Reputation: 116
Ansible + SSH + private Git
I've tried almost everything, but still can't believe I can be so dumb.
I do have:
- git with private repo
- vps - trying to control with ansible
- control machine - mac os
I do have id_rsa & id_rsa.pub key on my mac
I can ssh to vps without the password from my mac
I can run ansible-playbook from my mac to control vps.
But I can't figure out how to 'git clone' my private repo from vps machine.
I ssh-copy-id from my mac to vps - it's there.
I can work with git from my mac - the same id_rsa key.
How to tell git to authorize/allow clone from vps without copying my private id_rsa from mac onto vps or generating side key just for github?
Did I miss something?
Upvotes: 2
Views: 1463
Answers (2)
Reputation: 954
Don't know if it may be related but there you go:
- name: Add host to ssh_config
community.general.ssh_config:
host: github.com
hostname: github.com
user: vagrant
identity_file: "/home/vagrant/.ssh/id_rsa"
Upvotes: 0
Reputation: 68479
You need to set up SSH agent forwarding.
In short:
enable agent forwarding on the VPS machine (SSHD config)
tell Ansible to connect with agent forwarding option enabled
for example in
ansible.cfg, section[ssh_connection], add-o ForwardAgent=yesvaluessh_args.or in
~/.ssh/config:Host <VPS_address> ForwardAgent yesensure SSH agent is running and has the keys configured:
eval `ssh-agent -s` ssh-add
Upvotes: 1
Related Questions
- Ansible SSH private key in source control?
- Ansible and git with SSH key forwarding - works, but with two problems to solve
- How do I use remote machine's SSH keys in ansible git module
- Ansible Playbook: Permission denied (publickey), could not read from remote repository
- Ansible with Github: Permission denied (Publickey)
- Ansible task - clone private git without SSH forwarding
- Ansible with Git module
- SSH into private host machine Ansible
- Ansible: "Permission denied (publickey)" when using git module
- How do you give a Newly Provisioned Server access to a Private Git Repo with Ansible?