40 lines
1.2 KiB
YAML
40 lines
1.2 KiB
YAML
|
- name: Create a user account and configure ssh access
|
||
|
hosts: testhost
|
||
|
gather_facts: no
|
||
|
|
||
|
tasks:
|
||
|
- import_role:
|
||
|
name: fetch_tests
|
||
|
tasks_from: setup.yml
|
||
|
vars:
|
||
|
# Keep the remote temp dir and cache the remote_tmp_dir fact. The directory itself
|
||
|
# and the fact that contains the path are needed in a separate ansible-playbook run.
|
||
|
setup_remote_tmp_dir_skip_cleanup: yes
|
||
|
setup_remote_tmp_dir_cache_path: yes
|
||
|
|
||
|
# This prevents ssh access. It is fixed in some container images but not all.
|
||
|
# https://github.com/ansible/distro-test-containers/pull/70
|
||
|
- name: Remove /run/nologin
|
||
|
file:
|
||
|
path: /run/nologin
|
||
|
state: absent
|
||
|
|
||
|
# Setup ssh access for the unprivileged user.
|
||
|
- name: Get home directory for temporary user
|
||
|
command: echo ~fetcher
|
||
|
register: fetcher_home
|
||
|
|
||
|
- name: Create .ssh dir
|
||
|
file:
|
||
|
path: "{{ fetcher_home.stdout }}/.ssh"
|
||
|
state: directory
|
||
|
owner: fetcher
|
||
|
mode: '0700'
|
||
|
|
||
|
- name: Configure authorized_keys
|
||
|
copy:
|
||
|
src: "~root/.ssh/authorized_keys"
|
||
|
dest: "{{ fetcher_home.stdout }}/.ssh/authorized_keys"
|
||
|
owner: fetcher
|
||
|
mode: '0600'
|