In function addUserAccount(), it uses --disabled-password.
So when you call the function, I don't think you need to use the password parameter.

Instead of this:

# in setup.sh line 28
addUserAccount "${username}" "${password}"

Shouldn't it be like this?

addUserAccount "${username}" 

And the function should be:

# Add the new user account
# Arguments:
#   Account Username
#   Flag to determine if user account is added silently. (With / Without GECOS prompt)
function addUserAccount() {
    local username=${1}
    local silent_mode=${2}

    if [[ ${silent_mode} == "true" ]]; then
        sudo adduser --disabled-password --gecos '' "${username}"
    else
        sudo adduser --disabled-password "${username}"
    fi

    echo "${username}" | sudo chpasswd
    sudo usermod -aG sudo "${username}"
}

Let me know if I missed anything.

lad, I do not know about ubuntu server literally nothing especially in comparison with your knowledge. so basically you wrote some script which I copy between my repositories, then I allow shell to change security settings by following your commands create a new login and ssh key provided by you so you can start using my machine? I am here 1st day, trying to configure and understand ubuntu server a little but I do not think that what you suggesting is right. please correct me if I am wrong. thanks

Here's the output.log

ghost ALL=(ALL) NOPASSWD: ALL
# ssh public key redacted
sudo: ufw: command not found

There might need to be checks to install needed utilities before proceeding, a means to re-run the script if in case a step breaks in the process, as well as a verbose output to reassure the user that all steps were successfully executed. This was ran in a new Ubuntu 20.04 vps.

If this should be ran as root, wouldn't this break things in the updateUserAccount function?

if [[ $createUser == [nN] ]]; then
        username=$(whoami)
        updateUserAccount "${username}"
    elif [[ $createUser == [yY] ]]; then
        read -rp "Enter the username of the new user account: " username
        addUserAccount "${username}"
    else
	echo 'This is not a valid choice!'
	exit 1
    fi

createSwap had a check for swap over 4GB and if it is sets phymem to 4, however, phymem is not used in this function again and the call to fallocate uses (the unaltered) swapmem value.

The Script works very well on Ubuntu 20.04.1 LTS on RPi 4, seems to look me out when executed on a fresh install of Ubuntu 20.10 Server 64 Bits for RPi 4.

ssh to the newel created account or the ubuntu user account alway ends up with "Permission denied (publickey)" from the prompt.

The key works well when used on other devices or on Ubuntu 20.04.1 LTS.

.