38 lines
931 B
YAML
38 lines
931 B
YAML
- name: create wwwuser group
|
|
group:
|
|
name: "{{ www_group }}"
|
|
state: present
|
|
system: true
|
|
|
|
- name: create wwwuser user
|
|
user:
|
|
name: "{{ www_user }}"
|
|
group: "{{ www_group }}"
|
|
comment: "Web user"
|
|
shell: /bin/bash
|
|
home: "{{ www_home }}"
|
|
system: true
|
|
state: present
|
|
|
|
- name: set ssh authorized keys
|
|
authorized_key:
|
|
user: "{{ www_user }}"
|
|
key: "{{ item }}"
|
|
with_items:
|
|
- "{{ lookup('file', 'id.pub') }}"
|
|
|
|
- name: create app's directory
|
|
file:
|
|
path: "{{ www_home }}/apps"
|
|
state: directory
|
|
owner: "{{ www_user }}"
|
|
group: "{{ www_group }}"
|
|
|
|
- name: add permission to wwwuser to reload php-fpm
|
|
lineinfile:
|
|
dest: /etc/sudoers
|
|
state: present
|
|
regexp: '^{{ www_user }} ALL=NOPASSWD: /usr/sbin/service php{{ php_version }}-fpm reload$'
|
|
line: '{{ www_user }} ALL=NOPASSWD: /usr/sbin/service php{{ php_version }}-fpm reload'
|
|
validate: 'visudo -cf %s'
|