blee/ansible-role-nginx-lego
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
89d530bc4b
ansible-role-nginx-lego/tasks/setup-user.yml

48 lines
1.1 KiB
YAML
Raw Blame History

---
- name: Get nologin path for acme user
ansible.builtin.find:
paths:
- /bin
- /sbin
- /usr/bin
- /usr/sbin
patterns: nologin
register: nologin_bin
become: true
- name: Create the acme group
ansible.builtin.group:
name: "{{ acme_system_group }}"
state: present
system: true
when: acme_system_group != "root"
become: true
- name: Create the acme system user
ansible.builtin.user:
name: "{{ acme_system_user }}"
groups: "{{ acme_system_group }}"
shell: "{{ nologin_bin.files[0].path }}"
system: true
create_home: false
home: "{{ acme_path }}"
when: acme_system_user != "root"
become: true
- name: Ensure acme_path exists.
ansible.builtin.file:
path: "{{ acme_path }}"
owner: "{{ acme_system_user }}"
group: "{{ acme_system_group }}"
state: directory
mode: '0750'
become: true
- name: Add nginx user to the ACME group.
ansible.builtin.user:
name: "{{ nginx_user }}"
groups: "{{ acme_system_group }}"
append: true
when: acme_system_user != "root"
become: true
Reference in New Issue View Git Blame Copy Permalink