]> git.phdru.name Git - ansible.git/blobdiff - playbooks/roles/debian-sudo/tasks/main.yml
projects / ansible.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Feat: Split `debian-init-user-phd` into roles
[ansible.git] / playbooks / roles / debian-sudo / tasks / main.yml
diff --git a/playbooks/roles/debian-sudo/tasks/main.yml b/playbooks/roles/debian-sudo/tasks/main.yml
new file mode 100644 (file)
index 0000000..05544b1
--- /dev/null
+++ b/playbooks/roles/debian-sudo/tasks/main.yml
@@ -0,0 +1,22 @@
+- name: Install sudo
+  become: true
+  apt:
+    install_recommends: no
+    name: sudo
+    state: latest
+    update_cache: yes
+- name: Add user phd to group sudo
+  become: true
+  user:
+    name: phd
+    append: yes
+    groups: sudo
+- name: Allow passwordless operations
+  become: true
+  copy:
+    content: 'phd      ALL=(ALL:ALL) NOPASSWD: ALL'
+    dest: /etc/sudoers.d/phd
+    owner: root
+    group: sudo
+    mode: 0640
+    force: yes
My ansible: inventory, playbooks, roles