Skip to content

Commit 0178131

Browse files
epcimepcim
authored
Merge branch 'master' into feature/specify_gpgkey_on_pillar
2 parents 0105dcc + 9fbf40c commit 0178131

File tree

3 files changed

+15
-22
lines changed

3 files changed

+15
-22
lines changed

aptly/map.jinja

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -10,10 +10,10 @@
1010
'secure': True,
1111
'repo': {},
1212
'gpg': {
13-
'keypair_id': pillar.aptly.server.gpg_keypair_id|default(''),
14-
'passphrase': pillar.aptly.server.gpg_passphrase|default(''),
15-
'public_key': pillar.aptly.server.gpg_public_key|default(''),
16-
'private_key': pillar.aptly.server.gpg_private_key|default(''),
13+
'keypair_id': pillar.aptly.get('server', {}).gpg_keypair_id|default(''),
14+
'passphrase': pillar.aptly.get('server', {}).gpg_passphrase|default(''),
15+
'public_key': pillar.aptly.get('server', {}).gpg_public_key|default(''),
16+
'private_key': pillar.aptly.get('server', {}).gpg_private_key|default(''),
1717
'keyring': '.gnupg/trustedkeys.gpg',
1818
'homedir': '.gnupg',
1919
'keyserver': 'keys.gnupg.net',

aptly/server/init.sls

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -164,8 +164,8 @@ import_gpg_pub_key:
164164
- user: aptly
165165
- unless: gpg --no-tty{% if server.gpg.get('homedir', None) %} --homedir {{ server.gpg.homedir }}{% endif %} --list-keys | grep '{{ server.gpg.keypair_id }}'
166166
- require:
167-
- file: aptly_gpg_key_dir
168167
- file: gpg_pub_key
168+
- cmd: import_gpg_priv_key
169169
170170
import_gpg_priv_key:
171171
cmd.run:

aptly/server/mirrors.sls

Lines changed: 10 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -22,12 +22,6 @@ cron_path:
2222
- name: PATH
2323
- value: "/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin"
2424
25-
{# TODO: remove me after some time #}
26-
aptly_mirror_update_cron_absent_obsolete:
27-
cron.absent:
28-
- identifier: aptly_mirror_update
29-
- user: root
30-
3125
{%- else %}
3226
3327
aptly_mirror_update_cron:
@@ -39,12 +33,6 @@ aptly_mirror_update_cron:
3933
- user: root
4034
{%- endif %}
4135
42-
{# TODO: remove me after some time #}
43-
aptly_mirror_update_cron_obsolete:
44-
cron.absent:
45-
- identifier: aptly_mirror_update
46-
- user: root
47-
4836
{% endif %}
4937
5038
@@ -57,16 +45,21 @@ aptly_mirror_update_cron_obsolete:
5745
{%- for gpgkey in mirror.get('gpgkeys', []) %}
5846
gpg_add_keys_{{ mirror_name }}_{{ gpgkey }}:
5947
cmd.run:
60-
{%- if gpgkey|length > 1 %}
48+
{%- if gpgkey|length > 1 %}
6149
- name: echo "{{ gpgkey|indent(0, true)}}" | gpg --import {{ _gpg_attributes }}
62-
{%- else %}
50+
{%- else %}
6351
- name: gpg {{ _gpg_attributes }} --keyserver {{ mirror.keyserver|default(server.gpg.keyserver) }} --recv-keys {{ gpgkey }}
6452
- unless: gpg {{ _gpg_attributes }} --list-public-keys {{ gpgkey }}
65-
{%- endif %}
66-
{%- if server.source.engine != "docker" %}
53+
{%- endif %}
6754
- user: {{ server.user.name }}
6855
- cwd: {{ server.home_dir }}
69-
{%- endif %}
56+
{%- if server.secure %}
57+
- require:
58+
- cmd: import_gpg_priv_key
59+
- cmd: import_gpg_pub_key
60+
- require_in:
61+
- cmd: aptly_{{ mirror_name }}_mirror
62+
{%- endif %}
7063
7164
{%- endfor %}
7265

0 commit comments

Comments
 (0)