From 987e35f104985c72fbba8c9c90104607213c38dd Mon Sep 17 00:00:00 2001
From: Jeremy Lecour <jlecour@evolix.fr>
Date: Wed, 19 Jul 2017 12:08:06 +0200
Subject: [PATCH] admin-users: better grep for AllowUsers detection

Now it behaves correctly if the directive exists, but commented
---
 admin-users/tasks/adduser_debian.yml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/admin-users/tasks/adduser_debian.yml b/admin-users/tasks/adduser_debian.yml
index 5c16f385..bcf24a0f 100644
--- a/admin-users/tasks/adduser_debian.yml
+++ b/admin-users/tasks/adduser_debian.yml
@@ -63,13 +63,12 @@
     state: present
 
 - name: verify AllowUsers directive
-  command: "grep AllowUsers /etc/ssh/sshd_config"
+  command: "egrep '^\s+AllowUsers' /etc/ssh/sshd_config"
   changed_when: False
   failed_when: False
   register: grep_allowusers_ssh
   check_mode: no
 
-
 - name: "Add AllowUsers sshd directive for '{{ user.name }}'"
   lineinfile:
     dest: /etc/ssh/sshd_config