---
- name: 分发SSH公钥到Nomad客户端节点
  hosts: nomad_clients
  become: yes
  vars:
    ssh_public_key: "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMSUUfma8FKEFvH8Nq65XM2PZ9kitfgv1q727cKV9y5Z houzhongxu@seekkey.tech"
  
  tasks:
    - name: 确保 .ssh 目录存在
      file:
        path: "/home/{{ ansible_user }}/.ssh"
        state: directory
        owner: "{{ ansible_user }}"
        group: "{{ ansible_user }}"
        mode: '0700'
    
    - name: 添加SSH公钥到 authorized_keys
      lineinfile:
        path: "/home/{{ ansible_user }}/.ssh/authorized_keys"
        line: "{{ ssh_public_key }}"
        create: yes
        owner: "{{ ansible_user }}"
        group: "{{ ansible_user }}"
        mode: '0600'
    
    - name: 验证SSH公钥已添加
      command: cat "/home/{{ ansible_user }}/.ssh/authorized_keys"
      register: ssh_key_check
      changed_when: false
    
    - name: 显示SSH公钥内容
      debug:
        var: ssh_key_check.stdout_lines