---
- name: Paketlisten aktualisieren
  apt:
    update_cache: yes
    cache_valid_time: 3600

- name: OpenSSH Server installieren
  apt:
    name: openssh-server
    state: present

- name: Benutzer anlegen (falls nicht vorhanden)
  user:
    name: "{{ ssh_user }}"
    shell: /bin/bash
    create_home: yes

- name: SSH-Verzeichnis anlegen
  file:
    path: "/home/{{ ssh_user }}/.ssh"
    state: directory
    owner: "{{ ssh_user }}"
    group: "{{ ssh_user }}"
    mode: '0700'

- name: SSH-Key eintragen
  copy:
    content: "{{ ssh_public_key }}"
    dest: "/home/{{ ssh_user }}/.ssh/authorized_keys"
    owner: "{{ ssh_user }}"
    group: "{{ ssh_user }}"
    mode: '0600'

- name: SSH-Konfiguration per Template übertragen
  template:
    src: sshd_config.j2
    dest: /etc/ssh/sshd_config
    owner: root
    group: root
    mode: '0644'
  notify: Restart SSH