secops/copy_ssh_keys.sh

#!/bin/bash

INVENTORY="inventory.ini"
KEY_PATH="$HOME/.ssh/id_rsa.pub"

if [ ! -f "$KEY_PATH" ]; then
  echo "❌ SSH public key not found at $KEY_PATH"
  exit 1
fi

# Start ssh-agent if not already running
eval "$(ssh-agent -s)" >/dev/null
ssh-add

# Extract IPs from [popos] group
HOSTS=$(awk '/^\[popos\]/ {flag=1; next} /^\[.*\]/ {flag=0} flag && NF' "$INVENTORY" | awk '{print $1}')

echo "📡 Distributing SSH key to:"
echo "$HOSTS"
echo

for HOST in $HOSTS; do
  echo "🔑 Copying key to $HOST..."
  ssh-copy-id -i "$KEY_PATH" "tony@$HOST"
done

echo "✅ SSH key copied to all hosts in [popos]"