From 77ba1c7846bb3c12faae5cb5b1dfce76aec6f574 Mon Sep 17 00:00:00 2001 From: Santiago Lo Coco Date: Mon, 15 Apr 2024 23:10:33 +0200 Subject: [PATCH] Update ssh_config test --- .../roles/local_accounts/tasks/main.yml | 2 +- .../playground/roles/ssh_config/tests/test.yml | 17 +++++++++++++++++ 2 files changed, 18 insertions(+), 1 deletion(-) diff --git a/slococo/playground/roles/local_accounts/tasks/main.yml b/slococo/playground/roles/local_accounts/tasks/main.yml index 54b6ea4..f9eb3f1 100644 --- a/slococo/playground/roles/local_accounts/tasks/main.yml +++ b/slococo/playground/roles/local_accounts/tasks/main.yml @@ -5,7 +5,7 @@ shell: "{{ item.shell }}" uid: "{{ item.userid }}" expires: "{{ (((item.expiry_date + ' 00:00:00') | to_datetime).strftime('%s')) if item.expiry_date is defined else omit }}" - home: "{{ item.home | default(omit)}}" + home: "{{ item.home | default(omit) }}" groups: "{{ item.groups | default(omit) }}" loop: "{{ local_accounts_list }}" diff --git a/slococo/playground/roles/ssh_config/tests/test.yml b/slococo/playground/roles/ssh_config/tests/test.yml index 173c320..bb64ded 100644 --- a/slococo/playground/roles/ssh_config/tests/test.yml +++ b/slococo/playground/roles/ssh_config/tests/test.yml @@ -11,3 +11,20 @@ roles: - role: slococo.playground.ssh_config + + tasks: + - name: Check SSH daemon configuration + ansible.builtin.lineinfile: + path: /etc/ssh/sshd_config + regexp: "^{{ item.key }}" + line: "{{ item.key }} {{ item.value }}" + state: present + mode: '0644' + loop: "{{ ssh_config_options | dict2items }}" + check_mode: true + register: ssh_config_result + + - name: Fail if any change occurred + ansible.builtin.fail: + msg: "A change occurred in SSH daemon configuration." + when: ssh_config_result.changed and not ansible_check_mode