dtomlinson/ansible_linux_setup
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Files
2e300caadaaf29f376aa70230d733e1ad4f1d4dc
ansible_linux_setup/old/roles/user/tasks/main.yml
Daniel Tomlinson 86d3a9a0ec moving files to old
2021-02-28 23:19:04 +00:00

92 lines
2.5 KiB
YAML
Raw Blame History

---
- name: Update default user, belonging to sudo group
user:
name: "{{default_username}}"
password: "{{default_password | password_hash('sha512')}}"
groups: sudo
create_home: yes
shell: /bin/bash
generate_ssh_key: yes
ssh_key_bits: 2048
ssh_key_file: .ssh/id_rsa
update_password: always
state: present
- name: Ensure sudo group has sudo privileges without password
lineinfile:
dest: /etc/sudoers
state: present
regexp: "^%sudo"
line: "%sudo ALL=(ALL) NOPASSWD:ALL"
validate: "/usr/sbin/visudo -cf %s"
# copy local files to remote
- name: Install .forward file in users' folders
template:
src: dot.forward.j2
dest: "{{item}}/.forward"
owner: "{{default_username}}"
group: "{{default_username}}"
with_items:
- "/root"
- "/home/{{default_username}}"
- name: Clone dotfiles repository
become_user: "{{item.user}}"
git:
repo: "https://github.com/olivomarco/dotfiles.git"
version: master
dest: "{{item.path}}"
accept_hostkey: yes
clone: yes
update: yes
with_items:
- {user: "{{default_username}}", path: "/home/{{default_username}}/dotfiles"}
- {user: "root", path: "/root/dotfiles"}
# - name: Run dotfiles/setup/setup-user.sh for {{item.user}}
# become_user: "{{item.user}}"
# shell: "{{item.path}}/setup/setup-user.sh"
# with_items:
# - {user: "{{default_username}}", path: "/home/{{default_username}}/dotfiles"}
# - {user: "root", path: "/root/dotfiles"}
- name: Change owner of dotfiles in {{default_username}} folder
file:
path: "/home/{{default_username}}/dotfiles"
owner: "{{default_username}}"
group: "{{default_username}}"
recurse: yes
# other setup
- name: Assign public ssh key to a variable
shell: cat /home/{{default_username}}/{{public_key}}
register: ssh_public_key
- name: Add default username's public SSH key to its authorized_keys file
lineinfile:
dest: "/home/{{default_username}}/.ssh/authorized_keys"
line: "{{ssh_public_key.stdout}}"
state: present
create: yes
- name: Change root password
user:
name: root
password: "{{root_password | password_hash('sha512')}}"
update_password: always
- name: chsh to /usr/bin/zsh for default user and root
user:
name: "{{item}}"
shell: /usr/bin/zsh
with_items:
- "{{default_username}}"
- "root"
- debug:
msg: "user '{{default_username}}' generated password: {{default_password}}"
- debug:
msg: "user 'root' generated password: {{root_password}}"
Reference in New Issue View Git Blame Copy Permalink