compliance ansible state indent
This commit is contained in:
@@ -5,12 +5,14 @@
|
||||
ansible.builtin.getent:
|
||||
database: group
|
||||
split: ':'
|
||||
|
||||
# Add doas package
|
||||
- name: Install doas (for Alpine systems).
|
||||
ansible.builtin.package:
|
||||
name:
|
||||
- doas
|
||||
state: present
|
||||
|
||||
# User account (ansible) configuration
|
||||
- name: Add deployment user.
|
||||
user:
|
||||
@@ -22,6 +24,7 @@
|
||||
groups: wheel
|
||||
append: yes
|
||||
when: "'wheel' in ansible_facts.getent_group"
|
||||
|
||||
# Ansible user SSH pub key
|
||||
# This is a really stupid way to do it, but alas.
|
||||
# This uses an environment variable named ansiblesvc_key in Semaphore which has the ssh-rsa pubkey.
|
||||
@@ -37,6 +40,7 @@
|
||||
dest: /home/ansible/.ssh/authorized_keys
|
||||
owner: ansible
|
||||
group: ansible
|
||||
|
||||
# Add required packages because Debian is lame
|
||||
- name: Install standard packages if not already installed.
|
||||
# Looking at you LXCs. >.>
|
||||
@@ -49,6 +53,7 @@
|
||||
- python3
|
||||
- iftop
|
||||
state: present
|
||||
|
||||
# Give ansible doas rights with no password required.
|
||||
- name: Add doas rights with no password for deployment user (Alpine only)
|
||||
lineinfile:
|
||||
|
||||
Reference in New Issue
Block a user