txomon · September 7, 2014 09:30
diff --git a/authorized_keys.j2 b/authorized_keys.j2
 {%- for user in users %}
 {%- if user_groups | intersect(user.groups) %}
 # {{ user.realname }}
 {% for key in user.ssh_keys %}
 {{ key.key }}
 {% endfor %}
 {%- endif %}
 {%- endfor %}
diff --git a/groups_vars_all b/groups_vars_all
 ---
 users:
  - name: txomon
    realname: Javier Domingo Cansino
    uid: 10000
    ssh_keys:
      - key: ssh-rsa <my-key>
    groups:
      - everyone
      - sysadmin
  - name: Test
    realname: Test user
    uid: 10001
    ssh_keys:
      - key: user-key
    groups:
      - everyone
      - development
diff --git a/main_task.yml b/main_task.yml
 ---
 - name: Create the public ssh authorized_keys file
  template: src=authorized_keys.j2 dest=/root/.ssh/authorized_keys
diff --git a/site.yml b/site.yml
 ---
 - hosts: all
  user: root
  vars:
    - user_groups:
      - sysadmin
  roles:
    - users
 - hosts: others
  user: root
  vars:
    - user_groups:
      - development
  roles:
    - users
	{%- for user in users %}
	{%- if user_groups \| intersect(user.groups) %}
	# {{ user.realname }}
	{% for key in user.ssh_keys %}
	{{ key.key }}
	{% endfor %}
	{%- endif %}
	{%- endfor %}
	---
	users:
	- name: txomon
	realname: Javier Domingo Cansino
	uid: 10000
	ssh_keys:
	- key: ssh-rsa <my-key>
	groups:
	- everyone
	- sysadmin
	- name: Test
	realname: Test user
	uid: 10001
	ssh_keys:
	- key: user-key
	groups:
	- everyone
	- development
	---
	- name: Create the public ssh authorized_keys file
	template: src=authorized_keys.j2 dest=/root/.ssh/authorized_keys