xoxys.sudo/tasks/main.yml

---
- name: Install requirements
  ansible.builtin.package:
    name: "{{ item }}"
    state: present
  loop: "{{ sudo_packages }}"

- name: Add base sudo config
  ansible.builtin.template:
    src: etc/sudoers.j2
    dest: /etc/sudoers
    owner: root
    group: root
    mode: "0440"
    validate: "/usr/sbin/visudo -cf %s"

- name: Add config files to sudoers.d
  ansible.builtin.template:
    src: etc/sudoers.d/sudo_ext.j2
    dest: "/etc/sudoers.d/{{ item.name }}"
    owner: root
    group: root
    mode: "0440"
    validate: "/usr/sbin/visudo -cf %s"
  loop: "{{ sudo_aliases }}"
  loop_control:
    label: "{{ item.name }}"
  when:
    - sudo_aliases is defined
    - item.user_aliases is defined
initial commit 2019-11-03 22:40:04 +01:00			`---`
ci: migrate to woodpecker 2024-02-18 13:37:23 +01:00			`- name: Install requirements`
			`ansible.builtin.package:`
			`name: "{{ item }}"`
			`state: present`
			`loop: "{{ sudo_packages }}"`
feat: add logile option 2022-09-19 16:45:34 +02:00
ci: migrate to woodpecker 2024-02-18 13:37:23 +01:00			`- name: Add base sudo config`
			`ansible.builtin.template:`
			`src: etc/sudoers.j2`
			`dest: /etc/sudoers`
			`owner: root`
			`group: root`
			`mode: "0440"`
			`validate: "/usr/sbin/visudo -cf %s"`
feat: add logile option 2022-09-19 16:45:34 +02:00
ci: migrate to woodpecker 2024-02-18 13:37:23 +01:00			`- name: Add config files to sudoers.d`
			`ansible.builtin.template:`
			`src: etc/sudoers.d/sudo_ext.j2`
			`dest: "/etc/sudoers.d/{{ item.name }}"`
			`owner: root`
			`group: root`
			`mode: "0440"`
			`validate: "/usr/sbin/visudo -cf %s"`
			`loop: "{{ sudo_aliases }}"`
			`loop_control:`
			`label: "{{ item.name }}"`
			`when:`
			`- sudo_aliases is defined`
			`- item.user_aliases is defined`