hosting/bob
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
111 commits 1 branch 0 tags 321 KiB
Commit graph

6 commits

Author SHA1 Message Date
Marty Oehme
961e10223c
ref(system): Fix ssh authorized keys task 
Fixed the loop for authorized keys. While I read previously that the
Ansible module can take keys in the array format:

```yaml
    key:
      - key1
      - key2
      - ...
```

This seems to not be the case.
Instead, we now do a 'sub-loop' through all the existing authorized_keys
entries in the data structure, running the task once for each key.

This also means we can simplify the 'when' condition to only check the
data structure itself exists, not the key since we only loop once for
each existing key anyway.

More in-depth explanation on the subelements filter here:
https://docs.ansible.com/projects/ansible/latest/playbook_guide/playbooks_filters.html#combining-objects-and-subelements

Concise explanation of use here:
https://overflow.ducks.party/questions/56086290/how-can-i-traverse-nested-lists-in-ansible

One drawback:
we can now _not_ change the key setting in the module to be exclusive
(`exclusive: true` for `authorized_keys` module). As described in the
documentation, if there are more than one key for a user, this would
lead to the following keys overwriting the first key.

Currently do not know how to fix this, but we are not supplying
exclusive keys so it is fine for the moment.
 2025-11-28 18:39:33 +01:00
Marty Oehme
e0efc51c34
feat(system): Add tags to system role tasks 2025-11-28 18:39:32 +01:00
Marty Oehme
6e30232057
ref: Install authorized keys per user 
Instead of installing authorized keys globally (same for everybody), we
pass in the authorized_keys variable per user, and thus the installation
also takes place per user.

This makes much more sense and works with minimal refactoring.
 2025-11-19 22:13:11 +01:00
Marty Oehme
2fc23d9774
feat: Set up timezone and users and groups on system host 2025-11-19 22:13:10 +01:00
Marty Oehme
b493485b90
feat: Add authorized ssh keys to host 2025-11-19 22:13:09 +01:00
Marty Oehme
6a1e01575c
repo: Move ansible setup to root dir 2025-07-17 18:07:52 +02:00
Renamed from ansible/roles/system/tasks/main.yaml (Browse further)