wallenstein/algo
1
0
Fork 0
mirror of https://github.com/trailofbits/algo.git synced 2025-06-06 15:13:56 +02:00
Code Issues Projects Releases Wiki Activity

Ensure that ssh keys and configs are exist Fixes #250 (#254)

Browse source
This commit is contained in:
Jack Ivanov 2017-02-28 20:05:22 +03:00 committed by GitHub
parent 9d3a65b555
commit 1cca3b1093
4 changed files with 56 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
algo
View file

@ -308,6 +308,13 @@ Enter the public IP address of your server: (IMPORTANT! This IP is used to verif
ROLES="local vpn" ROLES="local vpn"
EXTRA_VARS="server_ip=$server_ip server_user=$server_user IP_subject_alt_name=$IP_subject" EXTRA_VARS="server_ip=$server_ip server_user=$server_user IP_subject_alt_name=$IP_subject"
SKIP_TAGS+=" cloud update-alternatives" SKIP_TAGS+=" cloud update-alternatives"
read -p "
Was this server deployed by Algo previously?
[y/N]: " -r Deployed_By_Algo
Deployed_By_Algo=${Deployed_By_Algo:-n}
if [[ "$Deployed_By_Algo" =~ ^(y|Y)$ ]]; then EXTRA_VARS+=" Deployed_By_Algo=Y"; fi
} }
algo_provisioning () { algo_provisioning () {

26
deploy.yml
View file

@ -9,6 +9,12 @@
include: playbooks/local.yml include: playbooks/local.yml
tags: [ 'always' ] tags: [ 'always' ]
- name: Local pre-tasks
include: playbooks/local_ssh.yml
become: false
when: Deployed_By_Algo is defined and Deployed_By_Algo == "Y"
tags: [ 'local' ]
roles: roles:
- { role: cloud-digitalocean, tags: ['digitalocean'] } - { role: cloud-digitalocean, tags: ['digitalocean'] }
- { role: cloud-ec2, tags: ['ec2'] } - { role: cloud-ec2, tags: ['ec2'] }
@ -17,24 +23,10 @@
- { role: local, tags: ['local'] } - { role: local, tags: ['local'] }
post_tasks: post_tasks:
- name: Wait until SSH becomes ready... - name: Local pre-tasks
local_action: include: playbooks/post.yml
module: wait_for
port: 22
host: "{{ cloud_instance_ip }}"
search_regex: "OpenSSH"
delay: 10
timeout: 320
state: present
become: false become: false
tags: tags: [ 'cloud' ]
- cloud
- name: A short pause, in order to be sure the instance is ready
pause:
seconds: 10
tags:
- cloud
- name: Configure the server and install required software - name: Configure the server and install required software
hosts: vpn-host hosts: vpn-host

23
playbooks/local_ssh.yml Normal file
View file

@ -0,0 +1,23 @@
---
- name: Ensure the local ssh directory is exist
local_action:
module: file
path: "~/.ssh/"
state: directory
- name: Copy the algo ssh key to the local ssh directory
local_action:
module: copy
src: configs/algo.pem
dest: ~/.ssh/algo.pem
mode: '0600'
- name: Configure the local ssh config
blockinfile:
dest: "~/.ssh/config"
marker: "# {mark} ALGO MANAGED BLOCK {{ cloud_instance_ip|default(server_ip) }}"
insertbefore: BOF
block: |
Host {{ cloud_instance_ip|default(server_ip) }}
IdentityFile ~/.ssh/algo.pem

17
playbooks/post.yml Normal file
View file

@ -0,0 +1,17 @@
---
- name: Wait until SSH becomes ready...
local_action:
module: wait_for
port: 22
host: "{{ cloud_instance_ip }}"
search_regex: "OpenSSH"
delay: 10
timeout: 320
state: present
- name: A short pause, in order to be sure the instance is ready
pause:
seconds: 10
- include: local_ssh.yml