Hello no the key are differents but i think that ansible modules only match the beginning of the line but not the whole file
i am not going to list all the public keys here but: the public key that has to be removed and the ones that are wrongly being removed have the 'same' beginning:: ssh-rsa AAAAB3NzaC1yc2EAAAA... after this both lines in authorized keys differ so does the authorized_key module only looks for the beginning of the line? the /path/to/totpubkey.pub is a normal regular ssh-rsa public key file are standard public file with the publick key and authorized key files are one key per line.. nothing fancy On Thursday, May 28, 2020 at 4:07:16 PM UTC+2, Mario Garcia wrote: > > Hello > > I need to clean up a bit the authorized keys files on our infra > i created a simple palybook that goes and removed one key from the remote > authorized_keys files but when I run it in check/diff mode i see it tried > to remove far too many lines > > > this is the playbook > > --- > - hosts: all > > > tasks; > > - name: remove public keys > > authorized_key: > user: toto > state: absent > key: "{{ lookup('file', '/path/to/totpubkey.pub') }}" > > > I see absolutely no reason why in some hosts there are several public keys > that are being removed for the authorized_keys files and since the module > does not have a backup option is a bit of a problem. > > how could I use perhaps lineinfile to do the same? or how detect what is > causing the module to delete several lines instead on just the one > provided? > > thank you. > > > > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/ab796701-f5dd-4619-871b-0dc5c0bb8b24%40googlegroups.com.