ansible/tasks/drbackupkey.yml

---
- name: ensure the drbackup group exists
  group: name=drbackup state=present

# Do not move the homedir outside of /home, since either this or uid < 1000 is required
- name: ensure the drbackup user exists
  user: name=drbackup comment="DR Backup User" group=drbackup shell=/bin/bash home=/home/drbackup

- name: Make sure the drbackup homedir exists
  file: dest=/home/drbackup/ state=directory owner=drbackup group=drbackup mode=0700

- name: install the authorized SSH key
  file: dest=/home/drbackup/.ssh/ state=directory owner=drbackup group=drbackup mode=0700

- name: install the backup ssh keys
  copy: src={{private}}/files/backup.pub dest=/home/drbackup/.ssh/authorized_keys owner=drbackup group=drbackup mode=0600

#
# deploy the confine-ssh script
#
- include: "{{tasks}}/confine_ssh.yml"
Add a drbackupkey task This will be required to migrate Dist Git to ansible. 2014-07-17 18:25:32 +02:00			`---`
Split this one out into 2 tasks 2014-08-26 19:12:53 +00:00			`- name: ensure the drbackup group exists`
Add a drbackupkey task This will be required to migrate Dist Git to ansible. 2014-07-17 18:25:32 +02:00			`group: name=drbackup state=present`
Split this one out into 2 tasks 2014-08-26 19:12:53 +00:00
Move the drbackup homedir to /home This is one way to make sure we adhere to: uid < 1000 \|\| homedir in /home 2015-03-12 13:40:44 +00:00			`# Do not move the homedir outside of /home, since either this or uid < 1000 is required`
Split this one out into 2 tasks 2014-08-26 19:12:53 +00:00			`- name: ensure the drbackup user exists`
Move the drbackup homedir to /home This is one way to make sure we adhere to: uid < 1000 \|\| homedir in /home 2015-03-12 13:40:44 +00:00			`user: name=drbackup comment="DR Backup User" group=drbackup shell=/bin/bash home=/home/drbackup`
Missed these two 2014-08-26 19:13:49 +00:00
			`- name: Make sure the drbackup homedir exists`
Move the drbackup homedir to /home This is one way to make sure we adhere to: uid < 1000 \|\| homedir in /home 2015-03-12 13:40:44 +00:00			`file: dest=/home/drbackup/ state=directory owner=drbackup group=drbackup mode=0700`
Add a drbackupkey task This will be required to migrate Dist Git to ansible. 2014-07-17 18:25:32 +02:00
			`- name: install the authorized SSH key`
Move the drbackup homedir to /home This is one way to make sure we adhere to: uid < 1000 \|\| homedir in /home 2015-03-12 13:40:44 +00:00			`file: dest=/home/drbackup/.ssh/ state=directory owner=drbackup group=drbackup mode=0700`
Missed these two 2014-08-26 19:13:49 +00:00
			`- name: install the backup ssh keys`
Move the drbackup homedir to /home This is one way to make sure we adhere to: uid < 1000 \|\| homedir in /home 2015-03-12 13:40:44 +00:00			`copy: src={{private}}/files/backup.pub dest=/home/drbackup/.ssh/authorized_keys owner=drbackup group=drbackup mode=0600`
Add a drbackupkey task This will be required to migrate Dist Git to ansible. 2014-07-17 18:25:32 +02:00
tasks isn't valid here. 2014-08-26 19:14:46 +00:00			`#`
			`# deploy the confine-ssh script`
			`#`
File has a _ in it not a - 2014-08-26 19:15:19 +00:00			`- include: "{{tasks}}/confine_ssh.yml"`