bob/roles/system/defaults/main.yaml at 6e3023205720738ca8df393ccba6a85b1ffb5b93 - hosting/bob - Forgejo: We forge.

hosting/bob

Marty Oehme 6e30232057

ref: Install authorized keys per user

Instead of installing authorized keys globally (same for everybody), we
pass in the authorized_keys variable per user, and thus the installation
also takes place per user.

This makes much more sense and works with minimal refactoring.

2025-11-19 22:13:11 +01:00

16 lines

290 B

YAML

Raw Blame History

 ---
 system_timezone: "Europe/Berlin"
 system_users:
   - name: marty
     groups:
       - marty
       - data
       - incus-admin
     authorized_keys:
       - "{{ lookup('file', '~/.ssh/keys/bob.pub') }}"
   - name: data
     groups:
       - data
     create_home: false
     shell: /sbin/nologin