Update teamcity server config for buildagents.

This adds the agent's SSH key to dmdirc-artifacts (used for deploying
reports) and updates the .htaccess file for access to private resources.

.gitignore

@@ -0,0 +1 @@
+/data/auto

playbooks/dmdirc-buildagent.yml

@@ -8,6 +8,9 @@
     home_dir: /home/{{ teamcity_user }}/
     agent_sh: "{{ home_dir }}/bin/agent.sh"
     conf: "{{ home_dir }}/conf/buildAgent.properties"
+    temp_key: /etc/ansible/data/auto/keys/teamcity-{{ ansible_hostname }}
+    htaccess: /home/dmdirc/www/private/.htaccess
+    header: "# {{ inventory_hostname }}"
 
   tasks:
 
@@ -50,3 +53,22 @@
     sudo_user: "{{ teamcity_user }}"
     lineinfile: dest={{ home_dir }}/.ssh/known_hosts regexp=^dmdirc.com
                   line="dmdirc.com,85.234.138.10 {{ hostvars['renji.org.uk']['ssh_public_key'] }}"
+
+  - name: retrieve public key
+    sudo_user: "{{ teamcity_user }}"
+    fetch: src={{ home_dir }}/.ssh/id_rsa.pub dest={{ temp_key }} flat=yes
+
+  - name: add SSH key to dmdirc-artifacts
+    delegate_to: renji.org.uk
+    authorized_key: key="{{ lookup('file', temp_key) }}" user=dmdirc-artifacts
+
+  - name: add header to private .htaccess file
+    delegate_to: renji.org.uk
+    sudo_user: dmdirc
+    lineinfile: dest={{ htaccess }} line="{{ header }}" insertafter="^# Build agents:"
+
+  - name: add all IP addresses to .htaccess file
+    delegate_to: renji.org.uk
+    sudo_user: dmdirc
+    lineinfile: dest={{ htaccess }} line="Allow from {{ item }}" insertafter="{{ header }}"
+    with_items: ansible_all_ipv4_addresses