110:d5cc65e4d0b7 · fruitbar

Download:

Patch

child	111:c04f966d0a5e
parent	109:875d9d6e6c05

110:d5cc65e4d0b7

Anton Shestakov <av6@dwimlabs.net>, Thu, 21 Jul 2016 17:21:01 +0800

provision: don't pin certs, rely on Mercurial being configured correctly Bitbucket already has a trusted, valid certificate. If extra security is needed, it shouldn't be done in user's .hgrc anyway. And since repo is a variable now, it could be on a host that's not in [hostfingerprints].

--- a/provision/roles/fruitbar/files/.hgrc	Thu Jul 21 17:16:20 2016 +0800
+++ /dev/null	Thu Jan 01 00:00:00 1970 +0000
@@ -1,2 +0,0 @@
-[hostfingerprints]
-bitbucket.org = 46:de:34:e7:9b:18:cd:7f:ae:fd:8b:e3:bc:f4:1a:5e:38:d7:ac:24

--- a/provision/roles/fruitbar/tasks/appinstall.yml	Thu Jul 21 17:16:20 2016 +0800
+++ b/provision/roles/fruitbar/tasks/appinstall.yml	Thu Jul 21 17:21:01 2016 +0800
@@ -5,11 +5,6 @@
     state: directory
     mode: 0755
 
-- name: Add .hgrc
-  copy:
-    src: .hgrc
-    dest: /home/{{ user }}/.hgrc
-
 - name: Pull code
   hg:
     repo: '{{ repo }}'

provision/roles/fruitbar/files/.hgrc	2
provision/roles/fruitbar/tasks/appinstall.yml	5

provision/roles/fruitbar/files/.hgrc		file \| annotate \| diff \| comparison \| revisions
provision/roles/fruitbar/tasks/appinstall.yml		file \| annotate \| diff \| comparison \| revisions