ansible-automations/roles/setup/tasks/system/openssh.yml

# ===================================================================================================
#  ?                                           ABOUT
#  @author         :  Noah Knegt
#  @email          :  personal@noahknegt.com
#  @repo           :  https://git.noahknegt.com/noah.knegt/ansible-automations
#  @createdOn      :  27-02-2023
#  @description    :  This will setup the ssh server on the machine.
# ===================================================================================================

---
- name: Install or update openssh
  ansible.builtin.package:
    name: "{{ setup_openssh_package }}"
    state: present
  notify:
    - restart_sshd

- name: Enable ssh daemon
  when: inventory_hostname in groups['datacenter']
  ansible.builtin.service:
    name: "{{ openssh_service }}"
    state: started
    enabled: true

- name: Configure sshd
  when: inventory_hostname in groups['datacenter']
  ansible.builtin.template:
    src: sshd_config.j2
    dest: /etc/ssh/sshd_config
    owner: root
    group: root
    mode: 0644
  notify:
    - restart_sshd

- name: Copy sshd banner
  ansible.builtin.copy:
    src: ssh_banner.net
    dest: /etc/issue.net
    owner: root
    group: root
    mode: 0644

- name: Copy ssh public key
  ansible.builtin.authorized_key:
    user: ansible
    key: "{{ item }}"
  with_file:
    - ansible/ansible.pub

- name: Copy ssh public key
  ansible.builtin.authorized_key:
    user: noahk
    key: "{{ item }}"
  with_file:
    - noahk/noahk.pub
Fix the yamllint errors Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-03-30 14:28:10 +02:00			`# ===================================================================================================`
core: Swap to ansible roles for config Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-02-27 16:39:00 +01:00			`# ? ABOUT`
			`# @author : Noah Knegt`
			`# @email : personal@noahknegt.com`
			`# @repo : https://git.noahknegt.com/noah.knegt/ansible-automations`
			`# @createdOn : 27-02-2023`
			`# @description : This will setup the ssh server on the machine.`
Fix the yamllint errors Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-03-30 14:28:10 +02:00			`# ===================================================================================================`
core: Swap to ansible roles for config Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-02-27 16:39:00 +01:00
			`---`
			`- name: Install or update openssh`
Update the setup tasks Signed-off-by: Noah Knegt <git@noahknegt.com> 2024-04-12 15:12:30 +02:00			`ansible.builtin.package:`
			`name: "{{ setup_openssh_package }}"`
			`state: present`
core: Swap to ansible roles for config Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-02-27 16:39:00 +01:00			`notify:`
			`- restart_sshd`

Update the setup tasks Signed-off-by: Noah Knegt <git@noahknegt.com> 2024-04-12 15:12:30 +02:00			`- name: Enable ssh daemon`
			`when: inventory_hostname in groups['datacenter']`
			`ansible.builtin.service:`
core: Swap to ansible roles for config Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-02-27 16:39:00 +01:00			`name: "{{ openssh_service }}"`
			`state: started`
Fix more yamllint errors Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-03-30 14:29:38 +02:00			`enabled: true`
core: Swap to ansible roles for config Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-02-27 16:39:00 +01:00
Update the setup tasks Signed-off-by: Noah Knegt <git@noahknegt.com> 2024-04-12 15:12:30 +02:00			`- name: Configure sshd`
			`when: inventory_hostname in groups['datacenter']`
			`ansible.builtin.template:`
core: Swap to ansible roles for config Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-02-27 16:39:00 +01:00			`src: sshd_config.j2`
			`dest: /etc/ssh/sshd_config`
			`owner: root`
			`group: root`
			`mode: 0644`
			`notify:`
			`- restart_sshd`

Update the setup tasks Signed-off-by: Noah Knegt <git@noahknegt.com> 2024-04-12 15:12:30 +02:00			`- name: Copy sshd banner`
			`ansible.builtin.copy:`
core: Swap to ansible roles for config Signed-off-by: Noah Knegt <git@noahknegt.com> 2023-02-27 16:39:00 +01:00			`src: ssh_banner.net`
			`dest: /etc/issue.net`
			`owner: root`
			`group: root`
			`mode: 0644`
Update the setup tasks Signed-off-by: Noah Knegt <git@noahknegt.com> 2024-04-12 15:12:30 +02:00
			`- name: Copy ssh public key`
			`ansible.builtin.authorized_key:`
			`user: ansible`
			`key: "{{ item }}"`
			`with_file:`
			`- ansible/ansible.pub`

			`- name: Copy ssh public key`
			`ansible.builtin.authorized_key:`
			`user: noahk`
			`key: "{{ item }}"`
			`with_file:`
			`- noahk/noahk.pub`