mirror of
https://github.com/willshersystems/ansible-sshd
synced 2024-12-25 01:50:18 +01:00
951df8c65b
This is usually also done in service scripts during startup but those aren't always used in containers. Doesn't hurt ensuring it here.
56 lines
1.2 KiB
YAML
56 lines
1.2 KiB
YAML
---
|
|
- name: Set OS dependent variables
|
|
include_vars: "{{ item }}"
|
|
with_first_found:
|
|
- "{{ ansible_distribution }}_{{ ansible_distribution_major_version }}.yml"
|
|
- "{{ ansible_distribution }}.yml"
|
|
- "{{ ansible_os_family }}_{{ ansible_distribution_major_version }}.yml"
|
|
- "{{ ansible_os_family }}.yml"
|
|
- default.yml
|
|
tags:
|
|
- sshd
|
|
|
|
- name: OS is supported
|
|
assert:
|
|
that: sshd_os_supported == True
|
|
|
|
- name: Installed
|
|
action: >
|
|
{{ ansible_pkg_mgr }}
|
|
name="{{ item }}"
|
|
state=installed
|
|
with_items: sshd_packages
|
|
tags:
|
|
- sshd
|
|
|
|
- name: Run directory
|
|
file:
|
|
path: /var/run/sshd
|
|
state: directory
|
|
mode: 0755
|
|
tags:
|
|
- sshd
|
|
|
|
- name: Configuration
|
|
template:
|
|
src: sshd_config.j2
|
|
dest: "{{ sshd_config_file }}"
|
|
owner: "{{ sshd_config_owner }}"
|
|
group: "{{ sshd_config_group }}"
|
|
mode: "{{ sshd_config_mode }}"
|
|
notify: check_and_reload_sshd
|
|
tags:
|
|
- sshd
|
|
|
|
- name: Service enabled and running
|
|
service:
|
|
name: "{{ sshd_service }}"
|
|
enabled: true
|
|
state: running
|
|
when: sshd_manage_service
|
|
tags:
|
|
- sshd
|
|
|
|
- name: Register that this role has run
|
|
set_fact: sshd_has_run=true
|
|
when: sshd_has_run is not defined
|