Use a handler to restart sshd

2022-12-27 19:14:14 +01:00 · 2022-12-27 19:14:14 +01:00 · 7a6d11c548
parent 95163fbed1
commit 7a6d11c548
2 changed files with 8 additions and 11 deletions
--- a/roles/os_config/handlers/main.yml
+++ b/roles/os_config/handlers/main.yml
@ -5,3 +5,8 @@
    cmd: "echo 'topic={{ secrets.ntfy_topic }}' > .env && ./install.sh"
    stdin: 20
    chdir: "/home/{{ ansible_user }}/apt-update-push"
+
+- name: Restart sshd
+  service:
+    name: sshd
+    state: restarted
--- a/roles/os_config/tasks/ssh.yml
+++ b/roles/os_config/tasks/ssh.yml
@ -11,26 +11,18 @@
    regexp: '^#?PubkeyAuthentication '
    line: PubkeyAuthentication yes
    dest: /etc/ssh/sshd_config
-  register: ssh_pubkey
+  notify: Restart sshd

 - name: Disallow SSH login with password
  lineinfile:
    regexp: '^#?PasswordAuthentication '
    line: PasswordAuthentication no
    dest: /etc/ssh/sshd_config
-  register: ssh_pw
+  notify: Restart sshd

 - name: Disallow root login over SSH
  lineinfile:
    regexp: '^#?PermitRootLogin '
    line: PermitRootLogin no
    dest: /etc/ssh/sshd_config
-  register: ssh_root
-
- name: Restart sshd
-  service:
-    name: sshd
-    state: restarted
-  when: (ssh_pubkey is defined and ssh_pubkey.changed) or
-        (ssh_pw is defined and ssh_pw.changed) or
-        (ssh_root is defined and ssh_root.changed)
+  notify: Restart sshd