I already have tasks for creating users, groups, authorized_keys, etc. from
the existing lists of users, by setting a variable that's linked to each of
those.
What I want to do is have group_vars for an inventory that lists which
groups I want added to servers. And then another inventory might have other
group_vars where the groups are different. I want to define all users and
what groups they're in in users.yml, and then simply specify which groups
get different access to servers in my inventory by creating my user_groups
list in a group_var.
in group_vars/users.yml:
devs:
- "{{ ronda }}"
- "{{ abe }}"
- "{{ kathy }}"
sysadmins:
- "{{ york }}"
- "{{ kathy }}"
- "{{ george }}"
managers:
- "{{ brown }}"
- "{{ lee }}"
ronda:
- { name: "ronda", fullname: "Ronda", uid: "1001", gid: "1001", state:
"present", remove: "no", ssh_key: "../ssh_keys/ronda.pub" }
etc..
in inventory/group_vars/single-environment.yml:
user_groups:
- devs
- sysadmins
- managers
There could be another file in inventory/group_vars/second-environment.yml
that defines user_groups differently:
user_groups:
- sysadmins
Is this possible, at all? I feel like I should be able to reference this
doing something like user_groups[item.name], user_groups[item.fullname],
user_groups[uid], etc. I know that method isn't possible, but, there's
gotta' be a way?
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-project+unsubscr...@googlegroups.com.
To post to this group, send email to ansible-project@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/9ca01126-d634-4089-97d6-875f101739a9%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
