Jérémy Lecour
7b88393ccf
* rename admin-users to evolinux-users * splitting the "sudo" part for users between jessie and stretch * with stretch, the sudo group is customizable and properly configured * import evolinux-users role from evolinux-base at proper time to ensure ssh connections are possible for other users before cutting root's access * evomaintenance is also included in evolinux-base to have it available when users are created
24 lines
727 B
YAML
24 lines
727 B
YAML
---
|
|
|
|
- name: "Verify Evolinux sudoers file presence (Debian 9 or later)"
|
|
template:
|
|
src: sudoers_stretch.j2
|
|
dest: /etc/sudoers.d/evolinux
|
|
force: no
|
|
validate: '/usr/sbin/visudo -cf %s'
|
|
register: copy_sudoers_evolinux
|
|
when: ansible_distribution_major_version | version_compare('9', '>=')
|
|
|
|
- name: "Create evolinux-sudo group (Debian 9 or later)"
|
|
group:
|
|
name: "{{ evolinux_sudo_group }}"
|
|
system: yes
|
|
when: ansible_distribution_major_version | version_compare('9', '>=')
|
|
|
|
- name: "Add user to evolinux-sudo group (Debian 9 or later)"
|
|
user:
|
|
name: '{{ user.name }}'
|
|
groups: "{{ evolinux_sudo_group }}"
|
|
append: yes
|
|
when: ansible_distribution_major_version | version_compare('9', '>=')
|