summaryrefslogtreecommitdiff
path: root/roles/sshd
diff options
context:
space:
mode:
Diffstat (limited to 'roles/sshd')
-rw-r--r--roles/sshd/defaults/main.yml2
-rw-r--r--roles/sshd/tasks/main.yml4
2 files changed, 4 insertions, 2 deletions
diff --git a/roles/sshd/defaults/main.yml b/roles/sshd/defaults/main.yml
new file mode 100644
index 00000000..8b25827b
--- /dev/null
+++ b/roles/sshd/defaults/main.yml
@@ -0,0 +1,2 @@
+---
+ssh_allow_any_user: False
diff --git a/roles/sshd/tasks/main.yml b/roles/sshd/tasks/main.yml
index a9393cfd..5eb15081 100644
--- a/roles/sshd/tasks/main.yml
+++ b/roles/sshd/tasks/main.yml
@@ -27,7 +27,7 @@
notify: restart ssh
- name: limit allowed users
- when: ssh_allow_any_user is undefined or not ssh_allow_any_user
+ when: not ssh_allow_any_user
lineinfile:
dest: /etc/ssh/sshd_config
regexp: "^AllowUsers\\s"
@@ -35,7 +35,7 @@
notify: restart ssh
- name: allow any user
- when: ssh_allow_any_user is defined and ssh_allow_any_user
+ when: ssh_allow_any_user
lineinfile:
dest: /etc/ssh/sshd_config
regexp: "^AllowUsers\\s"
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-04 19:52:34 +0000