maybe this time?

2021-10-18 14:28:03 +02:00
parent c88c0e7ce0
commit 01fdf3634f
1 changed files with 11 additions and 6 deletions
--- a/playbook.yml
+++ b/playbook.yml
@@ -17,16 +17,21 @@
        name: sudo
        state: present

-    - name: Allow 'tobi' user to have sudo
+    - name: Make sure we have a 'wheel' group
+      group:
+        name: wheel
+        state=present
+
+    - name: Allow 'wheel' group to have passwordless sudo
      lineinfile:
-        dest: /etc/sudoers
-        state: present
-        regexp: '^%tobi'
-        line: '%tobi ALL=(ALL) NOPASSWD: ALL'
-        validate: 'visudo -cf %s'
+      dest=/etc/sudoers
+      state: present
+      regexp='^%wheel'
+      line: '%wheel ALL=(ALL) NOPASSWD: ALL'

    - name: Add the user tobi
      ansible.builtin.user:
        name: tobi
        password: $6$9OnvBMN6Sxc.muW1$afASAJdoPZL/WxTp6.lh/SurRRiClaru2Pl19fEo6j1aDEQw99kdkfls6.DB8OBacBDnT3bpsLYD3JqrvXlE9/
        comment: Tobias Maier
+        groups: wheel