We are working with a team of developers, every project we put all the keys of all the team members in the /group_vars/all/users.yml so anyone can access the server by ssh.
I was testing out today, what if someone leaves us and we want to remove his public key in existing “authorized_keys” files on the different servers.
I removed one of the keys from the /group_vars/all/users.yml and re-provisiond with the users tag. (trellis provision --tags users staging) This does not remove any keys, it only adds keys if I add another one in the users.yml.
Is this how it’s supposed to work? Am I doing something wrong? Or is this something to be aware of, if you work with co-workers/freelancers.
Curious what you think of it.