znerol.wkd_gpg

Overview Versions Insights

Ansible Role: WKD

Provides tasks to export GPG keys into a Web Key Directory structure.

Requirements

Requires Python 3 on the ansible controller machine.

Required Role Variables

wkd_gpg_uids: List of GPG uids to export. Note that the playbook loops over this list using the loop_var set to wkd_gpg_uid.
wkd_basedir: Path to the base directory where keys are exported to. This is typically set to the webserver document root.

Optional Role Variables

wkd_method: Either direct or advanced (see section Key Discovery in draft standard). Defaults to advanced.
wkd_gpg_export_dest: Path where the GPG keys will be exported to. Defaults to a heavily templetad string, see defaults/main.yml.
wkd_gpg_export_params: A hash of additional parameters passed to znerol.gpg_export lookup plugin. Especially useful is homedir in order to set the gnupg home to a directory with a source controlled public keyring and no private keys.

Dependencies

Example Playbook

Usage of znerol.wkd_gpg role:

- hosts: localhost
  vars:
    wkd_gpg_uids:
      - "[email protected]"
      - "[email protected]"
      - "[email protected]"
      - "[email protected]"
      - "äëöüï@example.org"
      - "[email protected]"
    wkd_basedir: "/var/www"

  tasks:
    - name: Role znerol.wkd_gpg imported
      import_role:
        name: znerol.wkd_gpg

License

MIT

About

OpenPGP Web Key Directory generation

role gpg openpgp pgp wkd

Install

ansible-galaxy install znerol.wkd_gpg

GitHub repository

1 stars

0 forks

0 open issues

License

mit

Downloads

Owner

znerol