From: Oleg Broytman <phd@phdru.name>
Date: Thu, 18 Dec 2025 14:49:50 +0000 (+0300)
Subject: Feat(playbooks/openvpn): Create user:group `openvpn`
X-Git-Url: https://git.phdru.name/?a=commitdiff_plain;h=c1d4a91bddc5e1497bca4a4d5298aceb80a0b6e0;p=ansible.git

Feat(playbooks/openvpn): Create user:group `openvpn`
---

diff --git a/playbooks/roles/openvpn/tasks/main.yaml b/playbooks/roles/openvpn/tasks/main.yaml
index 527e0ee..de6301a 100644
--- a/playbooks/roles/openvpn/tasks/main.yaml
+++ b/playbooks/roles/openvpn/tasks/main.yaml
@@ -1,3 +1,29 @@
+- name: Test if user openvpn already exists
+  shell: "grep -c '^openvpn:' /etc/passwd || :"
+  register: openvpn_exists
+  changed_when: openvpn_exists.stdout == "0"
+
+- debug:
+    msg: "User openvpn has already been created"
+  when: openvpn_exists.stdout == "0"
+
+- name: Create and setup user openvpn
+  block:
+    - name: Create group openvpn
+      become: true
+      group:
+        name: openvpn
+        system: true
+
+    - name: Add user openvpn
+      become: true
+      user:
+        name: openvpn
+        group: openvpn
+        create_home: flase
+        system: true
+  when: openvpn_exists.stdout == "0"
+
 - name: Install OpenVPN (Debian)
   become: true
   apt: