From ccb7171d492011a46ae5da206afe7dc226eda35a Mon Sep 17 00:00:00 2001
From: Markus Katharina Brechtel <markus.katharina.brechtel@thengo.net>
Date: Wed, 13 Sep 2017 20:20:36 +0000
Subject: [PATCH] regenerate ssh keys

---
 tasks/main.yml       | 7 +++++++
 tasks/regenerate.yml | 8 ++++++++
 2 files changed, 15 insertions(+)
 create mode 100644 tasks/regenerate.yml

diff --git a/tasks/main.yml b/tasks/main.yml
index d160a68..6ba02bd 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -1,5 +1,10 @@
 ---
 
+- include: regenerate.yml
+  when:
+    ssh_host_key_state is defined
+    and ssh_host_key_state == 'regenerated'
+
 - include: scan.yml
   when:
     ssh_host_key_state is defined
@@ -13,5 +18,7 @@
 - include: fetch.yml
   when:
     not ssh_host_key_state is defined
+    or ( ssh_host_key_state == 'fetched'
+    and ssh_host_key_state == 'regenerated' )
 
 - include: save.yml
diff --git a/tasks/regenerate.yml b/tasks/regenerate.yml
new file mode 100644
index 0000000..dc7c7ee
--- /dev/null
+++ b/tasks/regenerate.yml
@@ -0,0 +1,8 @@
+---
+
+- name: delete ssh host keys
+  shell: rm /etc/ssh/ssh_host_*
+  register: _ssh_host_keys_delete
+
+- name: reconfigure ssh server
+  shell: dpkg-reconfigure openssh-server