From 07a37c5ef495428ace8d7d5284f4f26b051d3362 Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Sun, 26 May 2019 19:00:27 +0100
Subject: [PATCH] Add keys to local GPG keyring for use with signature
 validation

---
 tasks/packages.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/tasks/packages.yml b/tasks/packages.yml
index 9b0c19d..cc6e141 100644
--- a/tasks/packages.yml
+++ b/tasks/packages.yml
@@ -9,6 +9,12 @@
   shell: "pacman-key --list-keys"
   register: pacman_keys
 
+- name: "Get known GPG keys"
+  shell: "gpg --list-keys"
+  become: true
+  become_user: "{{ user }}"
+  register: known_gpg_keys
+
 - name: "Add keys to pacman"
   shell: "pacman-key -r {{ item }}"
   when: "item not in pacman_keys.stdout"
@@ -19,6 +25,13 @@
   when: "item not in pacman_keys.stdout"
   with_items: "{{ keys }}"
 
+- name: "Add keys to local keyring"
+  shell: "gpg --recv-keys {{ item }}"
+  become: true
+  become_user: "{{ user }}"
+  when: "item not in known_gpg_keys.stdout"
+  with_items: "{{ keys }}"
+
 - name: Install pacman config
   copy:
     src: ./files/pacman.conf