From 60ba593c17533fe6c3d4da971633d0af4754eb9e Mon Sep 17 00:00:00 2001 From: Timo Makinen Date: Sat, 29 Oct 2022 17:13:04 +0000 Subject: [PATCH] autofs: ansible-lint fixes --- roles/autofs/handlers/main.yml | 2 +- roles/autofs/tasks/main.yml | 32 ++++++++++++++++---------------- 2 files changed, 17 insertions(+), 17 deletions(-) diff --git a/roles/autofs/handlers/main.yml b/roles/autofs/handlers/main.yml index d4f56aa..ac7b39f 100644 --- a/roles/autofs/handlers/main.yml +++ b/roles/autofs/handlers/main.yml @@ -1,5 +1,5 @@ --- -- name: restart autofs +- name: Restart autofs ansible.builtin.service: name: autofs state: restarted diff --git a/roles/autofs/tasks/main.yml b/roles/autofs/tasks/main.yml index 4ea5acd..d3a3121 100644 --- a/roles/autofs/tasks/main.yml +++ b/roles/autofs/tasks/main.yml @@ -1,28 +1,28 @@ --- -- name: install packages +- name: Install packages ansible.builtin.package: name: autofs state: installed -- name: allow nfs home directories for selinux +- name: Allow NFS home directories for SELinux ansible.posix.seboolean: name: use_nfs_home_dirs state: true persistent: true -- name: configure ldap server for autofs +- name: Configure LDAP server for autofs ansible.builtin.lineinfile: dest: /etc/autofs.conf regexp: '^#?ldap_uri\s*=.*' line: "ldap_uri = {% for u in ldap_server %}ldaps://{{ u }} {% endfor %}" - notify: restart autofs + notify: Restart autofs -- name: configure ldap schema for autofs +- name: Configure LDAP schema for autofs ansible.builtin.lineinfile: dest: /etc/autofs.conf line: "{{ item }}" insertbefore: "^# auth_conf_file" - notify: restart autofs + notify: Restart autofs with_items: - value_attribute = automountInformation - entry_attribute = automountKey @@ -30,47 +30,47 @@ - entry_object_class = automount - map_object_class = organizationalUnit -- name: configure ldap auth for autofs +- name: Configure LDAP auth for autofs ansible.builtin.template: dest: /etc/autofs_ldap_auth.conf src: autofs_ldap_auth.conf.j2 mode: 0600 owner: root group: "{{ ansible_wheel }}" - notify: restart autofs + notify: Restart autofs -- name: create auto.master config +- name: Create auto.master config ansible.builtin.template: dest: /etc/auto.master src: auto.master.j2 mode: 0644 owner: root group: "{{ ansible_wheel }}" - notify: restart autofs + notify: Restart autofs -- name: start autofs service +- name: Start autofs service ansible.builtin.service: name: autofs state: started enabled: true -- name: disable authorized_keys file from users +- name: Disable authorized_keys file from users ansible.builtin.lineinfile: path: /etc/ssh/sshd_config line: AuthorizedKeysFile none regexp: '^AuthorizedKeysFile\s+.*' - notify: restart sshd + notify: Restart sshd -- name: enable authorized_keys file for root +- name: Enable authorized_keys file for root ansible.builtin.blockinfile: path: /etc/ssh/sshd_config block: | Match User root AuthorizedKeysFile .ssh/authorized_keys marker: "# {mark} ANSIBLE MANAGED BLOCK (root user)" - notify: restart sshd + notify: Restart sshd -- name: move user cache from home directory to tmpfs +- name: Move user cache from home directory to tmpfs ansible.builtin.copy: dest: "/etc/profile.d/{{ item }}" src: "{{ item }}"