Update examples for user creations

[martbhell]

The ansible-role-users can be updated. Unfortunately it would mean that sites would need to update their group_vars - and we could have them do that before we update the role. If they don't, the "users" role will fail. But that is run very rarely so maybe that's ok.

The error is that in examples/group_vars/all/root_keys.yml we have

adminusers:             
  - { name: cscluis, uid: 5001, group: csc, state: "present", groups: "{{admingroup}}", shell: "{{adminshell}}", pubkey: "ssh-rsa KEYHERE" }

4 changed so this role adds the csc group as the primary group of the user. Before it only added the {{ admingroup }} and didn't do anything with the csc group. When a user is added to a group the group must exist first, it doesn't and the task fails.

Two methods (both by changing group_vars):

• create the csc group (users' groups will change - potentially causing some permission issues.)
• set the admingroup as the group: on the csc users in the example files (hypothetically no change, needs to be tested)

---

Release notes we could use when we are ready:

• users:
  • set comment= and remove= and only remove passwords on present users 3
  • use package module, install libselinux and use group and groups 4
  • actually remove users and keys 5
  • use block and default(omit) to reduce tasks 6

[martbhell]

Examples updated. Informing users via usual communications on Monday. Updating fgci-ansible in a week or three.

[martbhell]

Role updated in https://github.com/CSC-IT-Center-for-Science/fgci-ansible/commit/938118a3f29113643b45cf210c3041e14ede5bcf