From b9197a18e71d85a4c56d1761ceaa052c351df454 Mon Sep 17 00:00:00 2001
From: Sebastian Philipp <sebastian.philipp@adfinis.com>
Date: Fri, 10 Feb 2023 17:25:37 +0100
Subject: [PATCH] feat(10-042): actually use ignore_nss_backends in the
 maintenance_10_linux role

---
 roles/maintenance_10_linux/defaults/main.yml | 1 +
 roles/maintenance_10_linux/tasks/main.yml    | 1 +
 2 files changed, 2 insertions(+)

diff --git a/roles/maintenance_10_linux/defaults/main.yml b/roles/maintenance_10_linux/defaults/main.yml
index e6efa00..344dd7f 100644
--- a/roles/maintenance_10_linux/defaults/main.yml
+++ b/roles/maintenance_10_linux/defaults/main.yml
@@ -13,6 +13,7 @@ linux_allowed_ssh_nss_backends:
   - compat
   - db
   - systemd
+linux_allowed_ssh_ignored_nss_backends: []
 
 linux_allowed_login_users:
   - root
diff --git a/roles/maintenance_10_linux/tasks/main.yml b/roles/maintenance_10_linux/tasks/main.yml
index 458ebf8..620e682 100644
--- a/roles/maintenance_10_linux/tasks/main.yml
+++ b/roles/maintenance_10_linux/tasks/main.yml
@@ -165,6 +165,7 @@
   adfinis.maintenance.audit_ssh_authorizedkeys:
     allowed: "{{ linux_allowed_ssh_authorized_keys + linux_additional_ssh_authorized_keys }}"
     limit_nss_backends: "{{ linux_allowed_ssh_nss_backends }}"
+    ignore_nss_backends: "{{ linux_allowed_ssh_ignored_nss_backends }}"
   check_mode: yes
 
 - <<: *task