the concrete files in CI; - use the =user_data= to add the know SSH key pair to the newly created Droplet; - add =rotate-ssh-keys.sh= utils; --- secrets/ssh/vps-box-server.pub | 1 + 1 file changed, 1 insertion(+) create mode 100644 secrets/ssh/vps-box-server.pub (limited to 'secrets/ssh/vps-box-server.pub') diff --git a/secrets/ssh/vps-box-server.pub b/secrets/ssh/vps-box-server.pub new file mode 100644 index 0000000..5a7605e --- /dev/null +++ b/secrets/ssh/vps-box-server.pub @@ -0,0 +1 @@ +ssh-rsa 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 andreh@velhinho-nixos -- cgit v1.2.3