From df96f2213ab50d607a8eecda869e12bc6799758c Mon Sep 17 00:00:00 2001
From: Richard Franks <richard.franks@securenetcoms.co.uk>
Date: Wed, 19 Apr 2023 13:58:48 +0100
Subject: [PATCH] Updated to use /etc/apt/trusted.gpg.d/ folder for kubernetes
 key

---
 defaults/main.yml      | 2 +-
 tasks/setup-Debian.yml | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/defaults/main.yml b/defaults/main.yml
index 9827631..55c2f11 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -53,7 +53,7 @@ kubernetes_ignore_preflight_errors: 'all'
 
 kubernetes_apt_release_channel: main
 # Note that xenial repo is used for all Debian derivatives at this time.
-kubernetes_apt_repository: "deb http://apt.kubernetes.io/ kubernetes-xenial {{ kubernetes_apt_release_channel }}"
+kubernetes_apt_repository: "deb [signed-by=/etc/apt/trusted.gpg.d/kubernetes-archive-keyring.gpg] http://apt.kubernetes.io/ kubernetes-xenial {{ kubernetes_apt_release_channel }}"
 kubernetes_apt_ignore_key_error: false
 
 kubernetes_yum_arch: '$basearch'
diff --git a/tasks/setup-Debian.yml b/tasks/setup-Debian.yml
index 4a83a58..0d565d7 100644
--- a/tasks/setup-Debian.yml
+++ b/tasks/setup-Debian.yml
@@ -7,9 +7,9 @@
     state: present
 
 - name: Add Kubernetes apt key.
-  apt_key:
+  ansible.builtin.get_url:
     url: https://packages.cloud.google.com/apt/doc/apt-key.gpg
-    state: present
+    dest: /etc/apt/trusted.gpg.d/kubernetes-archive-keyring.gpg
   register: add_repository_key
   ignore_errors: "{{ kubernetes_apt_ignore_key_error }}"