mirror of
https://github.com/ansible-collections/ansible.posix.git
synced 2026-01-10 14:45:28 +01:00
250 lines
7.2 KiB
YAML
250 lines
7.2 KiB
YAML
---
|
|
# -------------------------------------------------------------
|
|
# basic ssh-dss key
|
|
|
|
- name: Add basic ssh-dss key
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_basic }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_basic
|
|
- result.key_options == None
|
|
|
|
- name: Re-add basic ssh-dss key
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_basic }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that nothing changed
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == False
|
|
|
|
# -------------------------------------------------------------
|
|
# ssh-dss key with an unquoted option
|
|
|
|
- name: Add ssh-dss key with an unquoted option
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_unquoted_option }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_unquoted_option
|
|
- result.key_options == None
|
|
|
|
- name: Re-add ssh-dss key with an unquoted option
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_unquoted_option }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that nothing changed
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == False
|
|
|
|
# -------------------------------------------------------------
|
|
# ssh-dss key with a leading command="/bin/foo"
|
|
|
|
- name: Add ssh-dss key with a leading command
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_command }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_command
|
|
- result.key_options == None
|
|
|
|
- name: Re-add ssh-dss key with a leading command
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_command }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that nothing changed
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == False
|
|
|
|
# -------------------------------------------------------------
|
|
# ssh-dss key with a complex quoted leading command
|
|
# ie. command="/bin/echo foo 'bar baz'"
|
|
|
|
- name: Add ssh-dss key with a complex quoted leading command
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_complex_command }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_complex_command
|
|
- result.key_options == None
|
|
|
|
- name: Re-add ssh-dss key with a complex quoted leading command
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_complex_command }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that nothing changed
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == False
|
|
|
|
# -------------------------------------------------------------
|
|
# ssh-dss key with a command and a single option, which are
|
|
# in a comma-separated list
|
|
|
|
- name: Add ssh-dss key with a command and a single option
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_command_single_option }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_command_single_option
|
|
- result.key_options == None
|
|
|
|
- name: Re-add ssh-dss key with a command and a single option
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_command_single_option }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that nothing changed
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == False
|
|
|
|
# -------------------------------------------------------------
|
|
# ssh-dss key with a command and multiple other options
|
|
|
|
- name: Add ssh-dss key with a command and multiple options
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_command_multiple_options }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_command_multiple_options
|
|
- result.key_options == None
|
|
|
|
- name: Re-add ssh-dss key with a command and multiple options
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_command_multiple_options }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that nothing changed
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == False
|
|
|
|
# -------------------------------------------------------------
|
|
# ssh-dss key with multiple trailing parts, which are space-
|
|
# separated and not quoted in any way
|
|
|
|
- name: Add ssh-dss key with trailing parts
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_trailing }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_trailing
|
|
- result.key_options == None
|
|
|
|
- name: Re-add ssh-dss key with trailing parts
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_trailing }}"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that nothing changed
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == False
|
|
|
|
# -------------------------------------------------------------
|
|
# basic ssh-dss key with mutliple permit-open options
|
|
# https://github.com/ansible/ansible-modules-core/issues/1715
|
|
|
|
- name: Add basic ssh-dss key with multi-opts
|
|
ansible.posix.authorized_key:
|
|
user: root
|
|
key: "{{ dss_key_basic }}"
|
|
key_options: no-agent-forwarding,no-X11-forwarding,permitopen="10.9.8.1:8080",permitopen="10.9.8.1:9001"
|
|
state: present
|
|
path: "{{ output_dir | expanduser }}/authorized_keys"
|
|
register: result
|
|
|
|
- name: Assert that the key with multi-opts was added
|
|
ansible.builtin.assert:
|
|
that:
|
|
- result.changed == True
|
|
- result.key == dss_key_basic
|
|
- result.key_options == "no-agent-forwarding,no-X11-forwarding,permitopen=\"10.9.8.1:8080\",permitopen=\"10.9.8.1:9001\""
|
|
|
|
- name: Get the file content
|
|
ansible.builtin.command: fgrep DATA_BASIC "{{ output_dir | expanduser }}/authorized_keys"
|
|
changed_when: false
|
|
register: content
|
|
|
|
- name: Validate content
|
|
ansible.builtin.assert:
|
|
that:
|
|
- content.stdout == "no-agent-forwarding,no-X11-forwarding,permitopen=\"10.9.8.1:8080\",permitopen=\"10.9.8.1:9001\" ssh-dss DATA_BASIC root@testing"
|