From dfa0e72d5fad96bf95160a3ddfecc19760e73733 Mon Sep 17 00:00:00 2001
From: Pierre-Olivier Mercier <nemunaire@nemunai.re>
Date: Fri, 17 Mar 2023 06:51:58 +0100
Subject: [PATCH] Initial commit

---
 meta/main.yml  | 18 ++++++++++++++++++
 tasks/main.yml | 23 +++++++++++++++++++++++
 vars/main.yml  |  2 ++
 3 files changed, 43 insertions(+)
 create mode 100644 meta/main.yml
 create mode 100644 tasks/main.yml
 create mode 100644 vars/main.yml

diff --git a/meta/main.yml b/meta/main.yml
new file mode 100644
index 0000000..767ef9f
--- /dev/null
+++ b/meta/main.yml
@@ -0,0 +1,18 @@
+---
+
+dependencies: []
+
+galaxy_info:
+  role_name: teach-adlin
+  author: 'Pierre-Olivier Mercier <nemunaire+iac@nemunai.re>'
+  description: Prepare things for the AdLin course at EPITA
+  license: GPL-3.0-or-later
+  min_ansible_version: 2.9
+  platforms:
+    - name: Alpine
+      versions:
+        - all
+    - name: Debian
+      versions:
+        - all
+  galaxy_tags: []
diff --git a/tasks/main.yml b/tasks/main.yml
new file mode 100644
index 0000000..c76d175
--- /dev/null
+++ b/tasks/main.yml
@@ -0,0 +1,23 @@
+---
+- name: Create user for software deployment
+  ansible.builtin.user:
+    name: srs-deploy
+    home: /var/www/nemunai.re/srs
+    create_home: false
+    password: '*'
+    state: present
+
+- name: Ensure srs-deploy home exists
+  file:
+    path: "/var/www/nemunai.re/{{ item }}"
+    owner: root
+    state: directory
+  loop:
+    - srs
+    - adlin
+
+- name: Define authorized key for srs-deploy
+  ansible.posix.authorized_key:
+    user: srs-deploy
+    state: present
+    key: "{{ ssh_key_srs_deploy }}"
diff --git a/vars/main.yml b/vars/main.yml
new file mode 100644
index 0000000..2471219
--- /dev/null
+++ b/vars/main.yml
@@ -0,0 +1,2 @@
+---
+ssh_key_srs_deploy: 'no-agent-forwarding,no-port-forwarding,no-pty,no-X11-forwarding,from="192.168.0.*,82.64.31.248,82.64.151.41,2a01:e0a:518:83?:*" ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAKp9v6Tktuw5Frym+RF14ahHGrdlM4bXuVhrAxWYUgy deploy-key-drone'