---
- name: Include docker tasks
  include_tasks:
    file: docker.yml

- name: Create default groups
  group:
    name: "{{ item }}"
    state: present
  loop:
    - docker
    - ansible

- name: Create default user
  user:
    name: "martin"
    uid: "1000"
    groups: docker,ansible
    append: yes
    shell: /bin/bash
    state: present

- name: Create appusers
  user:
    name: "{{ item }}"
    shell: /bin/bash
    state: present
  loop:
    - "{{ appusers }}"

- name: create root authorized_keys
  template:
    src: root_authorized_keys.j2
    dest: /root/.ssh/authorized_keys
    owner: root
    mode: '0600'

      #- name: Create user authorized_keys
      #  authorized_key:
      #    user: "{{ item }}"
      #    key: "{{ item }}_rsa.pub"
      #  loop:
      #    - '{{ keys }}'

- name: apt update && apt upgrade
  apt:
    name: "*"
    state: latest
    update_cache: true

- name: Install default packages
  apt:
    name: "{{ item }}"
    state: present
  loop:
    - "{{ default_pkgs }}"

- name: create docker/watchtower folder
  file:
    path: /opt/docker/watchtower
    owner: 1000
    group: 1000
    mode: '0755'
    state: directory

- name: Place watchtower docker-compose.yaml
  template:
    src: docker-compose.yaml.j2
    dest: /opt/docker/watchtower/docker-compose.yaml
  notify: restart docker-compose
  tags: setup,update

- name: Start watchtower
  community.docker.docker_compose:
    project_src: /opt/docker/watchtower
    state: present
    pull: true
  tags: test
...