2019-11-03 17:19:53 +00:00
|
|
|
---
|
|
|
|
- block:
|
|
|
|
- name: Override default .bashrc for given users
|
|
|
|
template:
|
|
|
|
src: etc/bashrc.j2
|
|
|
|
dest: "{{ item }}"
|
|
|
|
owner: root
|
|
|
|
group: root
|
2021-02-06 13:33:23 +00:00
|
|
|
mode: 0644
|
2019-11-03 17:19:53 +00:00
|
|
|
loop: "{{ users_bash_bashrc_overrides }}"
|
|
|
|
|
|
|
|
- name: Setup custom bash profile at '/etc/profile.d/custom.sh'
|
|
|
|
template:
|
|
|
|
src: etc/profile.d/custom.sh.j2
|
|
|
|
dest: /etc/profile.d/custom.sh
|
|
|
|
owner: root
|
|
|
|
group: root
|
2021-02-06 13:33:23 +00:00
|
|
|
mode: 0644
|
2022-09-18 11:44:41 +00:00
|
|
|
|
|
|
|
- name: Set umask to /etc/login.defs
|
|
|
|
lineinfile:
|
|
|
|
path: /etc/login.defs
|
2022-09-18 12:16:51 +00:00
|
|
|
regexp: '^(?P<umask>UMASK\s+).+'
|
|
|
|
line: \g<umask>{{ users_global_umask }}
|
2022-09-18 11:44:41 +00:00
|
|
|
backrefs: yes
|
|
|
|
state: present
|
|
|
|
|
|
|
|
- name: Enforcing minimum password lifetime
|
|
|
|
lineinfile:
|
|
|
|
path: /etc/login.defs
|
2022-09-18 12:16:51 +00:00
|
|
|
regexp: '^(?P<passmin>PASS_MIN_DAYS\s+).+'
|
|
|
|
line: \g<passmin>{{ users_pass_min_day }}
|
2022-09-18 11:44:41 +00:00
|
|
|
backrefs: yes
|
|
|
|
state: present
|
2019-11-03 17:19:53 +00:00
|
|
|
become: True
|
|
|
|
become_user: root
|