playbook: Fixup support to debian 9 with a workarround

Unfortunally exising keys from open build service uses 1028-bit keys and debian 9 seems not reconize is as security enough, so on debian 9, we allow insecure repositories to allow re6st-node package be installed. This change can be re-worked in order to make the repository valid again.

playbook: Fixup support to debian 9 with a workarround
Unfortunally exising keys from open build service uses 1028-bit keys and debian 9 seems not reconize is as security enough, so on debian 9, we allow insecure repositories to allow re6st-node package be installed. This change can be re-worked in order to make the repository valid again.
1a7f17c1 · Rafael Monnerat · df838122 · 1a7f17c1 · 1a7f17c1 · 1a7f17c1
Commit 1a7f17c1 authored Aug 16, 2017 by Rafael Monnerat
3 changed files
--- a/playbook/roles/repository/files/99slapos
+++ b/playbook/roles/repository/files/99slapos
+# This file was included by ansible and it can be overwriten
+APT::Get::AllowUnauthenticated "true";
+APT::Get::AllowWeakRepositories "true";
+APT::Get::AllowInsecureRepositories "true";
--- a/playbook/roles/repository/tasks/debian9_aptconf.yml
+++ b/playbook/roles/repository/tasks/debian9_aptconf.yml
+
+  - copy: dest=/etc/apt/apt.conf.d/99slapos src=99slapos
+    when: ansible_distribution == "Debian" and ansible_distribution_major_version == "9"
+ 
+  - name: Update repos for debian 9
+    shell: apt update --allow-insecure-repositories
+    when: ansible_distribution == "Debian" and ansible_distribution_major_version == "9"
+
+
--- a/playbook/roles/repository/tasks/main.yml
+++ b/playbook/roles/repository/tasks/main.yml
@@ -14,9 +14,10 @@
  - file: path=/etc/apt/sources.list.d/re6stnet.list state=absent
    when: ansible_distribution == "Debian"

+
  - name: Install Debian 9 repository key
    apt_key: url={{ base_open_build_url }}/Debian_9.0/Release.key state=present
-    when: ansible_distribution == "Debian" and ansible_distribution_major_version == "8"
+    when: ansible_distribution == "Debian" and ansible_distribution_major_version == "9"

  - name: Install Debian 8 repository key
    apt_key: url={{ base_open_build_url }}/Debian_8.0/Release.key state=present
@@ -31,8 +32,8 @@
    when: ansible_distribution == "Debian" and ansible_distribution_major_version == "6"

  - name: Install Debian 9 repository
-    apt_repository: repo='deb {{ base_open_build_url }}/Debian_9.0/ ./' state=present
-    when: ansible_distribution == "Debian" and ansible_distribution_major_version == "8"
+    apt_repository: repo='deb {{ base_open_build_url }}/Debian_9.0/ ./' state=present update_cache=no
+    when: ansible_distribution == "Debian" and ansible_distribution_major_version == "9"

  - name: Install Debian 8 repository
    apt_repository: repo='deb {{ base_open_build_url }}/Debian_8.0/ ./' state=present
@@ -93,3 +94,5 @@
  - name: Install CentOS 6 RPM Key
    rpm_key: state=present key=http://download.opensuse.org/repositories/home:/VIFIBnexedi/CentOS_CentOS-6/repodata/repomd.xml.key
    when: ansible_distribution == "CentOS" and ansible_distribution_major_version == "6"
+
+  - include: debian9_aptconf.yml