ansible.builtin.user: add option for initial-only password-lock #79381
Labels
affects_2.15
docs_only
All changes are to files within the docs/docsite/ directory
docs
This issue/PR relates to or includes documentation.
module
This issue/PR relates to a module.
waiting_on_contributor
This would be accepted but there are no plans to actively work on it.
Summary
Hi,
it would be nice if it would be possible to initially-only lock a password for a user (like the possibility to only create a random password for a user initially), but to not lock it afterwards / in following runs when the user already exists - since it might be possible that a user logs in (via ssh for example) and changes his/her password and unlocks password-authentication.
Like possible with
update_password
, I would suggest either a third value forpassword_lock
(on_create
, resulting in three choices:yes
,no
,on_create
) or a new optionupdate_password_lock
with choicesalways
andon_create
.Regards
abelbabel
Issue Type
Feature IdeaDocs Issue
Component Name
user
Additional Information
Code of Conduct
The text was updated successfully, but these errors were encountered: