Refactor
This commit is contained in:
parent
cbfc5b93b0
commit
9437dff1ad
|
|
@ -1,17 +1,21 @@
|
||||||
Role Name
|
Role Name
|
||||||
=========
|
=========
|
||||||
|
|
||||||
Ansible Role to check the SSH configuration...
|
An Ansible Role to manage SSH configuration on Linux systems.
|
||||||
|
|
||||||
Requirements
|
## Requirements
|
||||||
------------
|
|
||||||
|
|
||||||
...
|
None.
|
||||||
|
|
||||||
Role Variables
|
## Role Variables
|
||||||
--------------
|
|
||||||
|
|
||||||
...
|
```yaml
|
||||||
|
options:
|
||||||
|
PasswordAuthentication: 'yes' # Allow password authentication (default: yes)
|
||||||
|
PermitEmptyPasswords: 'no' # Permit users to have empty passwords (default: no)
|
||||||
|
PermitRootLogin: 'no' # Permit root login (default: no)
|
||||||
|
# Add more SSH options as needed
|
||||||
|
```
|
||||||
|
|
||||||
|
|
||||||
Example Playbook
|
Example Playbook
|
||||||
|
|
@ -19,6 +23,9 @@ Example Playbook
|
||||||
|
|
||||||
```yaml
|
```yaml
|
||||||
- hosts: servers
|
- hosts: servers
|
||||||
|
vars:
|
||||||
|
sshd_options:
|
||||||
|
PasswordAuthentication: 'no'
|
||||||
|
|
||||||
roles:
|
roles:
|
||||||
- { role: slococo.playground.ssh_config }
|
- { role: slococo.playground.ssh_config }
|
||||||
|
|
|
||||||
|
|
@ -1,5 +1,5 @@
|
||||||
---
|
---
|
||||||
sshd_options:
|
options:
|
||||||
PasswordAuthentication: 'yes'
|
PasswordAuthentication: 'yes'
|
||||||
PermitEmptyPasswords: 'no'
|
PermitEmptyPasswords: 'no'
|
||||||
PermitRootLogin: 'no'
|
PermitRootLogin: 'no'
|
||||||
|
|
|
||||||
|
|
@ -2,4 +2,4 @@
|
||||||
- name: Restart SSH service
|
- name: Restart SSH service
|
||||||
ansible.builtin.service:
|
ansible.builtin.service:
|
||||||
name: sshd
|
name: sshd
|
||||||
state: restarted
|
state: restarted
|
||||||
|
|
|
||||||
|
|
@ -0,0 +1,13 @@
|
||||||
|
---
|
||||||
|
argument_specs:
|
||||||
|
main:
|
||||||
|
short_description: Ansible Role to manage SSH configuration
|
||||||
|
options:
|
||||||
|
options:
|
||||||
|
type: dict
|
||||||
|
required: false
|
||||||
|
default:
|
||||||
|
PasswordAuthentication: 'yes'
|
||||||
|
PermitEmptyPasswords: 'no'
|
||||||
|
PermitRootLogin: 'no'
|
||||||
|
description: Dictionary containing SSH configuration options to be set.
|
||||||
|
|
@ -1,9 +1,9 @@
|
||||||
galaxy_info:
|
galaxy_info:
|
||||||
author: Santiago Lo Coco
|
author: Santiago Lo Coco
|
||||||
description: Ansible Role to check SSH configuration
|
description: Ansible Role to manage SSH configuration
|
||||||
company: cloudWerkstatt
|
company: cloudWerkstatt
|
||||||
license: MIT
|
license: MIT
|
||||||
min_ansible_version: 2.12.0
|
min_ansible_version: 2.12.0
|
||||||
galaxy_tags: ['ssh_config']
|
galaxy_tags: ['ssh', 'config']
|
||||||
|
|
||||||
dependencies: []
|
dependencies: []
|
||||||
|
|
|
||||||
|
|
@ -7,5 +7,5 @@
|
||||||
state: present
|
state: present
|
||||||
validate: "sshd -t -f %s"
|
validate: "sshd -t -f %s"
|
||||||
mode: 0644
|
mode: 0644
|
||||||
loop: "{{ sshd_options | dict2items }}"
|
loop: "{{ options | dict2items }}"
|
||||||
become: true
|
notify: Restart SSH service
|
||||||
|
|
|
||||||
|
|
@ -3,6 +3,13 @@
|
||||||
hosts: localhost
|
hosts: localhost
|
||||||
connection: local
|
connection: local
|
||||||
gather_facts: no
|
gather_facts: no
|
||||||
|
become: true
|
||||||
|
|
||||||
|
vars:
|
||||||
|
options:
|
||||||
|
PasswordAuthentication: 'yes'
|
||||||
|
PermitEmptyPasswords: 'no'
|
||||||
|
PermitRootLogin: 'no'
|
||||||
|
|
||||||
roles:
|
roles:
|
||||||
- {role: ../..}
|
- {role: ../..}
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue