infrastructure/ansible/roles/base/tasks/ssh.yml

49 lines
916 B
YAML
Raw Normal View History

- name: Install OpenSSH for Debian
2020-04-26 11:25:01 +01:00
package:
2019-12-08 16:03:13 +00:00
name: openssh-server
become: true
when: ansible_os_family == 'Debian'
- name: Install OpenSSH for Arch
package:
name: openssh
become: true
when: ansible_os_family == 'Archlinux'
2019-12-08 16:03:13 +00:00
2019-12-08 15:55:19 +00:00
- name: Define context
set_fact:
user: jake
2020-01-26 18:10:07 +00:00
enable_root: false
2019-12-08 15:55:19 +00:00
- name: SSH config
template:
src: files/sshd_config
2019-12-08 15:55:19 +00:00
dest: /etc/ssh/sshd_config
validate: /usr/sbin/sshd -t -f %s
backup: true
mode: "644"
2019-12-08 15:55:19 +00:00
become: true
register: sshd_config
2020-05-23 11:04:50 +01:00
- name: Set up authorized keys
2021-02-07 13:02:14 +00:00
ansible.posix.authorized_key:
user: "{{ me.user }}"
2020-05-23 11:04:50 +01:00
state: present
key: "{{ lookup('file', item) }}"
loop:
2020-05-23 11:04:50 +01:00
- ssh-keys/ps.pub
2020-05-23 11:23:45 +01:00
- ssh-keys/mobile.pub
2020-05-23 11:04:50 +01:00
2020-04-28 20:48:15 +01:00
- name: Enable SSH
service:
name: sshd
enabled: true
become: true
- name: Restart SSH Daemon
2019-12-08 15:55:19 +00:00
service:
name: sshd
state: reloaded
when: sshd_config.changed
become: true