Gregory Colpart
|
207a2f6011
|
Improve distribution verification
|
2017-08-23 01:49:27 +02:00 |
|
Gregory Colpart
|
2d17c60f39
|
continuation of new policy for sudo in Debian 9
|
2017-08-22 02:58:38 +02:00 |
|
Gregory Colpart
|
bbdbd53cca
|
Avoid using vars not well defined in src file name AND be compatible with Debian 10
|
2017-08-22 01:37:12 +02:00 |
|
Gregory Colpart
|
5226082db0
|
evolinux-base and admin-users are only compatible Debian >=8, declare once in main.yml and that's all
(will be probably generalized to others modules if needed)
|
2017-08-22 01:37:04 +02:00 |
|
Gregory Colpart
|
606f3a14f5
|
Move sudo stuff to sudo.yml
|
2017-08-22 01:36:56 +02:00 |
|
Gregory Colpart
|
ab08969cfb
|
We decided a new policy for sudo in stretch because our previous stretch policy is buggy
|
2017-08-22 01:35:36 +02:00 |
|
Gregory Colpart
|
2bb7367edf
|
standardization for Debian versions : we use "jessie" or "9 or later" to prepare buster smoothly as possible
|
2017-08-18 03:50:30 +02:00 |
|
Gregory Colpart
|
35198325c4
|
Verify if login exists
|
2017-08-17 14:47:37 +02:00 |
|
Jérémy Lecour
|
1bcd24a4c1
|
admin-users: remove openbsd mentions
|
2017-08-09 00:24:12 -04:00 |
|
Jérémy Lecour
|
4b8456c5b7
|
Fix ssh security policy
|
2017-08-05 12:13:42 -04:00 |
|
Jérémy Lecour
|
3bd758759e
|
admin-users: add users to sudo group for Stretch
|
2017-08-04 10:46:00 -04:00 |
|
Jérémy Lecour
|
2179be09d1
|
admin-users: passwordless sudo for come commands
|
2017-07-27 22:26:07 -04:00 |
|
Jérémy Lecour
|
2dfd384fb8
|
admin-users: users are in sudo group for Stretch
|
2017-07-27 18:58:16 -04:00 |
|
Gregory Colpart
|
b4bfccd7eb
|
no fail when admin_users is empty because we want keep easy the usability
|
2017-07-22 07:57:46 +02:00 |
|
Jérémy Lecour
|
6106a0a8f5
|
admin-users: fix AllowUsers
* the command module was doing weird escaping, let's use the shell
module
* insert after a more appropriate position
|
2017-07-19 13:54:18 +02:00 |
|
Jérémy Lecour
|
43e9f69314
|
admin-users: double-escape, dream hands !!
|
2017-07-19 12:33:35 +02:00 |
|
Jérémy Lecour
|
987e35f104
|
admin-users: better grep for AllowUsers detection
Now it behaves correctly if the directive exists, but commented
|
2017-07-19 12:08:06 +02:00 |
|
Jérémy Lecour
|
44c679eb64
|
admin_users: fix logic error
|
2017-07-19 11:54:01 +02:00 |
|
Jérémy Lecour
|
7c92645c5c
|
admin users: fix uidisbusy for proper rc check
because of "failed_when: False", the register would never fail
so we check the return code of "getent passwd"
|
2017-07-19 11:31:21 +02:00 |
|
Jérémy Lecour
|
0115a16675
|
whitespaces
|
2017-07-19 11:31:21 +02:00 |
|
Jérémy Lecour
|
cc92c124bf
|
Add quotes for tasks names with variables
|
2017-06-12 15:11:39 +02:00 |
|
Jérémy Lecour
|
9769d4a85b
|
admin-users: fix include syntax
|
2017-05-20 19:55:42 +02:00 |
|
Jérémy Lecour
|
9fae99f8dc
|
Minor syntax and whitespaces fixes
|
2017-05-19 22:29:53 +02:00 |
|
Jérémy Lecour
|
0f89f99ae7
|
admin-users: fail if no user is provided
|
2017-04-10 18:16:06 +02:00 |
|
Jérémy Lecour
|
5b2ab0d8d3
|
Ansible >= 2.2 supported
|
2017-03-24 14:15:09 +01:00 |
|
Jérémy Lecour
|
294cea44e8
|
Change mode with leading 0, but still as String
|
2017-03-23 16:59:43 +01:00 |
|
Jérémy Lecour
|
8920ff1ee4
|
Add "always_run: yes" where it's pertinent
There is also the "check_mode: no", but commented,
for when we switch to Ansible 2.2
|
2017-01-31 11:45:35 +01:00 |
|
Jérémy Lecour
|
5a4f838375
|
Unix mode MUST be a quoted string when using octal notation
|
2017-01-05 12:03:54 +01:00 |
|
Jérémy Lecour
|
b49cd060eb
|
admin-user: switch to a Dict for admin_users
|
2017-01-04 10:21:41 +01:00 |
|
Jérémy Lecour
|
0ff5467bce
|
add a "reload sshd" handler
|
2017-01-04 10:21:41 +01:00 |
|
Jérémy Lecour
|
475ccf3bd1
|
amin-users: fix perms on sudoers file
|
2017-01-03 16:38:04 +01:00 |
|
Jérémy Lecour
|
65c57a61aa
|
admin-users: AllowUsers + Match User
|
2016-12-27 14:04:12 +01:00 |
|
Jérémy Lecour
|
b7be16e44b
|
Rename role evolinux-admin_users → admin-users
|
2016-12-22 15:34:23 +01:00 |
|