From 4e9b4def3078408493bddf57176162cc9380ebfd Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Sat, 16 Mar 2024 21:32:54 +0100
Subject: companion: generate ssh keypair to be used with ssh plugin

---
 roles/streaming/companion/tasks/main.yml | 25 ++++++++++++++++++++++++-
 1 file changed, 24 insertions(+), 1 deletion(-)

(limited to 'roles/streaming/companion/tasks/main.yml')

diff --git a/roles/streaming/companion/tasks/main.yml b/roles/streaming/companion/tasks/main.yml
index b222dee2..ad085edb 100644
--- a/roles/streaming/companion/tasks/main.yml
+++ b/roles/streaming/companion/tasks/main.yml
@@ -1,13 +1,36 @@
 ---
 - name: prepare storage volume
   vars:
-    storage_volume: "{{ companion_storage | combine({'owner': 1000, 'group': 1000}) }}"
+    storage_volume: "{{ companion_storage }}"
   include_role:
     name: "storage/{{ companion_storage.type }}/volume"
 
 - set_fact:
     companion_basepath: "{{ storage_volume_mountpoint }}"
 
+- name: create data/secrets directories
+  loop:
+  - dir: data
+    mode: "0750"
+  - dir: secrets
+    mode: "0500"
+  loop_control:
+    label: "{{ item.dir }}"
+  file:
+    path: "{{ companion_basepath }}/{{ item.dir }}"
+    state: directory
+    mode: "{{ item.mode }}"
+    owner: 1000
+    group: 1000
+
+- name: generate ssh keypair for ssh plugin
+  openssh_keypair:
+    path: "{{ companion_basepath }}/secrets/id_ed25519"
+    type: ed25519
+    comment: "companion@{{ inventory_hostname }}"
+    owner: 1000
+    group: 1000
+
 - name: install udev rules
   template:
     src: udev.rules.j2
-- 
cgit v1.2.3