From 02e101d804a46b69914a97559108ccb408b1de21 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ren=C3=A9=20Moser?= Date: Tue, 15 Oct 2024 18:55:15 +0200 Subject: [PATCH] use keyring and signed-by --- tasks/main.yml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/tasks/main.yml b/tasks/main.yml index 289ce74..d169221 100644 --- a/tasks/main.yml +++ b/tasks/main.yml @@ -13,9 +13,10 @@ - name: Import GPG key to apt ansible.builtin.get_url: url: "{{ tailscale__apt_key_url }}" - dest: /etc/apt/trusted.gpg.d/tailscale.gpg + dest: /etc/apt/keyrings/tailscale.gpg mode: "0644" owner: root + group: root register: result until: result is succeeded retries: 5 @@ -23,7 +24,7 @@ - name: Add repository ansible.builtin.apt_repository: - repo: deb {{ tailscale__apt_repository_url }} {{ ansible_distribution_release }} main + repo: deb [signed-by=/etc/apt/keyrings/tailscale.gpg] {{ tailscale__apt_repository_url }} {{ ansible_distribution_release }} main - name: Install from repository ansible.builtin.apt: