From 1c4c90c51fc112addd1e9ee7329fb21ee8085473 Mon Sep 17 00:00:00 2001
From: L3D <l3d@c3woc.de>
Date: Tue, 9 Apr 2024 18:27:39 +0200
Subject: [PATCH] improve exklusive ssh key mgmnt

---
 roles/user/tasks/pubkeys.yml      | 2 +-
 roles/user/tasks/user_ansible.yml | 1 +
 roles/user/vars/main.yml          | 2 +-
 3 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/roles/user/tasks/pubkeys.yml b/roles/user/tasks/pubkeys.yml
index 58b2684..96a0073 100644
--- a/roles/user/tasks/pubkeys.yml
+++ b/roles/user/tasks/pubkeys.yml
@@ -5,7 +5,7 @@
     user: "{{ user.name }}"
     state: 'present'
     key: "{{ user.pubkeys | default() }}"
-    exclusive: true
+    exclusive: "{{ user.exklusive_pubkeys | default(true) }}"
   loop: "{{ _l3d_users__merged_users }}"
   loop_control:
     label: "user={{ user.name }}"
diff --git a/roles/user/tasks/user_ansible.yml b/roles/user/tasks/user_ansible.yml
index 0851455..57596de 100644
--- a/roles/user/tasks/user_ansible.yml
+++ b/roles/user/tasks/user_ansible.yml
@@ -31,6 +31,7 @@
     user: 'ansible'
     state: "{{ l3d_users__ansible_user_state | ternary('present', 'absent') }}"
     key: "{{ user.pubkeys | default() }}"
+    exclusive: false
   loop: "{{ _l3d_users__merged_users }}"
   when: user.admin | default(false) | bool and user.admin_ansible_login | default(true) | bool
   loop_control:
diff --git a/roles/user/vars/main.yml b/roles/user/vars/main.yml
index ace42a6..018dfdd 100644
--- a/roles/user/vars/main.yml
+++ b/roles/user/vars/main.yml
@@ -1,3 +1,3 @@
 ---
-playbook_version_number: 11
+playbook_version_number: 12
 playbook_version_path: 'l3d.users.user.version'