From 69e37093b9e794c8a3bc5f897db40ab13dabd774 Mon Sep 17 00:00:00 2001
From: Sven Ketelsen <sven.ketelsen@netgo.de>
Date: Tue, 23 May 2023 22:24:56 +0200
Subject: [PATCH] DEV-1058 bugfix backup process

- added become to gpg import
---
 group_vars/all/backup.yml            | 1 +
 group_vars/stage_demompmx/backup.yml | 3 ++-
 roles/maria/tasks/_create_backup.yml | 3 ++-
 3 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/group_vars/all/backup.yml b/group_vars/all/backup.yml
index 182b99e..bfb299d 100644
--- a/group_vars/all/backup.yml
+++ b/group_vars/all/backup.yml
@@ -1,3 +1,4 @@
 ---
 backup_communication_keys_repository: "https://{{ gitea_admin_username | urlencode() }}:{{ gitea_admin_password | urlencode() }}@{{ shared_service_hostname_gitea }}/gitea-admin/communication-keys.git"
 backup_communication_keys_stage_gpg_key: "smardigo_automation_{{ stage }}.gpg.pub"
+backup_gpg_recipient: "smardigo automation {{ stage | upper }}"
diff --git a/group_vars/stage_demompmx/backup.yml b/group_vars/stage_demompmx/backup.yml
index 4fd1718..e8b1733 100644
--- a/group_vars/stage_demompmx/backup.yml
+++ b/group_vars/stage_demompmx/backup.yml
@@ -1,3 +1,4 @@
 ---
 # TODO use stage specific gpg key
-backup_communication_keys_stage_gpg_key: "smardigo_automation_prodnso.gpg.pub"
+backup_communication_keys_stage_gpg_key: "smardigo_automation_dev.gpg.pub"
+backup_gpg_recipient: "smardigo automation DEV"
\ No newline at end of file
diff --git a/roles/maria/tasks/_create_backup.yml b/roles/maria/tasks/_create_backup.yml
index 448061e..b24503f 100644
--- a/roles/maria/tasks/_create_backup.yml
+++ b/roles/maria/tasks/_create_backup.yml
@@ -37,6 +37,7 @@
 # linting violation needs to be whitelisted
     - name: "Importing stage specific automation gpg-key" # noqa command-instead-of-shell
       shell: 'gpg --import {{ tempdir.path }}/{{ backup_communication_keys_stage_gpg_key }}'
+      become: yes
 
 # there is no ansible module already in place for (mariabackup|gpg)
 # so using shell module
@@ -47,7 +48,7 @@
   shell: |
       set -o pipefail
       /usr/bin/mariabackup --defaults-file={{ my_cnf_file }} --backup --stream=xbstream | gzip > {{ backup_file }} && \
-      gpg --encrypt --recipient "smardigo automation {{ stage | upper }}" --trust-model always {{ backup_file }} && \
+      gpg --encrypt --recipient "smardigo automation DEV" --trust-model always {{ backup_file }} && \
       rm {{ backup_file }}
   args:
     executable: /bin/bash