fuquan/android_mt6572_jiabo
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
android_mt6572_jiabo/lineage/ansible/roles/base/tasks/main.yml
FuQuan 3ff2876a30 first commit
2025-09-05 16:56:03 +08:00

55 lines
1.4 KiB
YAML
Raw Blame History

---
- name: Set hostname (lineage)
hostname:
name: "{{inventory_hostname}}.lineageos.org"
when: "'.' not in inventory_hostname"
- name: Set hostname (external)
hostname:
name: "{{inventory_hostname}}"
when: "'.' in inventory_hostname"
- name: Install base packages
apt:
name: "{{item}}"
with_items:
- zsh
- htop
- sudo
- name: Create Groups
group:
name: "{{item.username}}"
with_items:
- "{{users}}"
- name: Creating Users
user:
name: "{{item.username}}"
group: "{{item.username}}"
groups: "{{item.groups | join(',') }}"
shell: "{{item.shell}}"
with_items: "{{users}}"
- name: SSH Keys
authorized_key:
user: "{{item.0.username}}"
key: "{{item.1}}"
with_subelements:
- "{{users}}"
- ssh_key
- name: Enable sudo for user
copy:
content: "{{item.username}} ALL=(ALL) NOPASSWD: ALL"
dest: "/etc/sudoers.d/{{item.username}}"
with_items: "{{users}}"
#- name: Disallow password authentication
# lineinfile: dest=/etc/ssh/sshd_config
# regexp="^PasswordAuthentication"
# line="PasswordAuthentication no"
# state=present
# notify: restart ssh
#
#- name: Disallow root SSH access
# lineinfile: dest=/etc/ssh/sshd_config
# regexp="^PermitRootLogin"
# line="PermitRootLogin yes"
# state=present
# notify: restart ssh
Reference in a new issue View git blame Copy permalink