From eb54e712e5d55066955a1bf5a6dab1165d074f9a Mon Sep 17 00:00:00 2001
From: Francis Kayiwa <kayiwa@pobox.com>
Date: Wed, 9 Oct 2024 11:20:32 -0400
Subject: [PATCH] Add post install instructions

we need to disable the restriction of ssh to pulsys
---
 playbooks/Gitlab.yml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/playbooks/Gitlab.yml b/playbooks/Gitlab.yml
index 809abdc29..9308018c4 100644
--- a/playbooks/Gitlab.yml
+++ b/playbooks/Gitlab.yml
@@ -6,6 +6,11 @@
   hosts: gitlab_{{ runtime_env | default('staging') }}
   remote_user: pulsys
   become: true
+  vars:
+    - post_install: |
+        Things left to do:
+        - comment out `AllowUsers pulsys` as `/etc/ssh/sshd_config`
+        - Restart the openssh-server `sudo systemctl restart sshd`
   vars_files:
     - ../group_vars/gitlab/{{ runtime_env | default('staging') }}.yml
     - ../group_vars/gitlab/vault.yml
@@ -18,3 +23,7 @@
         token: "{{ vault_pul_slack_token }}"
         msg: "Ansible ran `{{ ansible_play_name }}` on {{ inventory_hostname }}"
         channel: "{{ slack_alerts_channel }}"
+
+    - name: Post role reminders
+      ansible.builtin.debug:
+        msg: "{{ post_install.split('\n') }}"