Generate per-site SSL intermediate CA, fix cred/pki paths Change-Id: I0bda0791d82142acac8c6af0e152d8d0954ef719

commit: 44845c69e17400b051fd2a7cb41de0a4bdb050b6 [log] [tgz]
author: Zack Williams <zdw@cs.arizona.edu> Fri Apr 21 13:57:14 2017 -0700
committer: Zack Williams <zdw@cs.arizona.edu> Thu May 18 14:58:09 2017 -0700
tree: cc2fd12ab7738f56180c07b7d2d9a71f0db63fa3
parent: 4ef48392ffd9350ca407f047b63015d50401d351 [diff] [blame]
diff --git a/roles/create-lxd/tasks/main.yml b/roles/create-lxd/tasks/main.yml
index fd3ace2..1b1dd7a 100644
--- a/roles/create-lxd/tasks/main.yml
+++ b/roles/create-lxd/tasks/main.yml

@@ -24,9 +24,10 @@
     default_release: trusty-backports
 
 # For lxd_profile, has to be run as normal user
-- name: Get user's SSH public key into lxd_ssh_pubkey to create LXD profile
-  set_fact:
-    lxd_ssh_pubkey: "{{ lookup('file', '{{ ansible_user_dir }}/.ssh/id_rsa.pub') }}"
+- name: slurp user's SSH public key on remote machine to create LXD profile
+  slurp:
+    src: "{{ ansible_user_dir }}/.ssh/id_rsa.pub"
+  register: slurped_pubkey
 
 - name: Create openstack LXD profile
   become: yes
@@ -37,7 +38,7 @@
       user.user-data: |
         #cloud-config
         ssh_authorized_keys:
-          - "{{ lxd_ssh_pubkey }}"
+          - "{{ slurped_pubkey['content'] | b64decode }}"
     description: 'OpenStack services on CORD'
     devices:
       eth0:
commit	44845c69e17400b051fd2a7cb41de0a4bdb050b6	[log] [tgz]
author	Zack Williams <zdw@cs.arizona.edu>	Fri Apr 21 13:57:14 2017 -0700
committer	Zack Williams <zdw@cs.arizona.edu>	Thu May 18 14:58:09 2017 -0700
tree	cc2fd12ab7738f56180c07b7d2d9a71f0db63fa3
parent	4ef48392ffd9350ca407f047b63015d50401d351 [diff] [blame]