Ansible role for adding a deployment user named deployer to the system.
The vars/main.yml file should contain your list of packages you want to install in order to override defaults found in defaults/main.yml.
---
deployer_username: deployer
deployer_password: some_password
deployer_public_key: "{{ lookup('file', '/home/user/.ssh/id_rsa.pub' ) }}"
groups_to_join:
- sudo
- ssh
- www-data
Additionally, you can overwrite the variables as part of your playbook.
---
...
vars:
deployer_username: deployer
deployer_password: $1$BYnbBLbt$uPcFu8SPIZdxqPh61
deployer_public_key: "{{ lookup('file', '/home/user/.ssh/id_rsa.pub' ) }}"
groups_to_join:
- sudo
- ssh
- www-data
...This method, will get a value of a given file from anywhere on the system. Just replace the /path/to/public/key with an actual path to a ssh key file.
For example:
"{{ lookup('file', '/home/username/.ssh/id_rsa.key' ) }}"
Originally copied from Servers For Hackers - Ansible User Example
Linux passwords are encrypted using SHA-512. Ansible's documentation on generated encrypted passwords point out the command mkpasswd --method=SHA-512. This asks for a password and returns the encrypted version of it after encrypting it used the SHA-512 method.
On Ubuntu 14.04, the mkpasswd command comes with package whois:
sudo apt-get install -y whoisAfter installing whois, you can use the mkpasswd command.
mkpasswd --method=SHA-512
Password: <enter your password here>
$6$hCDK.2eB3VXD4$fz95AiqRvc7DHbFWYMbTiRWJza5SCHclueFkISsivF3u6dDkHQmIds1uNrVb5Fk6.6WEes6iQ25GuJx0Fteos/This generated hash should be what you set as your admin_password and deploy_password values.
Alternatively, you can use openssl passwd -salt <salt> -1 <plaintext>
As part of the playbook, a ssh key will be auto generated for the user located at ~/.ssh/id_rsa.
Don't forget to add ~/.ssh/id_rsa.pub to your Github.com/Bitbucket/Other repository.
If you run into errors, uncomment the - debug: msg="{{ ... }}" statements.