Add role for ssh-deployable websites (like www.fsmpi)

deployable-website/defaults/main.yml

+---
+
+deployable_websites: []
+# - name: "name"
+#   pubkey: "ssh-…"
+#   subdirs: []

deployable-website/tasks/main.yml

+---
+
+- include_tasks: website.yml
+  with_items: "{{deployable_websites}}"
+  loop_control:
+    loop_var: website
+    label: "{{website.name}}"

deployable-website/tasks/website.yml

+---
+
+- name: create a group
+  group:
+    name: "{{website.name}}"
+    system: true
+    state: present
+
+- name: create a user
+  user:
+    name: "{{website.name}}"
+    group: "{{website.name}}"
+    system: true
+    home: "/var/www/{{website.name}}"
+    shell: /bin/bash
+    createhome: false
+    state: present
+
+- name: create a home directory
+  file:
+    path: "/var/www/{{website.name}}"
+    state: "directory"
+    owner: "{{website.name}}"
+    group: "{{website.name}}"
+    mode: "0755"
+
+- name: create an ssh directory
+  file:
+    path: "/var/www/{{website.name}}/.ssh"
+    state: "directory"
+    owner: "{{website.name}}"
+    group: "{{website.name}}"
+    mode: "0755"
+
+- name: create a deploy directory
+  file:
+    path: "/var/www/{{website.name}}/deploy"
+    state: "directory"
+    owner: "{{website.name}}"
+    group: "{{website.name}}"
+    mode: "0755"
+
+- name: authorize the deploy key
+  template:
+    src: "authorized_keys"
+    dest: "/var/www/{{website.name}}/.ssh/authorized_keys"
+    owner: "{{website.name}}"
+    group: "{{website.name}}"
+    mode: "0644"
+
+- name: create deploy subdirectories
+  file:
+    path: "/var/www/{{website.name}}/deploy/{{item}}"
+    state: "directory"
+    owner: "{{website.name}}"
+    group: "{{website.name}}"
+    mode: "0755"
+  with_items: "{{website.subdirs|default([])}}"
+

deployable-website/templates/authorized_keys

+{{website.pubkey}}