---
#
# Example keys for this playbook were generated with the commands:
#    $ openssl genrsa -out private.pem 2048
#    $ openssl rsa -in private.pem -pubout > public.pem
#
- name: Tests
  hosts: ipaserver
  become: true
  gather_facts: True

  tasks:
  - name: Copy public key file to server.
    ansible.builtin.copy:
      src: "{{ playbook_dir }}/public.pem"
      dest: "{{ ansible_facts['env'].HOME }}/public.pem"
      owner: "{{ ansible_user }}"
      group: "{{ ansible_user }}"
      mode: "0600"
  - name: Ensure asymmetric vault exists with public key from file.
    ipavault:
      ipaadmin_password: SomeADMINpassword
      name: asymvault
      username: admin
      vault_type: asymmetric
      vault_public_key_file: "{{ ansible_facts['env'].HOME }}/public.pem"
  - name: Remove public key file from server.
    ansible.builtin.file:
      path: "{{ ansible_facts['env'].HOME }}/public.pem"
      state: absent