31 lines
793 B
YAML
31 lines
793 B
YAML
---
|
|
- name: Test the ssh_config role
|
|
hosts: localhost
|
|
connection: local
|
|
gather_facts: false
|
|
become: true
|
|
|
|
vars:
|
|
ssh_config_options:
|
|
PasswordAuthentication: 'no'
|
|
|
|
roles:
|
|
- role: slococo.playground_nodeps.ssh_config
|
|
|
|
tasks:
|
|
- name: Check SSH daemon configuration
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/ssh/sshd_config
|
|
regexp: "^{{ item.key }}"
|
|
line: "{{ item.key }} {{ item.value }}"
|
|
state: present
|
|
mode: '0644'
|
|
loop: "{{ ssh_config_options | dict2items }}"
|
|
check_mode: true
|
|
register: ssh_config_result
|
|
|
|
- name: Fail if any change occurred
|
|
ansible.builtin.fail:
|
|
msg: "A change occurred in SSH daemon configuration."
|
|
when: ssh_config_result.changed and not ansible_check_mode
|