summaryrefslogtreecommitdiff
path: root/roles/download-iso/tasks/main.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/download-iso/tasks/main.yml')
-rw-r--r--roles/download-iso/tasks/main.yml38
1 files changed, 38 insertions, 0 deletions
diff --git a/roles/download-iso/tasks/main.yml b/roles/download-iso/tasks/main.yml
new file mode 100644
index 0000000..dc71771
--- /dev/null
+++ b/roles/download-iso/tasks/main.yml
@@ -0,0 +1,38 @@
+- name: get latest_iso if iso is not defined
+ latest_iso:
+ when: vyos_iso_url == ""
+ register: latest_iso_result
+
+- name: set latest_iso as vyos_iso_url
+ set_fact:
+ vyos_iso_url: "{{ latest_iso_result.latest_iso }}"
+ when: latest_iso_result is defined
+
+- name: Fetch VyOS ISO GPG signature
+ uri:
+ url: "{{ vyos_iso_url }}.asc"
+ dest: "{{ vyos_iso_local }}.asc"
+ status_code: 200,404,403
+ tags: verify
+ register: gpg_uri
+
+- name: Download VyOS ISO release
+ get_url:
+ url: "{{ vyos_iso_url }}"
+ dest: "{{ vyos_iso_local }}"
+
+- name: Fetch the VyOS release GPG key
+ get_url:
+ url: "{{ vyos_key_url}}"
+ dest: "{{ vyos_key_local }}"
+ tags: verify
+
+- name: Install the VyOS release GPG key
+ command: gpg --import {{ vyos_key_local }}
+ when: gpg_uri.status == 200
+ tags: verify
+
+- name: Validate ISO GPG signature
+ command: gpg --verify {{ vyos_iso_local }}.asc {{ vyos_iso_local }}
+ when: gpg_uri.status == 200
+ tags: verify
generated by cgit v1.2.3 (git 2.39.1) at 2025-03-01 16:06:41 +0000