---
- name: Create ansible user with sudo privileges and copy ssh key
  hosts: all
  become: true
  vars:
    sudoers_file: /etc/sudoers.d/ansible
    ssh_key_file: /home/ansible/.ssh/authorized_keys
  tasks:
    - name: Vérifie existence fichier sudoers
      stat:
        path: "{{ sudoers_file }}"
        mode: '0440'
      register: stat_sudoers
      
    - name: Créer fichier sudoers
      copy:
        content: "{{ lookup('template', 'sudoers.j2') }}"
        dest: "{{ sudoers_file }}"
        mode: '0440'
      when: not stat_sudoers.stat.exists

    - name: Create ansible user
      user:
        name: ansible
        createhome: yes

    - name: Copy ssh key to authorized_keys file
      ansible.posix.authorized_key:
        user: ansible
        state: present
        key: "{{ lookup('file', '~/.ssh/id_ed25519.pub') }}"