ansible-fet/roles/backupclient/tasks/borg.yml

---
- name: install borg
  package: name="borgbackup" state=present

- name: create backup user
  user:
    name: borg_backup
    comment: "BackupUser für BORG Backup"
    group: root
    generate_ssh_key: yes
    ssh_key_bits: 4096
    ssh_key_file: .ssh/id_rsa

- name: fetch pubickey
  shell: "cat /home/borg_backup/.ssh/id_rsa.pub"
  register: id_rsa_pub
  changed_when: false

- name: Add authorized key to borg backup servers
  authorized_key:
    user: "root"
    key: "{{id_rsa_pub.stdout}}"
    key_options: 'command="borg serve --restrict-to-path /srv/rep1"'
  delegate_to: "{{item}}"
  with_items: "{{groups['backup']}}"
  when: id_rsa_pub.stdout is defined