changed_when: false
check_mode: no
- name: check existing secret key
+ tags: ["no_bootstrap"]
shell: "gpg --list-secret-keys | grep '{{ gpg_useremail }}'"
changed_when: false
ignore_errors: true
register: gpgkeys
check_mode: no
- name: Ask for gpg password
- when: gpgkeys.stdout == ""
+ when: gpgkeys is defined and gpgkeys.stdout == ""
block:
- name: Ask for gpg password
pause:
assert:
that: gpg_password_confirm.user_input == gpg_password.user_input
- name: Generate gpg key
- when: gpgkeys.stdout == ""
+ when: gpgkeys is defined and gpgkeys.stdout == ""
block:
- name: Copy default template for gpg key generation
template:
- name: get keygrip
shell: "gpg -K --with-colons {{ gpg_useremail }} | grep '^grp' | cut -d':' -f10"
register: keygrip
- when: gpgkeys.stdout == ""
+ when: gpgkeys is defined and gpgkeys.stdout == ""
notify:
- notify add key to immae@immae.eu
- send key to immae@immae.eu