From 62a3dc51212f1fcba965816531d4e4f9ad03d7f7 Mon Sep 17 00:00:00 2001
From: Timotej Lazar <timotej.lazar@fri.uni-lj.si>
Date: Mon, 20 Nov 2023 12:55:52 +0100
Subject: [PATCH] proxmox: fix SFTP in management VRF

---
 .../sshd_config.mgmt.j2 => files/sshd_config.mgmt}          | 1 +
 roles/proxmox/tasks/mgmt.yml                                | 6 +++---
 2 files changed, 4 insertions(+), 3 deletions(-)
 rename roles/proxmox/{templates/sshd_config.mgmt.j2 => files/sshd_config.mgmt} (87%)

diff --git a/roles/proxmox/templates/sshd_config.mgmt.j2 b/roles/proxmox/files/sshd_config.mgmt
similarity index 87%
rename from roles/proxmox/templates/sshd_config.mgmt.j2
rename to roles/proxmox/files/sshd_config.mgmt
index ac45726..ff4de22 100644
--- a/roles/proxmox/templates/sshd_config.mgmt.j2
+++ b/roles/proxmox/files/sshd_config.mgmt
@@ -2,6 +2,7 @@
 
 PidFile none
 UsePAM no
+Subsystem sftp /usr/lib/openssh/sftp-server
 
 # Only allow pubkey auth.
 KbdInteractiveAuthentication no
diff --git a/roles/proxmox/tasks/mgmt.yml b/roles/proxmox/tasks/mgmt.yml
index 672b479..e0527d0 100644
--- a/roles/proxmox/tasks/mgmt.yml
+++ b/roles/proxmox/tasks/mgmt.yml
@@ -9,9 +9,9 @@
   notify: reboot
 
 - name: Configure SSH instance in management VRF
-  template:
-    dest: /etc/ssh/sshd_config.mgmt
-    src: sshd_config.mgmt.j2
+  copy:
+    dest: /etc/ssh/
+    src: sshd_config.mgmt
     mode: 0644
   notify: reboot