Skip to content
Snippets Groups Projects
Commit 9f3cd5ca authored by Nico's avatar Nico
Browse files

users: follow symlinks 

proxmox likes to make ~/.ssh/authorized_keys a symlink, which ansible
will happily destroy. Leave the symlink as is.
parent 0be56900
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
roles/users/tasks/root_pubkey.yml
+ 2
0
View file @ 9f3cd5ca
...@@ -5,6 +5,7 @@ ...@@ -5,6 +5,7 @@
state: '{{ (user in users_root) | ternary("present", "absent") }}' state: '{{ (user in users_root) | ternary("present", "absent") }}'
key: '{{ item }}' key: '{{ item }}'
comment: '{{ user }}' comment: '{{ user }}'
follow: yes
loop: '{{ user_database[user].pubkeys }}' loop: '{{ user_database[user].pubkeys }}'
- name: "Remove revoked {{ user }} public keys for root" - name: "Remove revoked {{ user }} public keys for root"
...@@ -13,5 +14,6 @@ ...@@ -13,5 +14,6 @@
state: absent state: absent
key: '{{ item }}' key: '{{ item }}'
comment: '{{ user }}' comment: '{{ user }}'
follow: yes
loop: '{{ user_database[user].revoked_pubkeys }}' loop: '{{ user_database[user].revoked_pubkeys }}'
when: 'user_database[user].revoked_pubkeys is defined' when: 'user_database[user].revoked_pubkeys is defined'
roles/users/tasks/user_remove.yml
+ 1
0
View file @ 9f3cd5ca
...@@ -11,6 +11,7 @@ ...@@ -11,6 +11,7 @@
user: "root" user: "root"
state: absent state: absent
key: '{{ pubkey }}' key: '{{ pubkey }}'
follow: yes
when: 'user.key not in users' when: 'user.key not in users'
loop: '{{ user.value.pubkeys }}' loop: '{{ user.value.pubkeys }}'
loop_control: loop_control:
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment

Impressum - Datenschutz