Comments (4)
@cmoulliard I propose we close this since we now have support for importing keys for GitHub.
from k8s-infra.
I don't think this should be done for the following reasons:
For the case where we are creating VM for local development, the new_iso.sh
script already grabs the host's keys (see https://github.com/snowdrop/cloud-native-infra/blob/9c358170b1c8157fa77f3172f0d16ef99a2f56da/virtualbox/build-centos-iso/cloud-init/new-iso.sh#L59) and imports them into the VM allowing the user to then perform password-less login into the VM without having to execute any additional command.
For the case where we want to install Openshift onto a cloud machine using our scripts, it would not be good to have a publicly accessible set of public/private keys, because then anyone could access the machine as a root user.
from k8s-infra.
Feel free to look at https://github.com/eupraxialabs/tools and see if the ssh-import-id feature is something that can be worked into some of your use cases. See the section: "Special Tool in the Bag" The public image is at https://hub.docker.com/r/eupraxialabs/tools/
Clearly, you would want to parameterize the public key username in Ansible..
If we can be of any assistance, please let me know.
Other references: https://github.com/dustinkirkland/ssh-import-id
from k8s-infra.
@davidjbrewer Thanks, I'll take a look when I have some time :)
from k8s-infra.
Related Issues (20)
- Wrong command logged to delete a VM from inventory HOT 3
- Some parameters should become optional when we create a new VM on RHOS HOT 3
- Failed to connect to the host via ssh: no such identity: /Users/cmoullia/.ssh/id_rsa_snowdrop_openstack: No such file or directory HOT 3
- Remove information from the hosts file HOT 1
- Should we move the cloud_infra Ansible collection to it's own repository HOT 5
- kind.sh - invalid portMapping: port mapping with same listen address, port and protocol already configured: 0.0.0.0:0/TCP
- Support to patch/provide another kind config HOT 2
- Improper commands showed !
- Rename the RHOS test-adm-key
- Replace the Calico Operator based installation with the kubernetes manifests HOT 1
- Add support for floating_ip in the Ansible Inventory
- Check if community.hrobot ansible collection is required
- OCP installation
- ERROR! the role 'passstore/ansible_inventory' was not found HOT 3
- Support the parameter clusterOSImage for ocp openstack installation
- VM with Fedora-38-latest doesn't allow ssh
- Improve docs for OCP installation
- $HOME/.pyvirt/bin/python3.11: No such file or directory ... The following modules failed to execute: ansible.legacy.setup HOT 4
- Find a way to grab the new certificate generated by Lets'encrypt to update our cluster (or a cluster)
- Remove sudo when kind script to create a kind cluster runs on macos
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from k8s-infra.