From ead19311c22595af053dae280f4dc8d8639a2e8a Mon Sep 17 00:00:00 2001
From: Salt <rehashedsalt@cock.li>
Date: Wed, 8 Jul 2020 00:47:13 -0500
Subject: [PATCH] Also ensure Ansible owns EVERYTHING in their home dir

---
 roles/common/tasks/ansibleuser.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/roles/common/tasks/ansibleuser.yml b/roles/common/tasks/ansibleuser.yml
index 5a0b6c2..152f08d 100644
--- a/roles/common/tasks/ansibleuser.yml
+++ b/roles/common/tasks/ansibleuser.yml
@@ -13,8 +13,12 @@
       file:
         path: "/home/ansible"
         mode: "0700"
+    - name: Ensure ownership of Ansible user home
+      file:
+        path: "/home/ansible"
         owner: ansible
         group: ansible
+        recurse: yes
     - name: Add Ansible key to user
       authorized_key:
         user: ansible