fixed chat jail, added releaser playbook, fixed rctl boot var

roles/pub/bin/user.sh

@@ -9,6 +9,7 @@ groups=""
 home=""
 shell="/usr/local/bin/bash"
 comment=""
+loginclass="jail"
 action=""
 
 usage() {
@@ -74,7 +75,7 @@ args=""
 root=""
 
 if test -n "$rootdir"; then
-    root="-R $rootdir -L jail"
+    root="-R $rootdir"
 fi
 
 if test -n "$groups"; then
@@ -97,6 +98,10 @@ if test -n "$comment"; then
     args="$args -c $comment"
 fi
 
+if test -n "$loginclass"; then
+    args="$args -L $loginclass"
+fi
+
 # the horse shall work
 case "$action" in
     present)

roles/pub/tasks/main.yaml

@@ -79,12 +79,20 @@
 
 # create our login class, needed for rctl rules
 - name: create jail login class
-  shell: |
-    ( echo "jail:\\"; printf "\t:tc=default:\n" ) >> /usr/local/bastille/jails/{{ role_name }}/root/etc/login.conf
-    cap_mkdb /usr/local/bastille/jails/{{ role_name }}/root/etc/login.conf
-    touch /tmp/.ansiblepubloginconf
-  args:
-    creates: /tmp/.ansiblepubloginconf
+  blockinfile:
+    path: /usr/local/bastille/jails/{{ role_name }}/root/etc/login.conf
+    append_newline: true
+    prepend_newline: true
+    block: |
+      jail:\
+          :tc=default:
+
+# shell: |
+#   ( echo "jail:\\"; printf "\t:tc=default:\n" ) >> /usr/local/bastille/jails/{{ role_name }}/root/etc/login.conf
+#   cap_mkdb /usr/local/bastille/jails/{{ role_name }}/root/etc/login.conf
+#   touch /tmp/.ansiblepubloginconf
+# args:
+#   creates: /tmp/.ansiblepubloginconf
 
 # create our own group[s]
 - name: Manage groups