From 2efe203ce28f30e48bc8548cae88f7386efcfcf5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=B6rg=20Sachse?= <joerg.sachse@slub-dresden.de>
Date: Tue, 23 May 2023 09:11:41 +0200
Subject: [PATCH] feat: enable removal of obsolete users and their respective
 SSH keys

---
 tasks/configure_ssh_keys.yml  | 2 +-
 tasks/create_users_groups.yml | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/tasks/configure_ssh_keys.yml b/tasks/configure_ssh_keys.yml
index 6ba5d95..f094f5e 100644
--- a/tasks/configure_ssh_keys.yml
+++ b/tasks/configure_ssh_keys.yml
@@ -2,7 +2,7 @@
 - name: deploy SSH key for management user
   ansible.builtin.authorized_key:
     user: "{{ item.user }}"
-    state: present
+    state: "{{ item.state | default('present') }}"
     key: "{{ item.ssh_key }}"
     comment: "{{ item.ssh_comment }}"
   loop: "{{ vault_ssh_access }}"
diff --git a/tasks/create_users_groups.yml b/tasks/create_users_groups.yml
index 71218d0..ca7e357 100644
--- a/tasks/create_users_groups.yml
+++ b/tasks/create_users_groups.yml
@@ -16,4 +16,5 @@
     generate_ssh_key: "{{ item.generate_ssh_key | default(false) }}"
     ssh_key_bits: "{{ item.ssh_key_bits | default(omit) }}"
     ssh_key_comment: "{{ item.ssh_key_comment | default(omit) }}"
+    state: "{{ item.state | default('present') }}"
   loop: "{{ vault_users }}"
-- 
GitLab