Starting to convert to playbook: Added gnupg role

roles/gnupg/templates/gpg-agent.conf.j2

@@ -0,0 +1,7 @@
+default-cache-ttl {{ gpg_cache_ttl }}
+default-cache-ttl-ssh {{ gpg_cache_ttl_ssh }}
+max-cache-ttl {{ gpg_cache_ttl }}
+max-cache-ttl-ssh {{ gpg_cache_ttl_ssh }}
+no-allow-external-cache
+enable-ssh-support
+ignore-cache-for-signing

roles/gnupg/templates/gpg.conf.j2

@@ -0,0 +1,12 @@
+cert-digest-algo SHA256
+no-emit-version 
+no-comments 
+personal-cipher-preferences AES AES256 AES192 CAST5
+personal-digest-preferences SHA256 SHA512 SHA384 SHA224
+ignore-time-conflict 
+allow-freeform-uid 
+with-fingerprint
+keyid-format 0xlong
+keyserver hkps://hkps.pool.sks-keyservers.net
+#keyserver-options ca-cert-file=/home/electron/.gnupg/sks-keyservers_ca.pem
+keyserver-options no-honor-keyserver-url

roles/gnupg/templates/sshcontrol.j2

@@ -0,0 +1,14 @@
+# List of allowed ssh keys.  Only keys present in this file are used
+# in the SSH protocol.  The ssh-add tool may add new entries to this
+# file to enable them; you may also add them manually.  Comment
+# lines, like this one, as well as empty lines are ignored.  Lines do
+# have a certain length limit but this is not serious limitation as
+# the format of the entries is fixed and checked by gpg-agent. A
+# non-comment line starts with optional white spaces, followed by the
+# keygrip of the key given as 40 hex digits, optionally followed by a
+# caching TTL in seconds, and another optional field for arbitrary
+# flags.   Prepend the keygrip with an '!' mark to disable it.
+
+{% for keygrip in gpg_keygrips %}
+{{ gpg_keygrips.keygrip }}
+{% endfor %}