---
- name: Zero .ssh/authorized_keys for provisioning user
  ansible.builtin.file: dest={{ provisioning_user.home }}/.ssh/authorized_keys state=absent

- name: Add public keys to authorized_keys
  ansible.posix.authorized_key: { user: '{{ provisioning_user.name }}', key: "{{ lookup('file',item) }}" }
  with_fileglob:
    # use descriptive names for keys, like: aorth-mzito-rsa.pub
    - ssh-pub-keys/*.pub

# vim: set sw=2 ts=2: