void/system
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
system/books/void_user.yaml
Marty Oehme 2a25c840b8
ref(user): Add sudo permissions with dropin file 
Instead of changing a line in the sudoers file we just copy a new
drop-in file into the sudoers.d/ dir. Easier, less error-prone and
allows everyone to see 'who' the sudo enabled users are (since it is
world readable).
2025-02-26 22:33:06 +01:00

28 lines
785 B
YAML
Raw Blame History

- name: Set up primary user
hosts: target_system
become: true
tasks:
- name: Ensure user groups all exist
ansible.builtin.group:
name: "{{ item }}"
state: present
loop: "{{ user_groups }}"
- name: Enable sudo for "wheel" group
ansible.builtin.copy:
content: "%wheel ALL=(ALL) ALL"
dest: "/etc/sudoers.d/10-wheel"
owner: root
group: root
mode: 0644
force: true
- name: Add user
ansible.builtin.user:
name: "{{ user_name }}"
password: "{{ user_pass | password_hash('sha512', 'supersecretsalt') }}"
create_home: true
shell: "/bin/{{ user_shell }}"
group: "{{ user_name }}"
groups: "{{ user_groups }}"
generate_ssh_key: true
Reference in a new issue View git blame Copy permalink