From f23d714f1943d812acfe6d651f334d1ddc375264 Mon Sep 17 00:00:00 2001
From: Lars Wirzenius <liw@liw.fi>
Date: Fri, 26 Aug 2022 08:43:33 +0300
Subject: python-mess: install SSH host key/cert

This is a test of the sshd role from debian-ansible.

Sponsored-by: author
---
 ansible/python-mess.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/ansible/python-mess.yml b/ansible/python-mess.yml
index 80d216b..d8b0c8f 100644
--- a/ansible/python-mess.yml
+++ b/ansible/python-mess.yml
@@ -4,6 +4,8 @@
   roles:
     - role: sane_debian_system
       tags: [sane]
+    - role: sshd
+      tags: [sshd]
     - role: comfortable-debian-system
       tags: [comfy]
     - role: unix_users
@@ -34,3 +36,8 @@
       - username: liw
         comment: Lars Wirzenius
         sudo: yes
+
+    sshd_version: 1
+    sshd_host_key: "{{ lookup('pipe', 'sshca host private-key python-mess') }}"
+    sshd_host_cert: "{{ lookup('pipe', 'sshca host certify liw.fi/ca/host/v4 python-mess') }}"
+    sshd_user_ca_pub: "{{ lookup('pipe', 'sshca ca public-key liw.fi/ca/user/v3') }}"
-- 
cgit v1.2.1