2024-04-13 23:22:15 +02:00
|
|
|
---
|
|
|
|
|
|
|
|
|
|
- name: Install packages
|
|
|
|
|
become: true
|
|
|
|
|
ansible.builtin.apt:
|
|
|
|
|
name:
|
|
|
|
|
- sudo
|
|
|
|
|
- vim
|
2024-04-14 00:07:57 +02:00
|
|
|
- bash-completion
|
2024-07-25 16:54:40 +02:00
|
|
|
- mutt
|
2024-04-13 23:22:15 +02:00
|
|
|
state: present
|
|
|
|
|
|
2024-04-14 00:07:57 +02:00
|
|
|
- name: Get unix accounts
|
|
|
|
|
become: true
|
|
|
|
|
ansible.builtin.getent:
|
|
|
|
|
database: passwd
|
|
|
|
|
|
|
|
|
|
- name: Copy bash aliases for accounts using bash
|
|
|
|
|
become: true
|
|
|
|
|
loop: "{{ ansible_facts.getent_passwd | dict2items }}"
|
|
|
|
|
ansible.builtin.template:
|
|
|
|
|
src: bash_aliases.j2
|
|
|
|
|
dest: "{{ item.value.4 }}/.bash_aliases"
|
|
|
|
|
owner: "{{ item.key }}"
|
|
|
|
|
group: "{{ item.key }}"
|
|
|
|
|
mode: "644"
|
2024-11-29 17:11:42 +01:00
|
|
|
when: item.key in ('root', ansible_user_id)
|
2024-04-14 00:07:57 +02:00
|
|
|
|
2024-11-29 17:04:48 +01:00
|
|
|
- name: Copy bashrc for accounts using bash
|
|
|
|
|
become: true
|
|
|
|
|
loop: "{{ ansible_facts.getent_passwd | dict2items }}"
|
|
|
|
|
ansible.builtin.template:
|
|
|
|
|
src: bashrc.j2
|
|
|
|
|
dest: "{{ item.value.4 }}/.bashrc"
|
|
|
|
|
owner: "{{ item.key }}"
|
|
|
|
|
group: "{{ item.key }}"
|
|
|
|
|
mode: "644"
|
2024-11-29 17:11:42 +01:00
|
|
|
when: item.key in ('root', ansible_user_id)
|
2024-11-29 17:04:48 +01:00
|
|
|
|
2024-04-13 23:22:15 +02:00
|
|
|
- name: Setup etckeeper
|
|
|
|
|
ansible.builtin.include_role:
|
|
|
|
|
name: etckeeper
|
2024-07-06 18:10:12 +02:00
|
|
|
|
|
|
|
|
- name: Copy sshd_config
|
|
|
|
|
become: true
|
|
|
|
|
ansible.builtin.template:
|
|
|
|
|
src: sshd_config.j2
|
2025-01-16 22:59:51 +01:00
|
|
|
dest: /etc/ssh/sshd_config.d/00-common.conf
|
2024-07-06 18:10:12 +02:00
|
|
|
mode: "644"
|
|
|
|
|
owner: root
|
|
|
|
|
group: root
|
|
|
|
|
notify: Restart sshd service
|
