ansible/common
ansible/common
1
0
Fork 0
Code Issues Pull requests Releases Activity

feat: bring back the tag block

Browse source
This commit is contained in:
Simon Cornet 2025-07-14 15:02:08 +02:00
commit bcd3ee8064
1 changed files with 62 additions and 57 deletions
Download patch file Download diff file Expand all files Collapse all files

31
tasks/user.yaml
View file

@ -1,15 +1,20 @@
--- ---
# manage facts # manage users
- name: "user - set default facts for {{ __user['username'] }}" - name: "manage users"
tags: "usermanagement"
block:
# manage facts
- name: "user - set default facts for {{ __user['username'] }}"
ansible.builtin.set_fact: ansible.builtin.set_fact:
sudo_hosts: "{{ __user['hosts'] | default('all') }}" sudo_hosts: "{{ __user['hosts'] | default('all') }}"
sudo_file: "{{ __user['sudo'] | default('False') }}" sudo_file: "{{ __user['sudo'] | default('False') }}"
sudo_pwless: "{{ __user['sudo_passwordless'] | default('False') }}" sudo_pwless: "{{ __user['sudo_passwordless'] | default('False') }}"
user_state: "{{ __user['state'] | default('present') }}" user_state: "{{ __user['state'] | default('present') }}"
# create user with password # create user with password
- name: "user - create users with password - {{ __user['username'] }}" - name: "user - create users with password - {{ __user['username'] }}"
ansible.builtin.user: ansible.builtin.user:
name: "{{ __user['username'] }}" name: "{{ __user['username'] }}"
comment: "{{ __user['name'] }}" comment: "{{ __user['name'] }}"
@ -20,8 +25,8 @@
- "__user['password'] is defined" - "__user['password'] is defined"
- "user_state == 'present'" - "user_state == 'present'"
# create user without password # create user without password
- name: "user - create users without password - {{ __user['username'] }}" - name: "user - create users without password - {{ __user['username'] }}"
ansible.builtin.user: ansible.builtin.user:
name: "{{ __user['username'] }}" name: "{{ __user['username'] }}"
comment: "{{ __user['name'] }}" comment: "{{ __user['name'] }}"
@ -31,8 +36,8 @@
- "__user['password'] is not defined" - "__user['password'] is not defined"
- "user_state == 'present'" - "user_state == 'present'"
# manage authorized_keys # manage authorized_keys
- name: "user - manage authorized_keys - {{ __user['username'] }}" - name: "user - manage authorized_keys - {{ __user['username'] }}"
ansible.posix.authorized_key: ansible.posix.authorized_key:
user: "{{ __user['username'] }}" user: "{{ __user['username'] }}"
key: "{{ __user['publickey'] }}" key: "{{ __user['publickey'] }}"
@ -40,16 +45,16 @@
manage_dir: "true" manage_dir: "true"
when: "__user['publickey'] is defined" when: "__user['publickey'] is defined"
# delete users # delete users
- name: "user - delete users - {{ __user['username'] }}" - name: "user - delete users - {{ __user['username'] }}"
ansible.builtin.user: ansible.builtin.user:
name: "{{ __user['username'] }}" name: "{{ __user['username'] }}"
state: "absent" state: "absent"
remove: true remove: true
when: "user_state == 'absent'" when: "user_state == 'absent'"
# manage sudoers file # manage sudoers file
- name: "user - create sudoers file - {{ __user['username'] }}" - name: "user - create sudoers file - {{ __user['username'] }}"
ansible.builtin.template: ansible.builtin.template:
src: "templates/usermanagement/sudoers.d/sudoers.j2" src: "templates/usermanagement/sudoers.d/sudoers.j2"
dest: "/etc/sudoers.d/{{ __user['username'] }}" dest: "/etc/sudoers.d/{{ __user['username'] }}"
@ -58,7 +63,7 @@
mode: "0644" mode: "0644"
when: "sudo_file" when: "sudo_file"
- name: "user - delete sudoers file - {{ __user['username'] }}" - name: "user - delete sudoers file - {{ __user['username'] }}"
ansible.builtin.file: ansible.builtin.file:
state: "absent" state: "absent"
path: "/etc/sudoers.d/{{ __user['username'] }}" path: "/etc/sudoers.d/{{ __user['username'] }}"