- name: users | {{ user }} | getent user home directory
  getent:
    database: passwd
    key: "{{ user }}"
    split: ":"
    fail_key: no # not required. If a supplied key is missing this will make the task fail if C(yes).

- name: users | {{ user }} | include user specific parts
  include_tasks: "{{ user }}.yml"
  
- name: users | {{ user }} | install public ssh keys
  authorized_key:
    user: '{{ user }}'
    state: present
    key: '{{ item }}'
  with_file:
    - public_keys/id_dsa.pub
    - public_keys/id_ed25519.pub
    - public_keys/rene_id_rsa.pub
    - public_keys/yubikey.pub

- name: users | {{ user }} | install private ssh keys
  copy:
    dest: "{{ getent_passwd[user][4] }}/.ssh/"
    src: '{{ item }}'
    owner: '{{ user }}'
    group: '{{ user }}'
    mode: '0600'
  loop:
    - "private_keys/gitlab_read_ed25519"

- name: users | {{ user }} | install known_hosts
  copy:
    dest: "{{ getent_passwd[user][4] }}/.ssh/known_hosts"
    src: "users/known_hosts"
    backup: True
    mode: '0600'
    owner: '{{ user }}'
    group: '{{ user }}'

- name: users | {{ user }} | fill ssh config
  blockinfile:
    path: "{{ getent_passwd[user][4] }}/.ssh/config"
    state: present
    block: |
      Host gitlab.social.my-wan.de
        IdentityFile ~/.ssh/gitlab_read_ed25519
        IdentitiesOnly Yes
    create: True
    backup: True
    owner: '{{ user }}'
    group: '{{ user }}'

- name: users | {{ user }} | clone remote repos
  become: yes
  become_user: '{{ user }}'
  git:
    repo: '{{ item.repo }}'
    dest: '{{ getent_passwd[user][4] }}/{{ item.dir }}'
    key_file: '{{ getent_passwd[user][4] }}/.ssh/gitlab_read_ed25519'
    recursive: no
    track_submodules: no
    force: yes
  with_items:
    - { repo: 'ssh://git@gitlab.social.my-wan.de:22422/rene/dotfiles.git', dir: 'dotfiles' }
    - { repo: 'https://github.com/romkatv/powerlevel10k.git', dir: 'powerlevel10k' }
  ignore_errors: yes

- name: users | {{ user }} | link dotfiles
  become: yes
  become_user: '{{ user }}'
  file:
    state: link
    force: True
    src: "{{ getent_passwd[user][4] }}/dotfiles/{{ item.src }}"
    path: "{{ getent_passwd[user][4] }}/{{ item.dest }}"
  with_items:
    - { src: 'vim/vimrc', dest: '.vimrc' }
    - { src: 'bash/bashrc', dest: '.bashrc' }
    - { src: 'zsh/zshrc', dest: '.zshrc' }
    - { src: 'tmux/tmux.conf', dest: '.tmux.conf' }

- name: users | {{ user }} | call dotfile install script
  become: yes
  become_user: '{{ user }}'
  shell: "POWERLINE=n BASHIT=y ZSHCUSTOM=n {{ getent_passwd[user][4] }}/dotfiles/install.sh"