60 lines
1.8 KiB
YAML
60 lines
1.8 KiB
YAML
---
|
|
# Copyright (C) 2013-2016 Maciej Delmanowski <drybjed@gmail.com>
|
|
# Copyright (C) 2015-2017 Robin Schneider <ypid@riseup.net>
|
|
# Copyright (C) 2014-2017 DebOps <https://debops.org/>
|
|
# SPDX-License-Identifier: GPL-3.0-only
|
|
|
|
- name: Manage OpenSSH Server
|
|
collections: [ 'debops.debops', 'debops.roles01',
|
|
'debops.roles02', 'debops.roles03' ]
|
|
hosts: [ 'debops_all_hosts', 'debops_service_sshd' ]
|
|
become: True
|
|
|
|
environment: '{{ inventory__environment | d({})
|
|
| combine(inventory__group_environment | d({}))
|
|
| combine(inventory__host_environment | d({})) }}'
|
|
|
|
pre_tasks:
|
|
|
|
- name: Prepare sshd environment
|
|
ansible.builtin.import_role:
|
|
name: 'sshd'
|
|
tasks_from: 'main_env'
|
|
tags: [ 'role::sshd', 'role::ldap' ]
|
|
|
|
roles:
|
|
|
|
- role: ferm
|
|
tags: [ 'role::ferm', 'skip::ferm' ]
|
|
ferm__dependent_rules:
|
|
- '{{ sshd__ferm__dependent_rules }}'
|
|
|
|
- role: tcpwrappers
|
|
tags: [ 'role::tcpwrappers', 'skip::tcpwrappers' ]
|
|
tcpwrappers_dependent_allow:
|
|
- '{{ sshd__tcpwrappers__dependent_allow }}'
|
|
|
|
- role: python
|
|
tags: [ 'role::python', 'skip::python', 'role::ldap' ]
|
|
python__dependent_packages3:
|
|
- '{{ ldap__python__dependent_packages3 }}'
|
|
python__dependent_packages2:
|
|
- '{{ ldap__python__dependent_packages2 }}'
|
|
|
|
- role: ldap
|
|
tags: [ 'role::ldap', 'skip::ldap' ]
|
|
ldap__dependent_tasks:
|
|
- '{{ sshd__ldap__dependent_tasks }}'
|
|
|
|
- role: pam_access
|
|
tags: [ 'role::pam_access', 'skip::pam_access' ]
|
|
pam_access__dependent_rules:
|
|
- '{{ sshd__pam_access__dependent_rules }}'
|
|
|
|
- role: sudo
|
|
tags: [ 'role::sudo', 'skip::sudo' ]
|
|
sudo__dependent_sudoers:
|
|
- '{{ sshd__sudo__dependent_sudoers }}'
|
|
|
|
- role: sshd
|
|
tags: [ 'role::sshd', 'skip::sshd' ]
|