---
- hosts: all
  become: false
  gather_facts: false
  vars_files:
    #- production_config.yml
    - config.yml

  tasks:

      # match uid with NFS server
    - name: Create user of Redmine installation
      user: name='{{ redmine_owner }}'
            uid='{{ redmine_uid }}'
            state=present
            ssh_key_file=.ssh/id_rsa

    - name: Set up authorized_keys for the redmine account
      authorized_key: user='{{ redmine_owner }}'
                      key='{{ item }}'
      with_items: "{{ redmine_owner_ssh_pub_keys }}"

    - name: Set up authorized_keys for the root account
      authorized_key: user='root'
                      key='{{ item }}'
      with_items: "{{ root_ssh_pub_keys }}"

    - name: Set up sudoers for the redmnine account
      template: dest='/etc/sudoers.d/10_{{ redmine_owner }}'
                src=templates/sudoers.j2
                owner=root
                mode=0440