main.yml --- - hosts: k8s become: true roles: - rancherpocreplay
On Wed, Jul 20, 2022 at 4:35 PM David Logan <[email protected]> wrote: > I didn't see the main.yml file and can't comment on your setup. Yes, root > should have access however I'm not sure become would carry over all tasks. > I thought it was task specific unless you set it in your group vars > > https://docs.ansible.com/ansible/latest/user_guide/become.html > > On Thu, 21 Jul 2022 at 07:54, Tony Wong <[email protected]> wrote: > >> But I used become: in my main.yml >> >> Would that have root access? >> >> On Wed, Jul 20, 2022 at 3:13 PM David Logan <[email protected]> wrote: >> >>> Usually the .ssh/authorized_key file has fairly specific permissions (rw >>> user only) as does the .ssh directory. It may well be the ansible user >>> cannot see the files in the .ssh directory as it may not have the correct >>> permissions. >>> >>> On Thu, 21 Jul 2022 at 07:37, Tony Wong <[email protected]> wrote: >>> >>>> now different error >>>> >>>> TASK [rancherpocreplay : Setup authkeys for user rke] >>>> ****************************************************** >>>> [WARNING]: Unable to find '/home/rke/.ssh/id_rsa.pub' in expected paths >>>> (use -vvvvv to see paths) >>>> fatal: [k8master]: FAILED! => {"msg": "An unhandled exception occurred >>>> while running the lookup plugin 'file'. Error was a <class >>>> 'ansible.errors.AnsibleError'>, original message: could not locate file in >>>> lookup: /home/rke/.ssh/id_rsa.pub"} >>>> [WARNING]: Unable to find '/home/rke/.ssh/id_rsa.pub' in expected paths >>>> (use -vvvvv to see paths) >>>> fatal: [k8node01]: FAILED! => {"msg": "An unhandled exception occurred >>>> while running the lookup plugin 'file'. Error was a <class >>>> 'ansible.errors.AnsibleError'>, original message: could not locate file in >>>> lookup: /home/rke/.ssh/id_rsa.pub"} >>>> [WARNING]: Unable to find '/home/rke/.ssh/id_rsa.pub' in expected paths >>>> (use -vvvvv to see paths) >>>> fatal: [k8node02]: FAILED! => {"msg": "An unhandled exception occurred >>>> while running the lookup plugin 'file'. Error was a <class >>>> 'ansible.errors.AnsibleError'>, original message: could not locate file in >>>> lookup: /home/rke/.ssh/id_rsa.pub"} >>>> >>>> but /home/rke/.ssh/id_rsa.pub is there on the ansible host >>>> >>>> On Wed, Jul 20, 2022 at 2:50 PM Todd Lewis <[email protected]> wrote: >>>> >>>>> Mustaches never nest. >>>>> >>>>> key: "{{ lookup('file', '/home/' ~ username ~ '/.ssh/id_rsa.pub') }}" >>>>> >>>>> On Wednesday, July 20, 2022 at 5:37:15 PM UTC-4 [email protected] >>>>> wrote: >>>>> >>>>>> tried this way and got same error >>>>>> >>>>>> - name: Setup authkeys for user rke >>>>>> authorized_key: >>>>>> user: '{{ username }}' >>>>>> state: present >>>>>> key: "{{ lookup(‘file’, '/home/{{ username }}/.ssh/id_rsa.pub') >>>>>> }}" >>>>>> >>>>>> >>>>>> >>>>>> On Wed, Jul 20, 2022 at 2:12 PM Tony Wong <[email protected]> wrote: >>>>>> >>>>>>> can i use jinja like this? >>>>>>> >>>>>>> - name: Setup authkeys for user rke >>>>>>> authorized_key: >>>>>>> user: rke >>>>>>> state: present >>>>>>> key: “{{ lookup(‘file’, ‘{{ authorized_key }}’) }}” >>>>>>> >>>>>>> >>>>>>> >>>>>>> keep getting error >>>>>>> >>>>>>> >>>>>>> Setup authkeys for user rke] >>>>>>> ******************************************* >>>>>>> fatal: [k8master]: FAILED! => {"msg": "template error while >>>>>>> templating string: unexpected char '‘' at 11. String: “{{ lookup(‘file’, >>>>>>> ‘{{ authorized_key }}’) }}”"} >>>>>>> fatal: [k8node02]: FAILED! => {"msg": "template error while >>>>>>> templating string: unexpected char '‘' at 11. String: “{{ lookup(‘file’, >>>>>>> ‘{{ authorized_key }}’) }}”"} >>>>>>> fatal: [k8node01]: FAILED! => {"msg": "template error while >>>>>>> templating string: unexpected char '‘' at 11. String: “{{ lookup(‘file’, >>>>>>> ‘{{ authorized_key }}’) }}”"} >>>>>>> >>>>>>> >>>>>>> >>>>>>> On Wed, Jul 20, 2022 at 10:31 AM boncalo mihai <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>>> Just did that, you use authorized_key module >>>>>>>> >>>>>>>> On Wed, Jul 20, 2022 at 4:24 PM Tony Wong <[email protected]> >>>>>>>> wrote: >>>>>>>> >>>>>>>>> how do I lookup id_rsa.pub on a host and then run ansible playbook >>>>>>>>> to copy it to their authorized_key file? >>>>>>>>> >>>>>>>>> >>>>>>>>> -- >>>>>>>>> You received this message because you are subscribed to the Google >>>>>>>>> Groups "Ansible Project" group. >>>>>>>>> To unsubscribe from this group and stop receiving emails from