ansible-runner icon indicating copy to clipboard operation
ansible-runner copied to clipboard

Published 20 hours ago verified publisher icon ansible

Add the ability to opt-out mounting ~/.ssh inside the execution environment

Open fridim opened this issue 2 years ago • 3 comments

Is it possible to prevent ansible-runner from mounting user's ~/.ssh into the container when using EEs?

Looking at https://github.com/ansible/ansible-runner/blob/devel/ansible_runner/utils/init.py#L475-L482, it seems it's currently not possible to configure ansible-runner to not mount host ~/.ssh.

Feature request: add a setting and an environment variable to disable mounting ~/.ssh/ entirely.

The documentation in https://ansible-navigator.readthedocs.io/en/latest/faq/#ssh-keys should probably be updated if this feature is implemented.

fridim avatar Feb 13 '23 10:02 fridim

I agree, an option. Our EEs in my opinion do need to default to their "default" or expected behavior but this is a good option IMO.

tonykay avatar Feb 13 '23 12:02 tonykay

@fridim @tonykay Thanks for your comments here. Would you please be able to detail your setup/use-case here so we can better understand your request? Thanks

gundalow avatar Feb 13 '23 13:02 gundalow

Per an out-of-band conversation, if a non-SSH connection plugin is being used for node communication, mounting the SSH directory seems useless. I'd be on board with such an enhancement.

Shrews avatar Mar 01 '23 17:03 Shrews