feat: add private_key_format choices for openssh_keypair (#511)

* feat: add private_key_format choices for openssh_keypair * chore: add changelog fragment
2026-03-26 21:33:25 +00:00 · 2022-09-18 20:10:29 -04:00
parent 95626abdd3
commit 1dcc135da5
5 changed files with 130 additions and 4 deletions
--- a/tests/integration/targets/openssh_keypair/tests/cryptography_backend.yml
+++ b/tests/integration/targets/openssh_keypair/tests/cryptography_backend.yml
@@ -94,3 +94,75 @@
    path: '{{ remote_tmp_dir }}/pem_encoded'
    backend: cryptography
    state: absent
+
+- name: Generate a private key with specified format
+  openssh_keypair:
+    path: '{{ remote_tmp_dir }}/private_key_format'
+    private_key_format: pkcs1
+    backend: cryptography
+
+- name: Generate a private key with specified format (Idempotent)
+  openssh_keypair:
+    path: '{{ remote_tmp_dir }}/private_key_format'
+    private_key_format: pkcs1
+    backend: cryptography
+  register: private_key_format_idempotent
+
+- name: Check that private key with specified format is idempotent
+  assert:
+    that:
+      - private_key_format_idempotent is not changed
+
+- name: Change to PKCS8 format
+  openssh_keypair:
+    path: '{{ remote_tmp_dir }}/private_key_format'
+    private_key_format: pkcs8
+    backend: cryptography
+  register: private_key_format_pkcs8
+
+- name: Check that format change causes regeneration
+  assert:
+    that:
+      - private_key_format_pkcs8 is changed
+
+- name: Change to PKCS8 format (Idempotent)
+  openssh_keypair:
+    path: '{{ remote_tmp_dir }}/private_key_format'
+    private_key_format: pkcs8
+    backend: cryptography
+  register: private_key_format_pkcs8_idempotent
+
+- name: Check that private key with PKCS8 format is idempotent
+  assert:
+    that:
+      - private_key_format_pkcs8_idempotent is not changed
+
+- name: Change to SSH format
+  openssh_keypair:
+    path: '{{ remote_tmp_dir }}/private_key_format'
+    private_key_format: ssh
+    backend: cryptography
+  register: private_key_format_ssh
+
+- name: Check that format change causes regeneration
+  assert:
+    that:
+      - private_key_format_ssh is changed
+
+- name: Change to SSH format (Idempotent)
+  openssh_keypair:
+    path: '{{ remote_tmp_dir }}/private_key_format'
+    private_key_format: ssh
+    backend: cryptography
+  register: private_key_format_ssh_idempotent
+
+- name: Check that private key with SSH format is idempotent
+  assert:
+    that:
+      - private_key_format_ssh_idempotent is not changed
+
+- name: Remove private key with specified format
+  openssh_keypair:
+    path: '{{ remote_tmp_dir }}/private_key_format'
+    backend: cryptography
+    state: absent