Feat(playbooks/openvpn): Create user:group `openvpn`

author Oleg Broytman <phd@phdru.name>

Thu, 18 Dec 2025 14:49:50 +0000 (17:49 +0300)

committer Oleg Broytman <phd@phdru.name>

Thu, 18 Dec 2025 14:49:50 +0000 (17:49 +0300)
author Oleg Broytman <phd@phdru.name>
Thu, 18 Dec 2025 14:49:50 +0000 (17:49 +0300)
committer Oleg Broytman <phd@phdru.name>
Thu, 18 Dec 2025 14:49:50 +0000 (17:49 +0300)
diff --git a/playbooks/roles/openvpn/tasks/main.yaml b/playbooks/roles/openvpn/tasks/main.yaml

index 527e0ee8e374d0fe207292ae9a1050a3e2d36c94..de6301a0c3a2e370e2db43d60fe162817a4d1639 100644 (file)
--- a/playbooks/roles/openvpn/tasks/main.yaml
+++ b/playbooks/roles/openvpn/tasks/main.yaml
@@ -1,3 +1,29 @@
+- name: Test if user openvpn already exists
+  shell: "grep -c '^openvpn:' /etc/passwd || :"
+  register: openvpn_exists
+  changed_when: openvpn_exists.stdout == "0"
+
+- debug:
+    msg: "User openvpn has already been created"
+  when: openvpn_exists.stdout == "0"
+
+- name: Create and setup user openvpn
+  block:
+    - name: Create group openvpn
+      become: true
+      group:
+        name: openvpn
+        system: true
+
+    - name: Add user openvpn
+      become: true
+      user:
+        name: openvpn
+        group: openvpn
+        create_home: flase
+        system: true
+  when: openvpn_exists.stdout == "0"
+
  - name: Install OpenVPN (Debian)
    become: true
    apt:
author	Oleg Broytman <phd@phdru.name>
	Thu, 18 Dec 2025 14:49:50 +0000 (17:49 +0300)
committer	Oleg Broytman <phd@phdru.name>
	Thu, 18 Dec 2025 14:49:50 +0000 (17:49 +0300)