Add ssh users with ansible roles

Change-Id: I10a9f1ed2fbc1fbef5d488263b25d482fcaa320b Signed-off-by: Yujun Zhang <zhang.yujunz@zte.com.cn>
author: Yujun Zhang <zhang.yujunz@zte.com.cn> 2016-10-13 15:58:10 +0800
committer: Yujun Zhang <zhang.yujunz@zte.com.cn> 2016-10-13 15:58:10 +0800
commit: 9977d7c5f98e3312b56350fc9fe2ea137d0902bb (patch)
tree: ce804edfe7e910964c93948d5af1a20b2221bac5 /supporting/servers/roles/ssh/tasks/main.yml
parent: 69019f4dceec6f8bcb9eaf540b5f7257fce9530f (diff)
1 files changed, 26 insertions, 0 deletions
diff --git a/supporting/servers/roles/ssh/tasks/main.yml b/supporting/servers/roles/ssh/tasks/main.yml
new file mode 100644
index 00000000..7de1e208
--- /dev/null
+++ b/supporting/servers/roles/ssh/tasks/main.yml
@@ -0,0 +1,26 @@
+- name: add users for ssh access
+  become: true
+  user:
+    name: "{{ item.name }}"
+    comment: "{{ item.comment }}"
+    groups: "qtip"
+    append: yes
+  with_items: "{{ users }}"
+- name: create .ssh directory
+  become: true
+  file:
+    path: "/home/{{ item.name }}/.ssh"
+    state: directory
+    owner: "{{ item.name }}"
+    group: "{{ item.name }}"
+    mode: 0700
+  with_items: "{{ users }}"
+- name: authorize public key
+  become: true
+  copy:
+    src: "{{ item.name }}.authorized_keys"
+    dest: "/home/{{ item.name }}/.ssh/authorized_keys"
+    owner: "{{ item.name }}"
+    group: "{{ item.name }}"
+    mode: 0600
+  with_items: "{{ users }}"
+\ No newline at end of file
author	Yujun Zhang <zhang.yujunz@zte.com.cn>	2016-10-13 15:58:10 +0800
committer	Yujun Zhang <zhang.yujunz@zte.com.cn>	2016-10-13 15:58:10 +0800
commit	9977d7c5f98e3312b56350fc9fe2ea137d0902bb (patch)
tree	ce804edfe7e910964c93948d5af1a20b2221bac5 /supporting/servers/roles/ssh/tasks/main.yml
parent	69019f4dceec6f8bcb9eaf540b5f7257fce9530f (diff)