- name: Install hosts file
  action: template src=hosts.j2 dest=/etc/hosts owner=root group=root mode=0644
  notify:
    - Update motd

- name: Install hosts.deny file
  action: template src=hosts.deny.j2 dest=/etc/hosts.deny owner=root group=root mode=0644

- name: Write /etc/apt/sources.list
  action: template src=apt/sources.${ansible_lsb.codename}.list.j2 dest=/etc/apt/sources.list owner=root group=root mode=0644
  notify:
    - Reload apt cache

- name: Write /etc/apt/apt.conf.d configuration files
  action: template src=apt/${item}.j2 dest=/etc/apt/apt.conf.d/${item} owner=root group=root mode=0644
  with_items:
    - local-recommends
    - local-pdiffs

- name: Install base packages
  action: ${ansible_pkg_mgr} pkg=${item} install_recommends=no state=installed update_cache=yes
  with_items:
    - apticron
    - locales-all
    - lsb-release
    - ntp
    - toilet
    - toilet-fonts
    - facter
    - zsh
    - git-core
    - vim-nox
    - ccze
    - tree
    - pydf
    - htop
    - sudo
    - sysfsutils
    - rsync

- name: Install kernel configuration (proc)
  action: template src=kernel/sysctl.d/${item}.j2 dest=/etc/sysctl.d/${item} owner=root group=root mode=0644
  with_items:
      - 10-increase-file-descriptors.conf
  notify:
    - Apply kernel configuration (proc)

- name: Create sysfs configuration directory - /etc/sysfs.d
  action: file path=/etc/sysfs.d state=directory owner=root group=root mode=0755

- name: Install kernel configuration (sys)
  action: template src=kernel/sysfs.d/${item}.j2 dest=/etc/sysfs.d/${item} owner=root group=root mode=0644
  with_items:
      - 00-sysfs-prolog.conf
  notify:
    - Refresh sysfs configuration

- name: Install kernel configuration (sys) for disks
  action: template src=kernel/sysfs.d/${item}.j2 dest=/etc/sysfs.d/${item} owner=root group=root mode=0644
  with_items:
      - 10-disks.conf
  notify:
    - Refresh sysfs configuration
  when_boolean: ${sysfs_disk_settings}

- name: Install sudo configuration
  action: template src=sudo/local-admin.j2 dest=/etc/sudoers.d/local-admin owner=root group=root mode=0440

- name: Install unprivileged user
  action: user name="${item.user}" comment="${item.fullname}" groups=adm,operator,sudo append=yes shell=/bin/zsh state=present
  with_items: ${admins}

- name: Install SSH key for unprivileged user
  action: authorized_key user="${item.user}" key="$FILE(roles/common/data/users/${item.user}/id_rsa.pub)" state=present
  with_items: ${admins}

- name: Install SSH key for root
  action: authorized_key user=root key="$FILE(roles/common/data/users/${item.user}/id_rsa.pub)" state=present
  with_items: ${admins}