diff options
author | Stonewall Jackson <stonewall@sacredheartsc.com> | 2023-02-04 01:23:43 -0500 |
---|---|---|
committer | Stonewall Jackson <stonewall@sacredheartsc.com> | 2023-02-04 01:52:13 -0500 |
commit | 0261e875679f1bf63c8d689da7fc7e014597885d (patch) | |
tree | 3f19cd74a0c1070944f75437f30b098d6ef2ffcb /roles/gitolite/tasks/sshd.yml | |
download | selfhosted-0261e875679f1bf63c8d689da7fc7e014597885d.tar.gz selfhosted-0261e875679f1bf63c8d689da7fc7e014597885d.zip |
initial commit
Diffstat (limited to 'roles/gitolite/tasks/sshd.yml')
-rw-r--r-- | roles/gitolite/tasks/sshd.yml | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/roles/gitolite/tasks/sshd.yml b/roles/gitolite/tasks/sshd.yml new file mode 100644 index 0000000..37a74e4 --- /dev/null +++ b/roles/gitolite/tasks/sshd.yml @@ -0,0 +1,24 @@ +# TODO: ssh_config.d is included by default starting with EL9 +- name: create sshd config directory + file: + path: /etc/ssh/sshd_config.d + state: directory + +- name: add sshd include directive + lineinfile: + path: /etc/ssh/sshd_config + line: Include sshd_config.d/* + insertafter: EOF + +- name: generate sshd configuration for gitolite + template: + src: etc/ssh/sshd_config.d/gitolite.conf.j2 + dest: /etc/ssh/sshd_config.d/gitolite.conf + notify: restart sshd + +- name: allow sshd to query ldap + seboolean: + name: authlogin_nsswitch_use_ldap + state: yes + persistent: yes + tags: selinux |