ansible/roles/create_users/tasks/main.yml

---

- name: Generate user
  user:
    name: "{{ item.name }}"
    groups: "{{ item.groups }}"
    shell: "{{ item.shell }}"
  loop: "{{ uservault_users }}"

- name: Set the passwords
  replace:
    path: /etc/shadow
    regexp: '^{{ item.name }}:(.*?):(.*)'
    replace: '{{ item.name }}:{{ item.password_hash }}:\2'
  loop: "{{ uservault_users }}"

- name: Create .ssh file
  file:
    path: "/home/{{ item.name }}/.ssh"
    state: directory
    owner: "{{ item.name }}"
    group: "{{ item.name }}"
  loop: "{{ uservault_users }}"

- name: Add the key to the authorized_keys
  lineinfile:
    path: "/home/{{ item.name }}/.ssh/authorized_keys"
    create: yes
    mode: '0600'
    owner: "{{ item.name }}"
    group: "{{ item.name }}"
    line: "{{ item.ssh_key }}"
  loop: "{{ uservault_users }}"
setup new vault 2021-01-29 22:27:04 +01:00			`---`

generate users 2021-01-29 23:49:19 +01:00			`- name: Generate user`
			`user:`
			`name: "{{ item.name }}"`
			`groups: "{{ item.groups }}"`
add shell 2021-01-29 23:51:13 +01:00			`shell: "{{ item.shell }}"`
generate users 2021-01-29 23:49:19 +01:00			`loop: "{{ uservault_users }}"`

			`- name: Set the passwords`
			`replace:`
			`path: /etc/shadow`
			`regexp: '^{{ item.name }}:(.?):(.)'`
			`replace: '{{ item.name }}:{{ item.password_hash }}:\2'`
			`loop: "{{ uservault_users }}"`

			`- name: Create .ssh file`
			`file:`
			`path: "/home/{{ item.name }}/.ssh"`
			`state: directory`
			`owner: "{{ item.name }}"`
			`group: "{{ item.name }}"`
			`loop: "{{ uservault_users }}"`

			`- name: Add the key to the authorized_keys`
			`lineinfile:`
			`path: "/home/{{ item.name }}/.ssh/authorized_keys"`
			`create: yes`
			`mode: '0600'`
			`owner: "{{ item.name }}"`
			`group: "{{ item.name }}"`
			`line: "{{ item.ssh_key }}"`
setup new vault 2021-01-29 22:27:04 +01:00			`loop: "{{ uservault_users }}"`