user

2.5 KB•YML

main.yml

2.5 KB • 54 lines • yaml

1# Required
2my_user_username: yannick
3
4# Optional - vault-encrypted password for user authentication
5my_user_password: !vault |
6          $ANSIBLE_VAULT;1.1;AES256
7          66353438663262656631333333653230643866303632656231663735306631343833376563636166
8          6431663061643030393239313462373233333232643261630a643738316363323834643835643537
9          66303263646337326530343238373863383838656436636439316665356365353763333865663237
10          6532626132323465610a656535336235313633353034626661356431636537663939316235663763
11          6239
12my_user_primary_group: "{{ my_user_username }}"
13my_user_groups: [docker, sudo]
14my_user_shell: /usr/bin/zsh  # User's preferred shell
15
16# SSH configuration
17edge_device: true            # true = do NOT generate keypair, only import public key
18my_user_ssh_public_key: ""   # if set, use this directly for authorized_keys
19my_user_github_username: "yschulz"  # fallback: fetch https://github.com/<user>.keys
20my_user_authorized_keys_state: present
21
22# Keypair generation (non-edge only, if no existing keys)
23my_user_key_type: ed25519
24my_user_key_comment: "{{ my_user_username }}@{{ inventory_hostname }}"
25my_user_key_dir: "/home/{{ my_user_username }}/.ssh"
26my_user_key_name: "id_{{ my_user_key_type }}"      # creates id_ed25519 + id_ed25519.pub
27
28# Dotfiles
29dotfiles_access_token: !vault |
30          $ANSIBLE_VAULT;1.1;AES256
31          63366562323364623365376636333438643263383933663762313464383337643630343864326138
32          6362613831333336396532613662326462313132653836630a326636333039343938326136376265
33          34323535663437353133373937623831393165336237353261646439613662343138363632333063
34          3438636237326562320a383066633765623466356666383464643764653837313938646632366334
35          36396530316535353734306335363630303366326366343132636439323462663565323637666436
36          32613130623666333666376334663835333336343931663462396538323739616361396464643838
37          31346162623735643431613535326662666565393733666434623065646339303333346638313934
38          34623130383134626465366138336237343165356637323361313964653432323139386264663933
39          6434
40dotfiles_repo: "https://{{ my_user_github_username }}:{{ dotfiles_access_token }}@github.com/yschulz/dotfiles.git"
41dotfiles_dest: "/home/{{ my_user_username }}/personal/misc_code/dotfiles"
42dotfiles_version: HEAD
43dotfiles_install_cmd: "./setup_dot_no_sudo.sh"
44dotfiles_run_from: "{{ dotfiles_dest }}"
45dotfiles_enabled: "{{ dotfiles_repo | length > 0 and dotfiles_install_cmd | length > 0 }}"
46
47# Sudo
48my_user_passwordless_sudo: true
49
50# Misc
51ensure_acl: true
52home_mode: "0755"
53
54

1# Required 2my_user_username: yannick 3 4# Optional - vault-encrypted password for user authentication 5my_user_password: !vault | 6 $ANSIBLE_VAULT;1.1;AES256 7 66353438663262656631333333653230643866303632656231663735306631343833376563636166 8 6431663061643030393239313462373233333232643261630a643738316363323834643835643537 9 66303263646337326530343238373863383838656436636439316665356365353763333865663237 10 6532626132323465610a656535336235313633353034626661356431636537663939316235663763 11 6239 12my_user_primary_group: "{{ my_user_username }}" 13my_user_groups: [docker, sudo] 14my_user_shell: /usr/bin/zsh # User's preferred shell 15 16# SSH configuration 17edge_device: true # true = do NOT generate keypair, only import public key 18my_user_ssh_public_key: "" # if set, use this directly for authorized_keys 19my_user_github_username: "yschulz" # fallback: fetch https://github.com/<user>.keys 20my_user_authorized_keys_state: present 21 22# Keypair generation (non-edge only, if no existing keys) 23my_user_key_type: ed25519 24my_user_key_comment: "{{ my_user_username }}@{{ inventory_hostname }}" 25my_user_key_dir: "/home/{{ my_user_username }}/.ssh" 26my_user_key_name: "id_{{ my_user_key_type }}" # creates id_ed25519 + id_ed25519.pub 27 28# Dotfiles 29dotfiles_access_token: !vault | 30 $ANSIBLE_VAULT;1.1;AES256 31 63366562323364623365376636333438643263383933663762313464383337643630343864326138 32 6362613831333336396532613662326462313132653836630a326636333039343938326136376265 33 34323535663437353133373937623831393165336237353261646439613662343138363632333063 34 3438636237326562320a383066633765623466356666383464643764653837313938646632366334 35 36396530316535353734306335363630303366326366343132636439323462663565323637666436 36 32613130623666333666376334663835333336343931663462396538323739616361396464643838 37 31346162623735643431613535326662666565393733666434623065646339303333346638313934 38 34623130383134626465366138336237343165356637323361313964653432323139386264663933 39 6434 40dotfiles_repo: "https://{{ my_user_github_username }}:{{ dotfiles_access_token }}@github.com/yschulz/dotfiles.git" 41dotfiles_dest: "/home/{{ my_user_username }}/personal/misc_code/dotfiles" 42dotfiles_version: HEAD 43dotfiles_install_cmd: "./setup_dot_no_sudo.sh" 44dotfiles_run_from: "{{ dotfiles_dest }}" 45dotfiles_enabled: "{{ dotfiles_repo | length > 0 and dotfiles_install_cmd | length > 0 }}" 46 47# Sudo 48my_user_passwordless_sudo: true 49 50# Misc 51ensure_acl: true 52home_mode: "0755" 53 54