---
- name: setup target to be managed by ansible
  hosts: cibles
  become: true
  tasks:
  - name: create account
    user:
      name: ansible
      password: "{{ '123Soleil' | password_has('sha512') }}"
      create_home: yes
      home: /home/ansible

  - name: configure sudo
    copy:
      content: "ansible ALL=(ALL)      NOPASSWD:  ALL"
      dest: /etc/sudoers.d/ansible
      validate: "/usr/sbin/visudo -cf %s"

  - name: deploy ssh key
    authorized_key:
      user: ansible
      key: "{{ item }}"
    loop:
    - "{{ lookup( 'file', '~/.ssh/id_rsa.pub' ) }}"
    - "https://infra.opendoor.fr/id_rsa.pub"