From c1d4a91bddc5e1497bca4a4d5298aceb80a0b6e0 Mon Sep 17 00:00:00 2001
From: Oleg Broytman <phd@phdru.name>
Date: Thu, 18 Dec 2025 17:49:50 +0300
Subject: [PATCH] Feat(playbooks/openvpn): Create user:group `openvpn`

---
 playbooks/roles/openvpn/tasks/main.yaml | 26 +++++++++++++++++++++++++
 1 file changed, 26 insertions(+)

diff --git a/playbooks/roles/openvpn/tasks/main.yaml b/playbooks/roles/openvpn/tasks/main.yaml
index 527e0ee..de6301a 100644
--- a/playbooks/roles/openvpn/tasks/main.yaml
+++ b/playbooks/roles/openvpn/tasks/main.yaml
@@ -1,3 +1,29 @@
+- name: Test if user openvpn already exists
+  shell: "grep -c '^openvpn:' /etc/passwd || :"
+  register: openvpn_exists
+  changed_when: openvpn_exists.stdout == "0"
+
+- debug:
+    msg: "User openvpn has already been created"
+  when: openvpn_exists.stdout == "0"
+
+- name: Create and setup user openvpn
+  block:
+    - name: Create group openvpn
+      become: true
+      group:
+        name: openvpn
+        system: true
+
+    - name: Add user openvpn
+      become: true
+      user:
+        name: openvpn
+        group: openvpn
+        create_home: flase
+        system: true
+  when: openvpn_exists.stdout == "0"
+
 - name: Install OpenVPN (Debian)
   become: true
   apt:
-- 
2.47.3