roles/mgrote_users/tasks/main.yml

@@ -1,15 +1,11 @@
 ---
-- name: set groups as list
+- name: Set groups as list
   ansible.builtin.set_fact:
     groups_as_list: "{{ ((( item.groups ) | list) | sort) | unique }}"
   loop: "{{ users }}"
   when: item.groups is defined
 
-- name: debug 1
+- name: Ensure groups exist
-  ansible.builtin.debug:
-    msg: '{{ groups_as_list }}'
-
-- name: create groups
   ansible.builtin.group:
     name: "{{ item }}"
     state: present
@@ -17,7 +13,7 @@
   when: groups_as_list is defined
   # no_log: true # TODO
 
-- name: create users
+- name: Ensure users exist
   ansible.builtin.user:
     name: "{{ item.username }}"
     uid: "{{ item.uid | default(omit) }}"
@@ -30,15 +26,16 @@
   loop: '{{ users }}'
   # no_log: true # TODO
 
-- name: add ssh key
+- name: Ensure user ssh-keys exist
   ansible.posix.authorized_key:
     user: "{{ item.username }}"
     key: "{{ item.public_ssh_key }}"
     state: present
   when: item.public_ssh_key is defined
   loop: '{{ users }}'
+  # no_log: true # TODO
 
-- name: add to sudoers
+- name: Ensure users are added to sudoers
   ansible.builtin.lineinfile:
     dest: /etc/sudoers
     state: present
@@ -47,3 +44,4 @@
     validate: 'visudo -cf %s'
   when: item.allow_sudo|default(false) and item.allow_sudo is defined
   loop: '{{ users }}'
+  # no_log: true # TODO