it, >>>>>>>>> send an email to [email protected]. >>>>>>>>> To view this discussion on the web visit >>>>>>>>> https://groups.google.com/d/msgid/ansible-project/2994746b-812f-4038-ad58-27d5b0c47been%40googlegroups.com >>>>>>>>> <https://groups.google.com/d/msgid/ansible-project/2994746b-812f-4038-ad58-27d5b0c47been%40googlegroups.com?utm_medium=email&utm_source=footer> >>>>>>>>> . >>>>>>>>> >>>>>>>> -- >>>>>>>> You received this message because you are subscribed to a topic in >>>>>>>> the Google Groups "Ansible Project" group. >>>>>>>> To unsubscribe from this topic, visit >>>>>>>> https://groups.google.com/d/topic/ansible-project/gkaigHAiAC0/unsubscribe >>>>>>>> . >>>>>>>> To unsubscribe from this group and all its topics, send an email to >>>>>>>> [email protected]. >>>>>>>> To view this discussion on the web visit >>>>>>>> https://groups.google.com/d/msgid/ansible-project/CAOK917Sv42GhE_GR3yo5vxSrYjB9bs-8bHsn9%2BA-4O5tcLNaDA%40mail.gmail.com >>>>>>>> <https://groups.google.com/d/msgid/ansible-project/CAOK917Sv42GhE_GR3yo5vxSrYjB9bs-8bHsn9%2BA-4O5tcLNaDA%40mail.gmail.com?utm_medium=email&utm_source=footer> >>>>>>>> . >>>>>>>> >>>>>>> -- >>>>> You received this message because you are subscribed to a topic in the >>>>> Google Groups "Ansible Project" group. >>>>> To unsubscribe from this topic, visit >>>>> https://groups.google.com/d/topic/ansible-project/gkaigHAiAC0/unsubscribe >>>>> . >>>>> To unsubscribe from this group and all its topics, send an email to >>>>> [email protected]. >>>>> To view this discussion on the web visit >>>>> https://groups.google.com/d/msgid/ansible-project/ae4c2b44-f45e-4be7-b196-1c6b17903aaen%40googlegroups.com >>>>> <https://groups.google.com/d/msgid/ansible-project/ae4c2b44-f45e-4be7-b196-1c6b17903aaen%40googlegroups.com?utm_medium=email&utm_source=footer> >>>>> . >>>>> >>>> -- >>>> You received this message because you are subscribed to the Google >>>> Groups "Ansible Project" group. >>>> >>> To unsubscribe from this group and stop receiving emails from it, send >>>> an email to [email protected]. >>>> To view this discussion on the web visit >>>> https://groups.google.com/d/msgid/ansible-project/CALmkhkrzxV3F7%2BRdu7Z8OTe2R6VqmNqUQyC6yUi3ULH8BDweSg%40mail.gmail.com >>>> <https://groups.google.com/d/msgid/ansible-project/CALmkhkrzxV3F7%2BRdu7Z8OTe2R6VqmNqUQyC6yUi3ULH8BDweSg%40mail.gmail.com?utm_medium=email&utm_source=footer> >>>> . >>>> >>> >>> >>> -- >>> if in trouble, or in doubt >>> run in circles, scream and shout >>> >>> -- >>> You received this message because you are subscribed to a topic in the >>> Google Groups "Ansible Project" group. >>> To unsubscribe from this topic, visit >>> https://groups.google.com/d/topic/ansible-project/gkaigHAiAC0/unsubscribe >>> . >>> To unsubscribe from this group and all its topics, send an email to >>> [email protected]. >>> To view this discussion on the web visit >>> https://groups.google.com/d/msgid/ansible-project/CA%2B8iFp7EjSBF3dNEPC%2BYCx0C0o_GkyFOPxrVveZK7uezuPpMyA%40mail.gmail.com >>> <https://groups.google.com/d/msgid/ansible-project/CA%2B8iFp7EjSBF3dNEPC%2BYCx0C0o_GkyFOPxrVveZK7uezuPpMyA%40mail.gmail.com?utm_medium=email&utm_source=footer> >>> . >>> >> -- >> You received this message because you are subscribed to the Google Groups >> "Ansible Project" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to [email protected]. >> To view this discussion on the web visit >> https://groups.google.com/d/msgid/ansible-project/CALmkhkrbWMCpEkJChtohbr5nP4cd-s6pLQAmHYzfdKZrroc7Wg%40mail.gmail.com >> <https://groups.google.com/d/msgid/ansible-project/CALmkhkrbWMCpEkJChtohbr5nP4cd-s6pLQAmHYzfdKZrroc7Wg%40mail.gmail.com?utm_medium=email&utm_source=footer> >> . >> > > > -- > if in trouble, or in doubt > run in circles, scream and shout > > -- > You received this message because you are subscribed to a topic in the > Google Groups "Ansible Project" group. > To unsubscribe from this topic, visit > https://groups.google.com/d/topic/ansible-project/gkaigHAiAC0/unsubscribe. > To unsubscribe from this group and all its topics, send an email to > [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/ansible-project/CA%2B8iFp75JU_OtN-e2xnHu0cez6_hZ5XxrNA1baSgEa6hwtoxqQ%40mail.gmail.com > <https://groups.google.com/d/msgid/ansible-project/CA%2B8iFp75JU_OtN-e2xnHu0cez6_hZ5XxrNA1baSgEa6hwtoxqQ%40mail.gmail.com?utm_medium=email&utm_source=footer> > . > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CALmkhkpAGQ6FqOzHaLO%2BOcUnq8hMGubYG%2Bgz3oGkPF%2BFts1Geg%40mail.gmail.com.
