---
- block:
  - name: Create the users additional data dirs
    file: name={{ item.name }} state=directory owner={{ item.owner }} group={{ item.group }} mode={{ item.perms }}
    with_items: '{{ additional_data_directories | default([]) }}'
    when: item.create and not item.file

  - name: Set the read/write/access permissions on the users additional data dirs
    acl: name={{ item.name }} entity={{ service_group }} etype=group permissions={{ item.aclperms | default('rwX') }} state=present recursive=yes
    with_items: '{{ additional_data_directories | default([])  }}'

  - name: Set the default read/write/access permissions on the users additional data dirs
    acl: name={{ item.name }} entity={{ service_group }} etype=group permissions={{ item.aclperms | default('rwX') }} state=present default=yes recursive=yes
    with_items: '{{ additional_data_directories | default([])  }}'

  tags: [ 'users', 'users_acl' ]