---

- name: "Test if uid exists for '{{ user.name }}'"
  command: 'getent passwd {{ user.uid }}'
  register: uidisbusy
  failed_when: False
  changed_when: False
  check_mode: no

- name: "Add Unix account with classical uid for '{{ user.name }}'"
  user:
   state: present
   uid: '{{ user.uid }}'
   name: '{{ user.name }}'
   comment: '{{ user.fullname }}'
   shell: /bin/bash
   password: '{{ user.password_hash }}'
   update_password: on_create
  when: uidisbusy.rc != 0

- name: "Add Unix account with random uid for '{{ user.name }}'"
  user:
   state: present
   name: '{{ user.name }}'
   comment: '{{ user.fullname }}'
   shell: /bin/bash
   password: '{{ user.password_hash }}'
   update_password: on_create
  when: uidisbusy.rc == 0

- name: "Create {{ admin_users_group }}"
  group:
    name: "{{ admin_users_group }}"

- name: "Add user to sudo group (Stretch)"
  user:
    name: '{{ user.name }}'
    groups: 'sudo,{{ admin_users_group }}'
    append: yes
  when: ansible_distribution_release == "stretch"

- name: "Fix perms on homedirectory for '{{ user.name }}'"
  file:
   name: '/home/{{ user.name }}'
   mode: "0700"
   state: directory