diff options
author | Pedro Alvarez <pedro.alvarez@codethink.co.uk> | 2014-06-18 10:16:41 +0000 |
---|---|---|
committer | Pedro Alvarez <pedro.alvarez@codethink.co.uk> | 2014-07-14 15:02:10 +0000 |
commit | e6bf7b4b32d477352cf45b4b0abb6993d524f78a (patch) | |
tree | 1a640eb2acd18e903e85923bab3fcd7d3e40392e /ansible/roles/trove-setup/tasks/users.yml | |
parent | 49ddac4e61b6dca7e4b794cf639b0a1b3d86db00 (diff) | |
download | trove-setup-e6bf7b4b32d477352cf45b4b0abb6993d524f78a.tar.gz |
Add Ansible scripts
Diffstat (limited to 'ansible/roles/trove-setup/tasks/users.yml')
-rw-r--r-- | ansible/roles/trove-setup/tasks/users.yml | 38 |
1 files changed, 38 insertions, 0 deletions
diff --git a/ansible/roles/trove-setup/tasks/users.yml b/ansible/roles/trove-setup/tasks/users.yml new file mode 100644 index 0000000..c1ab866 --- /dev/null +++ b/ansible/roles/trove-setup/tasks/users.yml @@ -0,0 +1,38 @@ +# Depends on: +# - check.yml +--- +- name: Create the lorry user without generating sshkeys. + user: name=lorry comment="Trove lorry service" shell=/bin/bash +- name: Create the /home/lorry/.ssh folder + file: path=/home/lorry/.ssh state=directory owner=lorry group=lorry mode=0700 + +- name: Create users (git, cache, mason) and ssh keys for them. + user: name={{ item }} comment="Trove {{ item }} service" shell=/bin/bash generate_ssh_key=yes + with_items: + - git + - cache + - mason +- name: Create known_hosts for all the users + shell: | + cat /etc/ssh/ssh_host_*_key.pub | cut -d\ -f1,2 | \ + sed -e's/^/'{{ TROVE_HOSTNAME|regex_replace('(\\W)', '\\\\\\1')|quote }}',localhost /' > \ + /home/{{ item }}/.ssh/known_hosts + chown {{ item }}:{{ item }} /home/{{ item }}/.ssh/known_hosts + chmod 600 /home/{{ item }}/.ssh/known_hosts + creates=/home/{{ item }}/.ssh/known_hosts + with_items: + - git + - cache + - mason + - lorry + +- name: Copy the lorry ssh private key + copy: | + src={{ LORRY_SSH_KEY }} + dest=/home/lorry/.ssh/id_rsa + owner=lorry group=lorry mode=600 +- name: Copy the lorry ssh public key + copy: | + src={{ LORRY_SSH_PUBKEY }} + dest=/home/lorry/.ssh/id_rsa.pub + owner=lorry group=lorry mode=644 |