Pains-Perdus/ansible
3
1
Fork 0
Code Issues Pull requests 1 Releases Wiki Activity

improved users group with ACL

Browse source
This commit is contained in:
Virgile Retault 2022-07-19 12:36:30 +02:00
parent fd796ce99c
commit d331e4d0e9
2 changed files with 2 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
group_vars/all/user_vault.example
View file

@ -1,10 +0,0 @@
---
uservault_users:
- {
name: lorem,
groups: sudo,
shell: "/bin/bash",
password_hash: "$6$lvbzekjvbzejbvzvzvbzvbzhvbzbv....aezrfv/", # the string betwenn the first and second `:` in /etc/shadow
ssh_key: "ssh-rsa azrekgnbmoienbzrinoien...aoeuzn user@host",
totp: "daeae8ce486f6636d68c37c21ce002" # the hex value
}

4
roles/base_totp/tasks/main.yml
View file

@ -13,10 +13,10 @@
lineinfile: lineinfile:
path: /etc/users.oath path: /etc/users.oath
regexp: "{{ item.name }}" regexp: "{{ item.name }}"
line: "HOTP/T{{ totp_periode }}/{{ totp_digits }} {{ item.name }} - {{item.totp}}" line: "HOTP/T{{ totp_periode }}/{{ totp_digits }} {{ users.key }} - {{ users_dict[users.key].totp }}"
create: true create: true
group: root group: root
owner: root owner: root
mode: '600' mode: '600'
loop: "{{ uservault_users }}" loop: "{{ users | dict2items }}"
no_log: true no_log: true