Ansible-Nginx-Cluster/roles/nginx_cluster/tasks/setup-server.yml

---
# file: roles/nginx_cluster/tasks/setup-server.yml 

- name: "{{ hostvars[item]['ansible_hostname'] }} - Setup block for ssh connection between members"
  blockinfile:
    path: /etc/ssh/sshd_config.d/60-nginx-cluster.conf
    marker: "# {mark} ANSIBLE MANAGED BLOCK {{ hostvars[item]['ansible_hostname'] }}"
    create: true
    block: |
      ## Allow root login from cluster member {{ hostvars[item]['ansible_host'] }}
      Match Address {{ hostvars[item]['ansible_host'] }}
          PermitRootLogin yes
  notify: Restart SSH
  when: nginx_cluster_user == "root"

- name: "{{ hostvars[item]['ansible_hostname'] }} - Setup authorized key for the user"
  authorized_key:
    user: "{{ nginx_cluster_user }}"
    state: present
    key: "{{ hostvars[item]['nginx_cluster_public_key'] }}"
Initial commit 2023-01-18 14:42:02 -07:00			`---`
			`# file: roles/nginx_cluster/tasks/setup-server.yml`

			`- name: "{{ hostvars[item]['ansible_hostname'] }} - Setup block for ssh connection between members"`
			`blockinfile:`
			`path: /etc/ssh/sshd_config.d/60-nginx-cluster.conf`
			`marker: "# {mark} ANSIBLE MANAGED BLOCK {{ hostvars[item]['ansible_hostname'] }}"`
			`create: true`
			`block: \|`
			`## Allow root login from cluster member {{ hostvars[item]['ansible_host'] }}`
			`Match Address {{ hostvars[item]['ansible_host'] }}`
			`PermitRootLogin yes`
			`notify: Restart SSH`
			`when: nginx_cluster_user == "root"`

			`- name: "{{ hostvars[item]['ansible_hostname'] }} - Setup authorized key for the user"`
			`authorized_key:`
			`user: "{{ nginx_cluster_user }}"`
			`state: present`
			`key: "{{ hostvars[item]['nginx_cluster_public_key'] }}"`