github_deploy_key - Manages deploy keys for GitHub repositories.
New in version 2.4.
Synopsis
- Adds or removes deploy keys for GitHub repositories. Supports authentication using username and password, username and password and 2-factor authentication code (OTP), OAuth2 token, or personal access token.
Requirements (on host that executes module)
- python-requests
Options
parameter | required | default | choices | comments |
---|---|---|---|---|
force | no |
| If true , forcefully adds the deploy key by deleting any existing deploy key with the same public key or title. | |
key | yes | The SSH public key to add to the repository as a deploy key. | ||
name | yes | The name for the deploy key. aliases: title, label | ||
otp | no | The 6 digit One Time Password for 2-Factor Authentication. Required together with username and password. | ||
owner | yes | The name of the individual account or organization that owns the GitHub repository. aliases: account, organization | ||
password | no | The password to authenticate with. A personal access token can be used here in place of a password. | ||
read_only | no | True |
| If true , the deploy key will only be able to read repository contents. Otherwise, the deploy key will be able to read and write. |
repo | yes | The name of the GitHub repository. aliases: repository | ||
state | no | present |
| The state of the deploy key. |
token | no | The OAuth2 token or personal access token to authenticate with. Mutually exclusive with password. | ||
username | no | The username to authenticate with. |
Examples
# add a new read-only deploy key to a GitHub repository using basic authentication - github_deploy_key: owner: "johndoe" repo: "example" name: "new-deploy-key" key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDAwXxn7kIMNWzcDfou..." read_only: yes username: "johndoe" password: "supersecretpassword" # remove an existing deploy key from a GitHub repository - github_deploy_key: owner: "johndoe" repository: "example" name: "new-deploy-key" key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDAwXxn7kIMNWzcDfou..." force: yes username: "johndoe" password: "supersecretpassword" state: absent # add a new deploy key to a GitHub repository, replace an existing key, use an OAuth2 token to authenticate - github_deploy_key: owner: "johndoe" repository: "example" name: "new-deploy-key" key: "{{ lookup('file', '~/.ssh/github.pub') }}" force: yes token: "ABAQDAwXxn7kIMNWzcDfo..." # re-add a deploy key to a GitHub repository but with a different name - github_deploy_key: owner: "johndoe" repository: "example" name: "replace-deploy-key" key: "{{ lookup('file', '~/.ssh/github.pub') }}" username: "johndoe" password: "supersecretpassword" # add a new deploy key to a GitHub repository using 2FA - github_deploy_key: owner: "johndoe" repo: "example" name: "new-deploy-key-2" key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDAwXxn7kIMNWzcDfou..." username: "johndoe" password: "supersecretpassword" otp: 123456
Return Values
Common return values are documented here Return Values, the following are the fields unique to this module:
name | description | returned | type | sample |
---|---|---|---|---|
error | the error message returned by the GitHub API | failed | string | key is already in use |
http_status_code | the HTTP status code returned by the GitHub API | failed | int | 400 |
id | the key identifier assigned by GitHub for the deploy key | changed | int | 24381901 |
msg | the status message describing what occurred | always | string | Deploy key added successfully |
Notes
Note
- Refer to GitHub’s API documentation here: https://developer.github.com/v3/repos/keys/.
Status
This module is flagged as preview which means that it is not guaranteed to have a backwards compatible interface.
For help in developing on modules, should you be so inclined, please read Community Information & Contributing, Testing Ansible and Developing Modules.
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.4/github_deploy_key_module.html