infra/roles/infra_controller/defaults/main.yml at main - jfraeysd/infra - Forgejo: Beyond coding. We Forge.

jfraeysd/infra

Jeremie Fraeys a22381492e

feat(infra-controller): add restricted SSH access role

- Add infra_controller role to provision a dedicated user\n- Install register/deregister forced-command authorized_keys entries\n- Read SSH public keys from vault/env and restrict access by source IP

2026-01-20 17:14:31 -05:00

6 lines

156 B

YAML

Raw Permalink Blame History

 ---
 service_ssh_user: infra_controller
 service_ssh_allowed_host: web
 service_ssh_allowed_ip: ""
 service_ssh_register_key: ""
 service_ssh_deregister_key: ""