28 lines
1009 B
YAML
28 lines
1009 B
YAML
---
|
|
# task/create_user file for provision_management_user
|
|
- name: "Create group {{ provision_management_user_group }}"
|
|
ansible.builtin.group:
|
|
name: "{{ provision_management_user_group }}"
|
|
state: present
|
|
system: "{{ provision_management_user_is_system }}"
|
|
|
|
- name: "Create user {{ provision_management_user_name }}"
|
|
ansible.builtin.user:
|
|
name: "{{ provision_management_user_name }}"
|
|
comment: "Ansible service user"
|
|
password: "{{ provision_management_user_password }}"
|
|
group: "{{ provision_management_user_group }}"
|
|
home: "{{ provision_management_user_home }}"
|
|
shell: "{{ provision_management_user_shell }}"
|
|
system: "{{ provision_management_user_is_system }}"
|
|
create_home: true
|
|
|
|
- name: "Add user to sudoers"
|
|
ansible.builtin.copy:
|
|
dest: "/etc/sudoers.d/{{ provision_management_user_name }}"
|
|
owner: root
|
|
group: root
|
|
mode: 0640
|
|
content: "{{ provision_management_user_name }} ALL=(ALL) NOPASSWD: ALL"
|
|
when: provision_management_user_sudoer
|