refactor ansible scripts for contabo vps

.vscode/settings.json

@@ -0,0 +1,3 @@
+{
+    "ansible.python.interpreterPath": "/opt/homebrew/anaconda3/bin/python"
+}

inventory/hosts.ini

@@ -1,11 +1,14 @@
 [almalinux-root]
-vps-root
+; vps-root
+janvoelkelde-root
+
 
 [almalinux-user]
-vps
+; vps
+janvoelkelde
 
 [all:vars]
 user_name="jan"
 domain="janvoelkel-de"
-op_password_path="SSH/MyVPS jan/password"
+op_password_path="SSH/VPS janvoelkel.de jan/password"
 dnf_text_editor="nano"

playbooks/add_user.yml

@@ -10,7 +10,7 @@
       prompt: "Please enter the password for the new user"
       private: yes  # Das Passwort wird versteckt eingegeben
     - name: "ssh_public_key"
-      prompt: "Please enter the public key for shh of your pc"
+      prompt: "Please enter the public key for ssh of your pc"
       private: no
   roles:
     - create_user_with_root

roles/create_user_with_root/tasks/main.yml

@@ -2,7 +2,7 @@
 - name: Erstelle einen neuen User mit Sudo-Rechten
   user:
     name: "{{ user_name }}"
-    password: "{{ lookup('pipe', 'op read \"op://' + op_password_path + '\"') | password_hash('sha512') }}"
+    password: "{{ lookup('pipe', 'op read \"op://' + op_password_path + '\"') }}"
     state: present
     shell: /bin/bash
     groups: wheel

roles/dnf_tools/tasks/main.yml

@@ -2,4 +2,9 @@
 - name: Install DNF tools
   dnf:
     name: "{{ dnf_text_editor }}"
-    state: present
+    state: present
+
+- name: Install Git
+  dnf:
+    name: git
+    state: present

roles/firewalld/tasks/main.yml

@@ -15,4 +15,14 @@
     zone: public
     service: ssh
     permanent: yes
-    state: enabled
+    state: enabled
+
+- name: Add Tailscale interface to trusted zone
+  firewalld:
+    zone: trusted
+    interface: tailscale0
+    permanent: yes
+    state: enabled
+
+- name: Reload firewalld
+  command: firewall-cmd --reload