-
Leonidas Spyropoulos authored
Signed-off-by:Leonidas Spyropoulos <artafinde@archlinux.org>
Leonidas Spyropoulos authoredSigned-off-by:
Code owners
Assign users and groups as approvers for specific file changes. Learn more.
main.yml 9.93 KiB
- name: Install required packages
pacman:
state: present
name:
- asciidoc
- highlight
- make
- sudo
- uwsgi-plugin-cgi
- python-poetry
- gcc
- pkg-config
- name: Install the cgit package
pacman:
state: present
name:
- cgit-aurweb
register: cgit
- name: Install the git package
pacman:
state: present
name:
- git
register: git
- name: Make aur user
user: name="{{ aurweb_user }}" shell=/bin/bash createhome=yes
register: aur_user
- name: Create .ssh for the aur user
file: path={{ aur_user.home }}/.ssh state=directory owner={{ aur_user.name }} group={{ aur_user.name }} mode=0700
- name: Install SSH key for mirroring to GitHub
copy: src=id_ed25519.vault dest={{ aur_user.home }}/.ssh/id_ed25519 owner={{ aur_user.name }} group={{ aur_user.name }} mode=0600
- name: Fetch host keys for github.com
command: ssh-keyscan github.com
args:
creates: "{{ aur_user.home }}/.ssh/known_hosts"
register: github_host_keys
- name: Write github.com host keys to the aur user's known_hosts
lineinfile: name={{ aur_user.home }}/.ssh/known_hosts create=yes line={{ item }} owner={{ aur_user.name }} group={{ aur_user.name }} mode=0644
loop: "{{ github_host_keys.stdout_lines }}"
when: github_host_keys.changed
- name: Create directory
file: path={{ aurweb_dir }} state=directory owner={{ aurweb_user }} group=http mode=0775
- name: Receive valid signing keys
command: /usr/bin/gpg --keyserver keys.openpgp.org --recv {{ item }}
loop: '{{ aurweb_pgp_keys }}'
become: true
become_user: "{{ aurweb_user }}"
register: gpg
changed_when: "gpg.rc == 0"
- name: Aurweb git repo check
git: >
repo={{ aurweb_repository }}
dest="{{ aurweb_dir }}"
version={{ aurweb_version }}
verify_commit: true
gpg_whitelist: '{{ aurweb_pgp_keys }}'
become: true
become_user: "{{ aurweb_user }}"
register: release
check_mode: true